Zdravím, prosím o pomoc s problémem viz předmět. Počítač je od kamaráda a po skenu malwarebytes a adwcleaner bylo odhaleno spoustu havěti. Nicméně problém s průzkumníkem windows se po vyčištění neodstranil a průzkumník stále padá. Zkuste mi prosím někdo mrknout na log, jestli ještě něco nezůstalo. Jinak budu muset přeinstalovat systém. Děkuji moc. Log:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šnajdrovi at 2014-09-04 20:31:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 69 GB (36%) free of 191 GB
Total RAM: 3873 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:32:41, on 4.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Šnajdrovi.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [mnchymxSrv] C:\Windows\system32\mnchymx.vbe
O4 - HKLM\..\Run: [mncmvejSrv] C:\Windows\system32\mncmvej.vbe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B5FE44C3-3FC1-4453-B5C4-97CD50778781}: NameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{C14CDE78-1370-4E4B-9E67-DA7A3B046FF7}: NameServer =
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14284 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
taskeng.exe {528E84AD-9FFE-4E13-B2BD-DB4C1BE060A2}
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
C:\Windows\SysWOW64\svchost.exe -k MbnExt
WLIDSvcM.exe 2216
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe"
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
\??\C:\Windows\system32\conhost.exe "-1424831450-1937716334-820021661780419869-200728966417422257051213761913706606796
coreFrameworkHost.exe 4304 1
\??\C:\Windows\system32\conhost.exe "-70260465885038411462934388-1729558527-41812863592337731-10951963041578793616
UIWatchDog.exe 4304
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"taskhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
explorer.exe
"C:\Users\Šnajdrovi\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-Files FixerASKUSER.job
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Registry Optimizer_DEFAULT.job
C:\Windows\tasks\Registry Optimizer_UPDATES.job
C:\Windows\tasks\SmartPCFix Task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-28 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-28 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-28 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-26 11775592]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-26 138096]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-07-14 1841264]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21444224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-10-18 2319536]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-11-15 3058304]
"mnchymxSrv"=C:\Windows\system32\mnchymx.vbe []
"mncmvejSrv"=C:\Windows\system32\mncmvej.vbe []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-07-26 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-09-04 20:31:53 ----D---- C:\rsit
2014-09-04 19:22:27 ----HD---- C:\TMRescueDisk
2014-09-04 19:18:04 ----A---- C:\Windows\system32\drivers\tmeevw.sys
2014-09-04 19:18:02 ----A---- C:\Windows\system32\drivers\tmnciesc.sys
2014-09-04 19:18:00 ----A---- C:\Windows\system32\drivers\tmtdi.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmcomm.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmactmon.sys
2014-09-04 19:17:54 ----A---- C:\Windows\system32\drivers\TMEBC64.sys
2014-09-04 19:16:42 ----A---- C:\Windows\system32\SupportTool.exe.bat
2014-09-04 19:16:04 ----D---- C:\Program Files\Trend Micro
2014-09-04 19:01:43 ----A---- C:\Windows\TmNSCIns.dll
2014-09-04 19:01:43 ----A---- C:\Windows\DIFxAPI.dll
2014-09-04 18:59:52 ----D---- C:\ProgramData\Trend Micro Installer
2014-09-03 21:32:39 ----D---- C:\Program Files\CCleaner
2014-09-03 20:31:36 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-09-03 20:31:22 ----D---- C:\ProgramData\Malwarebytes
2014-09-03 20:31:22 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-03 20:13:13 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-09-03 20:12:12 ----D---- C:\AdwCleaner
2014-09-02 12:25:45 ----D---- C:\ProgramData\Performance Optimizer
2014-08-28 14:56:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 14:56:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 14:56:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuapp.exe
2014-08-19 09:19:00 ----D---- C:\Program Files (x86)\_utorrent
2014-08-15 14:51:56 ----D---- C:\ProgramData\DrivingSpeed2
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-08-15 14:50:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-08-15 14:50:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-08-15 14:50:30 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-08-15 14:50:30 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-08-15 14:50:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-08-15 14:50:29 ----A---- C:\Windows\system32\xinput1_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-08-15 14:50:11 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-08-15 14:50:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-08-15 14:50:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-08-15 14:50:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-08-15 14:50:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-08-15 14:47:55 ----D---- C:\Program Files (x86)\DrivingSpeed2
2014-08-15 11:45:24 ----D---- C:\ProgramData\54e6438eb996f1b8
2014-08-14 14:13:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 21:58:22 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 21:58:12 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 21:58:12 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 21:57:54 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 21:57:54 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:49:37 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:49:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 09:49:35 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 09:49:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:49:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:49:27 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:30:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:30:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 09:30:49 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:30:43 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:30:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 09:30:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:30:40 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:30:38 ----A---- C:\Windows\system32\aeinv.dll
2014-08-12 19:44:54 ----D---- C:\Program Files (x86)\Maxiget
2014-08-12 19:44:51 ----A---- C:\Windows\unins000.exe
2014-08-12 12:25:30 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-08-12 11:45:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-08-12 11:45:14 ----A---- C:\Windows\system32\xinput1_3.dll
======List of files/folders modified in the last 1 months======
2014-09-04 20:23:16 ----D---- C:\Users\Šnajdrovi\AppData\Roaming\Skype
2014-09-04 20:18:40 ----SHD---- C:\$Recycle.Bin
2014-09-04 20:18:38 ----D---- C:\ProgramData\Trend Micro
2014-09-04 19:31:08 ----D---- C:\Windows\Temp
2014-09-04 19:19:01 ----D---- C:\Windows\system32\config
2014-09-04 19:18:40 ----SHD---- C:\Windows\Installer
2014-09-04 19:18:04 ----D---- C:\Windows\system32\drivers
2014-09-04 19:17:59 ----D---- C:\Windows\system32\catroot
2014-09-04 19:17:58 ----D---- C:\Windows\system32\DriverStore
2014-09-04 19:17:58 ----D---- C:\Windows\inf
2014-09-04 19:17:22 ----D---- C:\Windows\system32\Tasks
2014-09-04 19:16:42 ----D---- C:\Windows\System32
2014-09-04 19:16:40 ----HD---- C:\ProgramData
2014-09-04 19:16:09 ----SHD---- C:\Config.Msi
2014-09-04 19:16:09 ----D---- C:\Windows\SysWOW64
2014-09-04 19:16:04 ----RD---- C:\Program Files
2014-09-04 19:06:50 ----A---- C:\Windows\SYSWOW64\log.txt
2014-09-04 19:05:30 ----HD---- C:\ASUS.DAT
2014-09-04 19:04:50 ----D---- C:\Windows
2014-09-04 19:04:24 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-09-04 19:01:07 ----D---- C:\Windows\SYSWOW64\drivers
2014-09-04 00:10:54 ----D---- C:\Windows\winsxs
2014-09-04 00:03:31 ----D---- C:\Windows\system32\catroot2
2014-09-03 22:06:56 ----RD---- C:\Users
2014-09-03 21:34:20 ----D---- C:\Windows\Panther
2014-09-03 21:34:20 ----D---- C:\Windows\ModemLogs
2014-09-03 21:34:20 ----D---- C:\Windows\Minidump
2014-09-03 21:34:20 ----D---- C:\Windows\Logs
2014-09-03 21:34:20 ----D---- C:\Windows\debug
2014-09-03 21:30:31 ----RD---- C:\Program Files (x86)
2014-09-03 21:30:31 ----D---- C:\Program Files (x86)\Google
2014-09-03 21:22:31 ----D---- C:\Windows\sr-Latn-CS
2014-09-03 21:21:41 ----D---- C:\Program Files\Common Files
2014-09-03 21:21:35 ----D---- C:\Program Files (x86)\GotClip
2014-09-03 20:19:30 ----D---- C:\Windows\Prefetch
2014-09-03 20:16:15 ----D---- C:\Windows\Tasks
2014-09-02 22:15:16 ----SHD---- C:\System Volume Information
2014-08-29 22:50:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-27 19:21:48 ----D---- C:\Windows\SYSWOW64\mjcm
2014-08-27 19:21:48 ----D---- C:\Windows\system32\tprb
2014-08-26 21:27:31 ----D---- C:\Windows\rescache
2014-08-24 13:04:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-24 13:04:19 ----D---- C:\Windows\system32\cs-CZ
2014-08-18 20:19:48 ----AD---- C:\ProgramData\Temp
2014-08-15 14:50:25 ----RSD---- C:\Windows\assembly
2014-08-15 14:50:17 ----D---- C:\Windows\Microsoft.NET
2014-08-15 12:06:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-15 11:45:24 ----HD---- C:\Windows\system32\GroupPolicy
2014-08-15 11:45:24 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-08-14 14:05:09 ----D---- C:\Windows\ehome
2014-08-14 14:05:07 ----RSD---- C:\Windows\Fonts
2014-08-14 14:04:37 ----D---- C:\Program Files\Internet Explorer
2014-08-14 14:04:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-14 14:04:28 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 14:04:27 ----D---- C:\Windows\system32\en-US
2014-08-14 14:04:23 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 22:16:48 ----D---- C:\ProgramData\Microsoft Help
2014-08-13 22:10:09 ----D---- C:\Windows\system32\MRT
2014-08-13 22:04:39 ----A---- C:\Windows\system32\MRT.exe
2014-08-13 21:57:24 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 19:02:32 ----D---- C:\Program Files (x86)\ASUS
2014-08-13 10:10:43 ----D---- C:\Program Files (x86)\Radical Games
2014-08-13 10:01:58 ----D---- C:\Program Files (x86)\Common Files
2014-08-12 11:44:41 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2014-08-12 09:34:09 ----D---- C:\Windows\system32\NDF
2014-08-07 13:31:57 ----RD---- C:\Program Files (x86)\Skype
2014-08-05 09:20:00 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-07-18 281600]
R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-07-18 116264]
R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-07-18 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-03 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-03 394728]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-07 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-08 2736872]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
R3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 104448]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2012-04-23 238080]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-18 76888]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968]
S2 892cc6a3;Performance Optimizer; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-14 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Průzkumník Windows přestal pracovat
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Ahoj Rudy, jak jsem psal adwcleanerem stejne verze jsem to již čistil, pote jsem použil malwarebytes. Tady je log z adwcleaneru, pokud to teda ještě k něčemu bude 
# AdwCleaner v3.309 - Report created 03/09/2014 at 20:14:47
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Šnajdrovi - SNAJDROVI-PC
# Running from : C:\Users\Šnajdrovi\Desktop\Pohádkové\Downloads\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : d0e87c27
Service Found : globalUpdate
Service Found : globalUpdatem
Service Found : IBUpdaterService
Service Found : IePluginServices
Service Found : Partner Service
Service Found : SPBIUpd
Service Found : SPBIUpdd
***** [ Files / Folders ] *****
File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\istartsurf.xml
File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\crawlersrch.xml
File Found : C:\Users\NAJDRO~1\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage-journal
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Šnajdrovi\AppData\LocalLow\SkwConfig.bin
File Found : C:\Users\Šnajdrovi\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\searchplugins\Sweetpacks Search.xml
File Found : C:\Users\Šnajdrovi\AppData\Roaming\regsvr32.exe_log.txt
File Found : C:\Windows\System32\dmwu.exe
File Found : C:\Windows\System32\ImhxxpComm.dll
Folder Found : C:\Program Files (x86)\Adblocker
Folder Found : C:\Program Files (x86)\Adblocker
Folder Found : C:\Program Files (x86)\Crawler
Folder Found : C:\Program Files (x86)\globalUpdate
Folder Found : C:\Program Files (x86)\LiveSupport
Folder Found : C:\Program Files (x86)\MyPC Backup
Folder Found : C:\Program Files (x86)\NextCouapi
Folder Found : C:\Program Files (x86)\Optimizer Pro
Folder Found : C:\Program Files (x86)\prioccechop
Folder Found : C:\Program Files (x86)\Sense
Folder Found : C:\Program Files (x86)\Sense
Folder Found : C:\Program Files (x86)\ShopperPro
Folder Found : C:\Program Files (x86)\sw-booster
Folder Found : C:\Program Files (x86)\SweetIM
Folder Found : C:\Program Files (x86)\WinZip Registry Optimizer
Folder Found : C:\Program Files (x86)\YouTube Accelerator
Folder Found : C:\ProgramData\374311380
Folder Found : C:\ProgramData\Adblocker
Folder Found : C:\ProgramData\Adblocker
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\DiscounTExtensi
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Registry Optimizer
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Folder Found : C:\ProgramData\NextCouapi
Folder Found : C:\ProgramData\Partner
Folder Found : C:\ProgramData\prioccechop
Folder Found : C:\ProgramData\ShopperPro
Folder Found : C:\ProgramData\SweetIM
Folder Found : C:\ProgramData\Trusted Publisher
Folder Found : C:\ProgramData\WEbsaAver
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Administrator\AppData\Local\torch
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Guest\AppData\Local\torch
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Found : C:\Users\NAJDRO~1\AppData\Local\Temp\apn
Folder Found : C:\Users\NAJDRO~1\AppData\Local\Temp\AskSearch
Folder Found : C:\Users\Public\Documents\Goobzo
Folder Found : C:\Users\Public\Documents\ShopperPro
Folder Found : C:\Users\Public\Documents\YTAHelper
Folder Found : C:\Users\Šnajdrovi\AppData\Local\apn
Folder Found : C:\Users\Šnajdrovi\AppData\Local\globalUpdate
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Šnajdrovi\AppData\Local\torch
Folder Found : C:\Users\Šnajdrovi\AppData\Local\VNT
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Goobzo
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Sense
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Sense
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Babylon
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\EZDownloader
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\istartsurf
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\60-oidsh@vaoiivf-rmi.edu
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\eotv4axxp@zcvhzoeu.net
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\gow6jd@yueuutvn.com
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\iaoocbbiy@lrhm.org
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\zmiou@jjiaubq.net
Folder Found : C:\Users\Šnajdrovi\Documents\Optimizer Pro
Folder Found : C:\Windows\System32\ljkb
Folder Found : C:\Windows\SysWOW64\ARFC
Folder Found : C:\Windows\SysWOW64\jmdp
Folder Found : C:\Windows\SysWOW64\WNLT
***** [ Scheduled Tasks ] *****
Task Found : BrowserProtect
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : ShopperPro
Task Found : ShopperProJSUpd
Task Found : SPDriver
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-1
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-2
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-3
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-4
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-5
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7
Task Found : SW-Booster-S-792098896
***** [ Shortcuts ] *****
Shortcut Found : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\Desktop\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk ( /showurl hxxp://www.crawler.com/help/default.aspx?src=TbMenu )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Více produktů Crawler.lnk ( /showurl hxxp://www.crawler.com/products/ )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
***** [ Registry ] *****
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\sw-boo~1\assist~1.dll
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\perfor~1\perfor~1.dll
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SW-BOO~1\ASSIST~2.DLL
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\PERFOR~1\PERFOR~2.DLL
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\Sense
Key Found : HKCU\Software\AppDataLow\Software\Sense
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\Goobzo
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\LiveSupport
Key Found : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411821192}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKCU\Software\SweetIM
Key Found : HKCU\Software\WEDLMNGR
Key Found : HKCU\Software\WNLT
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\Goobzo
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\LiveSupport
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKCU\Software\Optimizer Pro
Key Found : [x64] HKCU\Software\PIP
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\SupHpUISoft
Key Found : [x64] HKCU\Software\SweetIM
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\WNLT
Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Found : HKLM\SOFTWARE\Classes\Adblocker.Adblocker
Key Found : HKLM\SOFTWARE\Classes\Adblocker.Adblocker.1.0
Key Found : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Found : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4D25FB7A-8902-4291-960E-9ADA051CFBBF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\ctbr.R404Pro
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Client
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Script
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Server
Key Found : HKLM\SOFTWARE\Classes\DiscounotEexxteunsi.DiscounotEexxteunsi
Key Found : HKLM\SOFTWARE\Classes\DiscounotEexxteunsi.DiscounotEexxteunsi.7.2
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Found : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Found : HKLM\SOFTWARE\Classes\NextCoup.NextCoup
Key Found : HKLM\SOFTWARE\Classes\NextCoup.NextCoup.1.0
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\tbr
Key Found : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Found : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Key Found : HKLM\SOFTWARE\Classes\webssaver.webssaver
Key Found : HKLM\SOFTWARE\Classes\webssaver.webssaver.6.2
Key Found : HKLM\SOFTWARE\CToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bmw-m3-challenge_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bmw-m3-challenge_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_digital-paintball-3_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_digital-paintball-3_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_need-for-speed-shift_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_need-for-speed-shift_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5CDF2354-26AF-2DBC-1012-44FEDFCC75BB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{892cc6a3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d0e87c27}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B138259A-351E-33FA-2726-8D71704F1DA9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CToolbar_UNINSTALL
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-792098896
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Found : HKLM\SOFTWARE\omiga-plusSoftware
Key Found : HKLM\SOFTWARE\PIP
Key Found : HKLM\SOFTWARE\qone8Software
Key Found : HKLM\SOFTWARE\Sense
Key Found : HKLM\SOFTWARE\Sense
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\SW-Booster
Key Found : HKLM\SOFTWARE\SweetIM
Key Found : HKLM\SOFTWARE\sweet-pageSoftware
Key Found : HKLM\SOFTWARE\systweak
Key Found : HKLM\SOFTWARE\webssearchesSoftware
Key Found : HKLM\SOFTWARE\WNLT
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : [x64] HKLM\SOFTWARE\aartemisSoftware
Key Found : [x64] HKLM\SOFTWARE\awesomehpSoftware
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : [x64] HKLM\SOFTWARE\omiga-plusSoftware
Key Found : [x64] HKLM\SOFTWARE\qone8Software
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Found : [x64] HKLM\SOFTWARE\sweet-pageSoftware
Key Found : [x64] HKLM\SOFTWARE\webssearchesSoftware
Key Found : [x64] HKLM\SOFTWARE\WNLT
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [livesupport]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SPDriver]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.crawler.com/?tbid=66022
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\prefs.js ]
Line Found : user_pref("browser.newtab.url", "hxxp://www.sweetpacks-search.com/?barid=&src=97&&st=23");
Line Found : user_pref("extensions.1FDp60zAKxAw.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
Line Found : user_pref("extensions.JAlJAETOkCNm.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
Line Found : user_pref("extensions.Ni_aFUUCD.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
Line Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292.48292.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Found : user_pref("extensions.crossrider.bic", "147cf5ebbf7f3c2a2f777e8b17dbf480");
Line Found : user_pref("extensions.h18dVKudi.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
Line Found : user_pref("extensions.n_ul.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.ne[...]
Line Found : user_pref("extensions.n_ul.url", "hxxp://syncservice.info/sync2/?q=hfZ9ofbTAy1MCyVUojr8qjrMg708BNmGWj8deShGheDUojw9rdYFqja4qdkGrShIC7n0rjnEpjaHrdU9qHsFtNhVCT94tMVKhd99rTs9qjU8rHg6rHUHqHgHpds6tNqHhd9Fr[...]
Line Found : user_pref("browser.search.defaultenginename", "webssearches");
Line Found : user_pref("browser.search.selectedEngine", "webssearches");
-\\ Google Chrome v
[ File : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Search Provider] : hxxp://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=&&st=23
Found [Startup_urls] : hxxp://www.search.ask.com/?tpid=ATU4-V7C&o=APN ... 11-20&psv=
Found [Startup_urls] : hxxp://www.search.ask.com/?tpid=ATU4-V7C&o=APN ... 04-28&psv=
Found [Startup_urls] : hxxp://www.istartsurf.com/?type=hp&ts=14078655 ... S1585S1585
Found [Startup_urls] : hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Found [Extension] : caohogmkgaocnjjoelkkalfehahogkdb
Found [Extension] : dfohdbmjdkfijghgklbickfnaepghgba
Found [Extension] : eooncjejnppfjjklapaamhcdmjbilmde
Found [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma
Found [Extension] : popoohickdhddnflocahhgapedfplkdl
*************************
AdwCleaner[R0].txt - [47921 octets] - [03/09/2014 20:12:15]
AdwCleaner[R1].txt - [47593 octets] - [03/09/2014 20:14:47]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [47654 octets] ##########
# AdwCleaner v3.309 - Report created 03/09/2014 at 20:14:47
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Šnajdrovi - SNAJDROVI-PC
# Running from : C:\Users\Šnajdrovi\Desktop\Pohádkové\Downloads\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : d0e87c27
Service Found : globalUpdate
Service Found : globalUpdatem
Service Found : IBUpdaterService
Service Found : IePluginServices
Service Found : Partner Service
Service Found : SPBIUpd
Service Found : SPBIUpdd
***** [ Files / Folders ] *****
File Found : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\istartsurf.xml
File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\crawlersrch.xml
File Found : C:\Users\NAJDRO~1\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_api.ciuvo.com_0.localstorage-journal
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Users\Šnajdrovi\AppData\LocalLow\SkwConfig.bin
File Found : C:\Users\Šnajdrovi\AppData\Roaming\LiveSupport.exe_log.txt
File Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\searchplugins\Sweetpacks Search.xml
File Found : C:\Users\Šnajdrovi\AppData\Roaming\regsvr32.exe_log.txt
File Found : C:\Windows\System32\dmwu.exe
File Found : C:\Windows\System32\ImhxxpComm.dll
Folder Found : C:\Program Files (x86)\Adblocker
Folder Found : C:\Program Files (x86)\Adblocker
Folder Found : C:\Program Files (x86)\Crawler
Folder Found : C:\Program Files (x86)\globalUpdate
Folder Found : C:\Program Files (x86)\LiveSupport
Folder Found : C:\Program Files (x86)\MyPC Backup
Folder Found : C:\Program Files (x86)\NextCouapi
Folder Found : C:\Program Files (x86)\Optimizer Pro
Folder Found : C:\Program Files (x86)\prioccechop
Folder Found : C:\Program Files (x86)\Sense
Folder Found : C:\Program Files (x86)\Sense
Folder Found : C:\Program Files (x86)\ShopperPro
Folder Found : C:\Program Files (x86)\sw-booster
Folder Found : C:\Program Files (x86)\SweetIM
Folder Found : C:\Program Files (x86)\WinZip Registry Optimizer
Folder Found : C:\Program Files (x86)\YouTube Accelerator
Folder Found : C:\ProgramData\374311380
Folder Found : C:\ProgramData\Adblocker
Folder Found : C:\ProgramData\Adblocker
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\DiscounTExtensi
Folder Found : C:\ProgramData\IePluginServices
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Registry Optimizer
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
Folder Found : C:\ProgramData\NextCouapi
Folder Found : C:\ProgramData\Partner
Folder Found : C:\ProgramData\prioccechop
Folder Found : C:\ProgramData\ShopperPro
Folder Found : C:\ProgramData\SweetIM
Folder Found : C:\ProgramData\Trusted Publisher
Folder Found : C:\ProgramData\WEbsaAver
Folder Found : C:\ProgramData\WindowsMangerProtect
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Administrator\AppData\Local\torch
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Guest\AppData\Local\torch
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Found : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Found : C:\Users\NAJDRO~1\AppData\Local\Temp\apn
Folder Found : C:\Users\NAJDRO~1\AppData\Local\Temp\AskSearch
Folder Found : C:\Users\Public\Documents\Goobzo
Folder Found : C:\Users\Public\Documents\ShopperPro
Folder Found : C:\Users\Public\Documents\YTAHelper
Folder Found : C:\Users\Šnajdrovi\AppData\Local\apn
Folder Found : C:\Users\Šnajdrovi\AppData\Local\globalUpdate
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfohdbmjdkfijghgklbickfnaepghgba
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
Folder Found : C:\Users\Šnajdrovi\AppData\Local\Chromatic Browser
Folder Found : C:\Users\Šnajdrovi\AppData\Local\torch
Folder Found : C:\Users\Šnajdrovi\AppData\Local\VNT
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Goobzo
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Sense
Folder Found : C:\Users\Šnajdrovi\AppData\LocalLow\Sense
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Babylon
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\EZDownloader
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\istartsurf
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\60-oidsh@vaoiivf-rmi.edu
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\eotv4axxp@zcvhzoeu.net
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\gow6jd@yueuutvn.com
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\iaoocbbiy@lrhm.org
Folder Found : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\Extensions\zmiou@jjiaubq.net
Folder Found : C:\Users\Šnajdrovi\Documents\Optimizer Pro
Folder Found : C:\Windows\System32\ljkb
Folder Found : C:\Windows\SysWOW64\ARFC
Folder Found : C:\Windows\SysWOW64\jmdp
Folder Found : C:\Windows\SysWOW64\WNLT
***** [ Scheduled Tasks ] *****
Task Found : BrowserProtect
Task Found : globalUpdateUpdateTaskMachineCore
Task Found : globalUpdateUpdateTaskMachineUA
Task Found : ShopperPro
Task Found : ShopperProJSUpd
Task Found : SPDriver
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-1
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-2
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-3
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-4
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-5
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6
Task Found : fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7
Task Found : SW-Booster-S-792098896
***** [ Shortcuts ] *****
Shortcut Found : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\Desktop\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flying Model Simulator\Visit FMS official website.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Nápověda pro lištu.lnk ( /showurl hxxp://www.crawler.com/help/default.aspx?src=TbMenu )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta\Více produktů Crawler.lnk ( /showurl hxxp://www.crawler.com/products/ )
Shortcut Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
Shortcut Found : C:\Users\Šnajdrovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585 )
***** [ Registry ] *****
Data Found : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command [(Default)] - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=14078655 ... S1585S1585
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\sw-boo~1\assist~1.dll
Data Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~3\perfor~1\perfor~1.dll
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SW-BOO~1\ASSIST~2.DLL
Data Found : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~3\PERFOR~1\PERFOR~2.DLL
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\Sense
Key Found : HKCU\Software\AppDataLow\Software\Sense
Key Found : HKCU\Software\CToolbar
Key Found : HKCU\Software\Goobzo
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\LiveSupport
Key Found : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411821192}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKCU\Software\Optimizer Pro
Key Found : HKCU\Software\PIP
Key Found : HKCU\Software\RegisteredApplicationsEx
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKCU\Software\SweetIM
Key Found : HKCU\Software\WEDLMNGR
Key Found : HKCU\Software\WNLT
Key Found : [x64] HKCU\Software\CToolbar
Key Found : [x64] HKCU\Software\Goobzo
Key Found : [x64] HKCU\Software\IM
Key Found : [x64] HKCU\Software\ImInstaller
Key Found : [x64] HKCU\Software\LiveSupport
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKCU\Software\Optimizer Pro
Key Found : [x64] HKCU\Software\PIP
Key Found : [x64] HKCU\Software\RegisteredApplicationsEx
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\SupHpUISoft
Key Found : [x64] HKCU\Software\SweetIM
Key Found : [x64] HKCU\Software\WEDLMNGR
Key Found : [x64] HKCU\Software\WNLT
Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Found : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Found : HKLM\SOFTWARE\Classes\Adblocker.Adblocker
Key Found : HKLM\SOFTWARE\Classes\Adblocker.Adblocker.1.0
Key Found : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Found : HKLM\SOFTWARE\Classes\AppID\{A2773ED4-83BD-488A-A186-73590706C916}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Found : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4D25FB7A-8902-4291-960E-9ADA051CFBBF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
Key Found : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
Key Found : HKLM\SOFTWARE\Classes\ctbr.R404Pro
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Client
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Script
Key Found : HKLM\SOFTWARE\Classes\CToolbar.TB4Server
Key Found : HKLM\SOFTWARE\Classes\DiscounotEexxteunsi.DiscounotEexxteunsi
Key Found : HKLM\SOFTWARE\Classes\DiscounotEexxteunsi.DiscounotEexxteunsi.7.2
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : HKLM\SOFTWARE\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : HKLM\SOFTWARE\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Found : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Found : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Found : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Found : HKLM\SOFTWARE\Classes\NextCoup.NextCoup
Key Found : HKLM\SOFTWARE\Classes\NextCoup.NextCoup.1.0
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\tbr
Key Found : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Found : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Key Found : HKLM\SOFTWARE\Classes\webssaver.webssaver
Key Found : HKLM\SOFTWARE\Classes\webssaver.webssaver.6.2
Key Found : HKLM\SOFTWARE\CToolbar
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bmw-m3-challenge_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bmw-m3-challenge_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_digital-paintball-3_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_digital-paintball-3_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_need-for-speed-shift_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_need-for-speed-shift_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3D0F43D9-C1D7-733C-01F8-4A3001BF8CC3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5CDF2354-26AF-2DBC-1012-44FEDFCC75BB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{892cc6a3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d0e87c27}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B138259A-351E-33FA-2726-8D71704F1DA9}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ea8fa6be-29be-4af2-9352-841f83215eb0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FDB962F0-B5B8-9460-D12F-7966E97BAA43}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CToolbar_UNINSTALL
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LiveSupport_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\S-792098896
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Found : HKLM\SOFTWARE\omiga-plusSoftware
Key Found : HKLM\SOFTWARE\PIP
Key Found : HKLM\SOFTWARE\qone8Software
Key Found : HKLM\SOFTWARE\Sense
Key Found : HKLM\SOFTWARE\Sense
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\SW-Booster
Key Found : HKLM\SOFTWARE\SweetIM
Key Found : HKLM\SOFTWARE\sweet-pageSoftware
Key Found : HKLM\SOFTWARE\systweak
Key Found : HKLM\SOFTWARE\webssearchesSoftware
Key Found : HKLM\SOFTWARE\WNLT
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Found : [x64] HKLM\SOFTWARE\aartemisSoftware
Key Found : [x64] HKLM\SOFTWARE\awesomehpSoftware
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EBFCF40E-A87B-463F-A782-55BDD4160B5E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Found : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{34A8921D-AF4E-99C8-0297-BFB8C26050C6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4588F565-F86E-E0B8-A126-A59D7B836F38}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{799C179B-28A8-063D-0C12-928FB48FE5EA}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8DC573F0-B305-90D8-FEDB-CE63B2AABBD2}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B6EF34C0188ECFA43B48A4BE9C00748E
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Found : [x64] HKLM\SOFTWARE\omiga-plusSoftware
Key Found : [x64] HKLM\SOFTWARE\qone8Software
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Found : [x64] HKLM\SOFTWARE\sweet-pageSoftware
Key Found : [x64] HKLM\SOFTWARE\webssearchesSoftware
Key Found : [x64] HKLM\SOFTWARE\WNLT
Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [livesupport]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SPDriver]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.crawler.com/?tbid=66022
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.gboxapp.com/
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585&q={searchTerms}
-\\ Mozilla Firefox v31.0 (x86 cs)
[ File : C:\Users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\prefs.js ]
Line Found : user_pref("browser.newtab.url", "hxxp://www.sweetpacks-search.com/?barid=&src=97&&st=23");
Line Found : user_pref("extensions.1FDp60zAKxAw.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
Line Found : user_pref("extensions.JAlJAETOkCNm.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sum[...]
Line Found : user_pref("extensions.Ni_aFUUCD.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
Line Found : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292.48292.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
Line Found : user_pref("extensions.crossrider.bic", "147cf5ebbf7f3c2a2f777e8b17dbf480");
Line Found : user_pref("extensions.h18dVKudi.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumoro[...]
Line Found : user_pref("extensions.n_ul.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"warnalert11.com\")>-1||url.indexOf(\"sumorobo.ne[...]
Line Found : user_pref("extensions.n_ul.url", "hxxp://syncservice.info/sync2/?q=hfZ9ofbTAy1MCyVUojr8qjrMg708BNmGWj8deShGheDUojw9rdYFqja4qdkGrShIC7n0rjnEpjaHrdU9qHsFtNhVCT94tMVKhd99rTs9qjU8rHg6rHUHqHgHpds6tNqHhd9Fr[...]
Line Found : user_pref("browser.search.defaultenginename", "webssearches");
Line Found : user_pref("browser.search.selectedEngine", "webssearches");
-\\ Google Chrome v
[ File : C:\Users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found [Search Provider] : hxxp://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=&&st=23
Found [Startup_urls] : hxxp://www.search.ask.com/?tpid=ATU4-V7C&o=APN ... 11-20&psv=
Found [Startup_urls] : hxxp://www.search.ask.com/?tpid=ATU4-V7C&o=APN ... 04-28&psv=
Found [Startup_urls] : hxxp://www.istartsurf.com/?type=hp&ts=14078655 ... S1585S1585
Found [Startup_urls] : hxxp://istart.webssearches.com/?type=hp&ts=1408096044&from=wpc&uid=WDCXWD5000BPVT-80HXZT3_WD-WX61A71S1585S1585
Found [Extension] : caohogmkgaocnjjoelkkalfehahogkdb
Found [Extension] : dfohdbmjdkfijghgklbickfnaepghgba
Found [Extension] : eooncjejnppfjjklapaamhcdmjbilmde
Found [Extension] : pelmeidfhdlhlbjimpabfcbnnojbboma
Found [Extension] : popoohickdhddnflocahhgapedfplkdl
*************************
AdwCleaner[R0].txt - [47921 octets] - [03/09/2014 20:12:15]
AdwCleaner[R1].txt - [47593 octets] - [03/09/2014 20:14:47]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [47654 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Spusťte znovu ADW a klikněte na >Clean<. Restartujte a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Nový log:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šnajdrovi at 2014-09-04 22:10:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 69 GB (36%) free of 191 GB
Total RAM: 3873 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:43, on 4.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Asus\AsusVibe\AsusVibe2.0.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
C:\Program Files (x86)\Skype\Updater\Updater.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Windows\SysWOW64\WScript.exe
C:\Windows\SysWOW64\WScript.exe
C:\Program Files\trend micro\Šnajdrovi.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [mnchymxSrv] C:\Windows\system32\mnchymx.vbe
O4 - HKLM\..\Run: [mncmvejSrv] C:\Windows\system32\mncmvej.vbe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B5FE44C3-3FC1-4453-B5C4-97CD50778781}: NameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{C14CDE78-1370-4E4B-9E67-DA7A3B046FF7}: NameServer =
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14295 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {7D5EC575-C7B9-4B08-89F0-8109F14816B4}
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {7194E7AA-3407-4947-8C58-B3108B44CD74}
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
uiWatchDog.exe 2012
\??\C:\Windows\system32\conhost.exe "1093631994199432567-1544333594-1634722185576035331-1828116910-6897204301173012198
coreFrameworkHost.exe 2012 1
\??\C:\Windows\system32\conhost.exe "-16681339401614694144-134212907-1770357937-9326289281053642827-915065714751955187
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
/start
"C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\SysWOW64\svchost.exe -k MbnExt
WLIDSvcM.exe 3796
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\mnchymx.vbe"
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\mncmvej.vbe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Šnajdrovi\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-Files FixerASKUSER.job
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Registry Optimizer_DEFAULT.job
C:\Windows\tasks\Registry Optimizer_UPDATES.job
C:\Windows\tasks\SmartPCFix Task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-28 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-28 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-28 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-26 11775592]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-26 138096]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-07-14 1841264]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21444224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-10-18 2319536]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-11-15 3058304]
"mnchymxSrv"=C:\Windows\system32\mnchymx.vbe []
"mncmvejSrv"=C:\Windows\system32\mncmvej.vbe []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-07-26 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-09-04 20:31:53 ----D---- C:\rsit
2014-09-04 19:22:27 ----HD---- C:\TMRescueDisk
2014-09-04 19:18:04 ----A---- C:\Windows\system32\drivers\tmeevw.sys
2014-09-04 19:18:02 ----A---- C:\Windows\system32\drivers\tmnciesc.sys
2014-09-04 19:18:00 ----A---- C:\Windows\system32\drivers\tmtdi.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmcomm.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmactmon.sys
2014-09-04 19:17:54 ----A---- C:\Windows\system32\drivers\TMEBC64.sys
2014-09-04 19:16:42 ----A---- C:\Windows\system32\SupportTool.exe.bat
2014-09-04 19:16:04 ----D---- C:\Program Files\Trend Micro
2014-09-04 18:59:52 ----D---- C:\ProgramData\Trend Micro Installer
2014-09-03 21:32:39 ----D---- C:\Program Files\CCleaner
2014-09-03 20:31:36 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-09-03 20:31:22 ----D---- C:\ProgramData\Malwarebytes
2014-09-03 20:31:22 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-03 20:13:13 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-09-03 20:12:12 ----D---- C:\AdwCleaner
2014-09-02 12:25:45 ----D---- C:\ProgramData\Performance Optimizer
2014-08-28 14:56:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 14:56:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 14:56:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuapp.exe
2014-08-19 09:19:00 ----D---- C:\Program Files (x86)\_utorrent
2014-08-15 14:51:56 ----D---- C:\ProgramData\DrivingSpeed2
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-08-15 14:50:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-08-15 14:50:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-08-15 14:50:30 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-08-15 14:50:30 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-08-15 14:50:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-08-15 14:50:29 ----A---- C:\Windows\system32\xinput1_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-08-15 14:50:11 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-08-15 14:50:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-08-15 14:50:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-08-15 14:50:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-08-15 14:50:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-08-15 14:47:55 ----D---- C:\Program Files (x86)\DrivingSpeed2
2014-08-15 11:45:24 ----D---- C:\ProgramData\54e6438eb996f1b8
2014-08-14 14:13:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 21:58:22 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 21:58:12 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 21:58:12 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 21:57:54 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 21:57:54 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:49:37 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:49:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 09:49:35 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 09:49:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:49:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:49:27 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:30:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:30:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 09:30:49 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:30:43 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:30:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 09:30:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:30:40 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:30:38 ----A---- C:\Windows\system32\aeinv.dll
2014-08-12 19:44:54 ----D---- C:\Program Files (x86)\Maxiget
2014-08-12 19:44:51 ----A---- C:\Windows\unins000.exe
2014-08-12 12:25:30 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-08-12 11:45:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-08-12 11:45:14 ----A---- C:\Windows\system32\xinput1_3.dll
======List of files/folders modified in the last 1 months======
2014-09-04 22:10:26 ----D---- C:\Windows\Temp
2014-09-04 22:10:25 ----D---- C:\Users\Šnajdrovi\AppData\Roaming\Skype
2014-09-04 22:10:18 ----D---- C:\Windows\system32\config
2014-09-04 22:09:49 ----HD---- C:\ASUS.DAT
2014-09-04 22:09:38 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-09-04 22:09:35 ----D---- C:\ProgramData\Trend Micro
2014-09-04 22:08:56 ----D---- C:\Windows
2014-09-04 22:08:27 ----A---- C:\Windows\SYSWOW64\log.txt
2014-09-04 20:18:40 ----SHD---- C:\$Recycle.Bin
2014-09-04 19:18:40 ----SHD---- C:\Windows\Installer
2014-09-04 19:18:04 ----D---- C:\Windows\system32\drivers
2014-09-04 19:17:59 ----D---- C:\Windows\system32\catroot
2014-09-04 19:17:58 ----D---- C:\Windows\system32\DriverStore
2014-09-04 19:17:58 ----D---- C:\Windows\inf
2014-09-04 19:17:22 ----D---- C:\Windows\system32\Tasks
2014-09-04 19:16:42 ----D---- C:\Windows\System32
2014-09-04 19:16:40 ----HD---- C:\ProgramData
2014-09-04 19:16:09 ----SHD---- C:\Config.Msi
2014-09-04 19:16:09 ----D---- C:\Windows\SysWOW64
2014-09-04 19:16:04 ----RD---- C:\Program Files
2014-09-04 19:01:07 ----D---- C:\Windows\SYSWOW64\drivers
2014-09-04 00:10:54 ----D---- C:\Windows\winsxs
2014-09-04 00:03:31 ----D---- C:\Windows\system32\catroot2
2014-09-03 22:06:56 ----RD---- C:\Users
2014-09-03 21:34:20 ----D---- C:\Windows\Panther
2014-09-03 21:34:20 ----D---- C:\Windows\ModemLogs
2014-09-03 21:34:20 ----D---- C:\Windows\Minidump
2014-09-03 21:34:20 ----D---- C:\Windows\Logs
2014-09-03 21:34:20 ----D---- C:\Windows\debug
2014-09-03 21:30:31 ----RD---- C:\Program Files (x86)
2014-09-03 21:30:31 ----D---- C:\Program Files (x86)\Google
2014-09-03 21:22:31 ----D---- C:\Windows\sr-Latn-CS
2014-09-03 21:21:41 ----D---- C:\Program Files\Common Files
2014-09-03 21:21:35 ----D---- C:\Program Files (x86)\GotClip
2014-09-03 20:19:30 ----D---- C:\Windows\Prefetch
2014-09-03 20:16:15 ----D---- C:\Windows\Tasks
2014-09-02 22:15:16 ----SHD---- C:\System Volume Information
2014-08-29 22:50:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-27 19:21:48 ----D---- C:\Windows\SYSWOW64\mjcm
2014-08-27 19:21:48 ----D---- C:\Windows\system32\tprb
2014-08-26 21:27:31 ----D---- C:\Windows\rescache
2014-08-24 13:04:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-24 13:04:19 ----D---- C:\Windows\system32\cs-CZ
2014-08-18 20:19:48 ----AD---- C:\ProgramData\Temp
2014-08-15 14:50:25 ----RSD---- C:\Windows\assembly
2014-08-15 14:50:17 ----D---- C:\Windows\Microsoft.NET
2014-08-15 12:06:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-15 11:45:24 ----HD---- C:\Windows\system32\GroupPolicy
2014-08-15 11:45:24 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-08-14 14:05:09 ----D---- C:\Windows\ehome
2014-08-14 14:05:07 ----RSD---- C:\Windows\Fonts
2014-08-14 14:04:37 ----D---- C:\Program Files\Internet Explorer
2014-08-14 14:04:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-14 14:04:28 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 14:04:27 ----D---- C:\Windows\system32\en-US
2014-08-14 14:04:23 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 22:16:48 ----D---- C:\ProgramData\Microsoft Help
2014-08-13 22:10:09 ----D---- C:\Windows\system32\MRT
2014-08-13 22:04:39 ----A---- C:\Windows\system32\MRT.exe
2014-08-13 21:57:24 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 19:02:32 ----D---- C:\Program Files (x86)\ASUS
2014-08-13 10:10:43 ----D---- C:\Program Files (x86)\Radical Games
2014-08-13 10:01:58 ----D---- C:\Program Files (x86)\Common Files
2014-08-12 11:44:41 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2014-08-12 09:34:09 ----D---- C:\Windows\system32\NDF
2014-08-07 13:31:57 ----RD---- C:\Program Files (x86)\Skype
2014-08-05 09:20:00 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-07-18 281600]
R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-07-18 116264]
R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-07-18 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-03 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-03 394728]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-07 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-08 2736872]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 104448]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2012-04-23 238080]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
S3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-18 76888]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 892cc6a3;Performance Optimizer; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-14 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šnajdrovi at 2014-09-04 22:10:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 69 GB (36%) free of 191 GB
Total RAM: 3873 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:43, on 4.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Asus\AsusVibe\AsusVibe2.0.exe
C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
C:\Program Files (x86)\Skype\Updater\Updater.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Windows\SysWOW64\WScript.exe
C:\Windows\SysWOW64\WScript.exe
C:\Program Files\trend micro\Šnajdrovi.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [mnchymxSrv] C:\Windows\system32\mnchymx.vbe
O4 - HKLM\..\Run: [mncmvejSrv] C:\Windows\system32\mncmvej.vbe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B5FE44C3-3FC1-4453-B5C4-97CD50778781}: NameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{C14CDE78-1370-4E4B-9E67-DA7A3B046FF7}: NameServer =
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14295 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {7D5EC575-C7B9-4B08-89F0-8109F14816B4}
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {7194E7AA-3407-4947-8C58-B3108B44CD74}
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
uiWatchDog.exe 2012
\??\C:\Windows\system32\conhost.exe "1093631994199432567-1544333594-1634722185576035331-1828116910-6897204301173012198
coreFrameworkHost.exe 2012 1
\??\C:\Windows\system32\conhost.exe "-16681339401614694144-134212907-1770357937-9326289281053642827-915065714751955187
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
/start
"C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\SysWOW64\svchost.exe -k MbnExt
WLIDSvcM.exe 3796
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\mnchymx.vbe"
"C:\Windows\System32\WScript.exe" "C:\Windows\System32\mncmvej.vbe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Šnajdrovi\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-Files FixerASKUSER.job
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Registry Optimizer_DEFAULT.job
C:\Windows\tasks\Registry Optimizer_UPDATES.job
C:\Windows\tasks\SmartPCFix Task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01 346736]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11 1154720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01 256112]
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-28 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-28 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-28 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-26 11775592]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Šnajdrovi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-26 138096]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-07-14 1841264]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21444224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-10-18 2319536]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-11-15 3058304]
"mnchymxSrv"=C:\Windows\system32\mnchymx.vbe []
"mncmvejSrv"=C:\Windows\system32\mncmvej.vbe []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-07-26 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-09-04 20:31:53 ----D---- C:\rsit
2014-09-04 19:22:27 ----HD---- C:\TMRescueDisk
2014-09-04 19:18:04 ----A---- C:\Windows\system32\drivers\tmeevw.sys
2014-09-04 19:18:02 ----A---- C:\Windows\system32\drivers\tmnciesc.sys
2014-09-04 19:18:00 ----A---- C:\Windows\system32\drivers\tmtdi.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmcomm.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmactmon.sys
2014-09-04 19:17:54 ----A---- C:\Windows\system32\drivers\TMEBC64.sys
2014-09-04 19:16:42 ----A---- C:\Windows\system32\SupportTool.exe.bat
2014-09-04 19:16:04 ----D---- C:\Program Files\Trend Micro
2014-09-04 18:59:52 ----D---- C:\ProgramData\Trend Micro Installer
2014-09-03 21:32:39 ----D---- C:\Program Files\CCleaner
2014-09-03 20:31:36 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-09-03 20:31:22 ----D---- C:\ProgramData\Malwarebytes
2014-09-03 20:31:22 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-03 20:13:13 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-09-03 20:12:12 ----D---- C:\AdwCleaner
2014-09-02 12:25:45 ----D---- C:\ProgramData\Performance Optimizer
2014-08-28 14:56:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 14:56:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 14:56:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuapp.exe
2014-08-19 09:19:00 ----D---- C:\Program Files (x86)\_utorrent
2014-08-15 14:51:56 ----D---- C:\ProgramData\DrivingSpeed2
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-08-15 14:50:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-08-15 14:50:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-08-15 14:50:30 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-08-15 14:50:30 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-08-15 14:50:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-08-15 14:50:29 ----A---- C:\Windows\system32\xinput1_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-08-15 14:50:11 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-08-15 14:50:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-08-15 14:50:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-08-15 14:50:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-08-15 14:50:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-08-15 14:47:55 ----D---- C:\Program Files (x86)\DrivingSpeed2
2014-08-15 11:45:24 ----D---- C:\ProgramData\54e6438eb996f1b8
2014-08-14 14:13:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 21:58:22 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 21:58:12 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 21:58:12 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 21:57:54 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 21:57:54 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:49:37 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:49:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 09:49:35 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 09:49:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:49:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:49:27 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:30:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:30:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 09:30:49 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:30:43 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:30:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 09:30:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:30:40 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:30:38 ----A---- C:\Windows\system32\aeinv.dll
2014-08-12 19:44:54 ----D---- C:\Program Files (x86)\Maxiget
2014-08-12 19:44:51 ----A---- C:\Windows\unins000.exe
2014-08-12 12:25:30 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-08-12 11:45:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-08-12 11:45:14 ----A---- C:\Windows\system32\xinput1_3.dll
======List of files/folders modified in the last 1 months======
2014-09-04 22:10:26 ----D---- C:\Windows\Temp
2014-09-04 22:10:25 ----D---- C:\Users\Šnajdrovi\AppData\Roaming\Skype
2014-09-04 22:10:18 ----D---- C:\Windows\system32\config
2014-09-04 22:09:49 ----HD---- C:\ASUS.DAT
2014-09-04 22:09:38 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-09-04 22:09:35 ----D---- C:\ProgramData\Trend Micro
2014-09-04 22:08:56 ----D---- C:\Windows
2014-09-04 22:08:27 ----A---- C:\Windows\SYSWOW64\log.txt
2014-09-04 20:18:40 ----SHD---- C:\$Recycle.Bin
2014-09-04 19:18:40 ----SHD---- C:\Windows\Installer
2014-09-04 19:18:04 ----D---- C:\Windows\system32\drivers
2014-09-04 19:17:59 ----D---- C:\Windows\system32\catroot
2014-09-04 19:17:58 ----D---- C:\Windows\system32\DriverStore
2014-09-04 19:17:58 ----D---- C:\Windows\inf
2014-09-04 19:17:22 ----D---- C:\Windows\system32\Tasks
2014-09-04 19:16:42 ----D---- C:\Windows\System32
2014-09-04 19:16:40 ----HD---- C:\ProgramData
2014-09-04 19:16:09 ----SHD---- C:\Config.Msi
2014-09-04 19:16:09 ----D---- C:\Windows\SysWOW64
2014-09-04 19:16:04 ----RD---- C:\Program Files
2014-09-04 19:01:07 ----D---- C:\Windows\SYSWOW64\drivers
2014-09-04 00:10:54 ----D---- C:\Windows\winsxs
2014-09-04 00:03:31 ----D---- C:\Windows\system32\catroot2
2014-09-03 22:06:56 ----RD---- C:\Users
2014-09-03 21:34:20 ----D---- C:\Windows\Panther
2014-09-03 21:34:20 ----D---- C:\Windows\ModemLogs
2014-09-03 21:34:20 ----D---- C:\Windows\Minidump
2014-09-03 21:34:20 ----D---- C:\Windows\Logs
2014-09-03 21:34:20 ----D---- C:\Windows\debug
2014-09-03 21:30:31 ----RD---- C:\Program Files (x86)
2014-09-03 21:30:31 ----D---- C:\Program Files (x86)\Google
2014-09-03 21:22:31 ----D---- C:\Windows\sr-Latn-CS
2014-09-03 21:21:41 ----D---- C:\Program Files\Common Files
2014-09-03 21:21:35 ----D---- C:\Program Files (x86)\GotClip
2014-09-03 20:19:30 ----D---- C:\Windows\Prefetch
2014-09-03 20:16:15 ----D---- C:\Windows\Tasks
2014-09-02 22:15:16 ----SHD---- C:\System Volume Information
2014-08-29 22:50:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-27 19:21:48 ----D---- C:\Windows\SYSWOW64\mjcm
2014-08-27 19:21:48 ----D---- C:\Windows\system32\tprb
2014-08-26 21:27:31 ----D---- C:\Windows\rescache
2014-08-24 13:04:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-24 13:04:19 ----D---- C:\Windows\system32\cs-CZ
2014-08-18 20:19:48 ----AD---- C:\ProgramData\Temp
2014-08-15 14:50:25 ----RSD---- C:\Windows\assembly
2014-08-15 14:50:17 ----D---- C:\Windows\Microsoft.NET
2014-08-15 12:06:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-15 11:45:24 ----HD---- C:\Windows\system32\GroupPolicy
2014-08-15 11:45:24 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-08-14 14:05:09 ----D---- C:\Windows\ehome
2014-08-14 14:05:07 ----RSD---- C:\Windows\Fonts
2014-08-14 14:04:37 ----D---- C:\Program Files\Internet Explorer
2014-08-14 14:04:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-14 14:04:28 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 14:04:27 ----D---- C:\Windows\system32\en-US
2014-08-14 14:04:23 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 22:16:48 ----D---- C:\ProgramData\Microsoft Help
2014-08-13 22:10:09 ----D---- C:\Windows\system32\MRT
2014-08-13 22:04:39 ----A---- C:\Windows\system32\MRT.exe
2014-08-13 21:57:24 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 19:02:32 ----D---- C:\Program Files (x86)\ASUS
2014-08-13 10:10:43 ----D---- C:\Program Files (x86)\Radical Games
2014-08-13 10:01:58 ----D---- C:\Program Files (x86)\Common Files
2014-08-12 11:44:41 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2014-08-12 09:34:09 ----D---- C:\Windows\system32\NDF
2014-08-07 13:31:57 ----RD---- C:\Program Files (x86)\Skype
2014-08-05 09:20:00 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-07-18 281600]
R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-07-18 116264]
R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-07-18 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-03 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-03 394728]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-07 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-08 2736872]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 104448]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2012-04-23 238080]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
S3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-18 76888]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 892cc6a3;Performance Optimizer; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-14 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\Microsoft\BingBar
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files (x86)\Google\GoogleToolbarNotifier
C:\Windows\system32\mnchymx.vbe
C:\Windows\system32\mncmvej.vbe
C:\Users\Šnajdrovi\AppData\Local\Facebook\Update
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3987517665-1783068479-977691871-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\SYSWOW64\acovcnt.exe
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"mnchymxSrv"=-
"mncmvejSrv"=-
:services
BBSvc
c2cautoupdatesvc
c2cpnrsvc
BBUpdate
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Další várka 
:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Šnajdrovi at 2014-09-04 22:51:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 71 GB (37%) free of 191 GB
Total RAM: 3873 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:51:54, on 4.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\trend micro\Šnajdrovi.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B5FE44C3-3FC1-4453-B5C4-97CD50778781}: NameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{C14CDE78-1370-4E4B-9E67-DA7A3B046FF7}: NameServer =
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12666 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {4C1728BD-618F-40FC-938F-E774DCFA59DC}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
uiWatchDog.exe 1864
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"taskhost.exe"
\??\C:\Windows\system32\conhost.exe "-708415732-165801754415090203021340368335-1656248657-9613676211141462639-982401169
coreFrameworkHost.exe 1864 1
\??\C:\Windows\system32\conhost.exe "-2095859296-697244652-6536060261939118237288998008-23825978713574250451476545254
taskeng.exe {2251C9F0-3B84-4357-9CF2-05AC1737EBAE}
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\SysWOW64\svchost.exe -k MbnExt
WLIDSvcM.exe 2808
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Users\Šnajdrovi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-Files FixerASKUSER.job
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job
C:\Windows\tasks\Registry Optimizer_DEFAULT.job
C:\Windows\tasks\Registry Optimizer_UPDATES.job
C:\Windows\tasks\SmartPCFix Task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-28 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-28 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-28 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-26 11775592]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-07-14 1841264]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21444224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-10-18 2319536]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-11-15 3058304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-07-26 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-09-04 22:48:21 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-09-04 22:45:20 ----D---- C:\_OTM
2014-09-04 20:31:53 ----D---- C:\rsit
2014-09-04 19:22:27 ----HD---- C:\TMRescueDisk
2014-09-04 19:18:04 ----A---- C:\Windows\system32\drivers\tmeevw.sys
2014-09-04 19:18:02 ----A---- C:\Windows\system32\drivers\tmnciesc.sys
2014-09-04 19:18:00 ----A---- C:\Windows\system32\drivers\tmtdi.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmcomm.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmactmon.sys
2014-09-04 19:17:54 ----A---- C:\Windows\system32\drivers\TMEBC64.sys
2014-09-04 19:16:42 ----A---- C:\Windows\system32\SupportTool.exe.bat
2014-09-04 19:16:04 ----D---- C:\Program Files\Trend Micro
2014-09-04 18:59:52 ----D---- C:\ProgramData\Trend Micro Installer
2014-09-03 21:32:39 ----D---- C:\Program Files\CCleaner
2014-09-03 20:31:36 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-09-03 20:31:22 ----D---- C:\ProgramData\Malwarebytes
2014-09-03 20:31:22 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-03 20:13:13 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-09-03 20:12:12 ----D---- C:\AdwCleaner
2014-09-02 12:25:45 ----D---- C:\ProgramData\Performance Optimizer
2014-08-28 14:56:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 14:56:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 14:56:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuapp.exe
2014-08-19 09:19:00 ----D---- C:\Program Files (x86)\_utorrent
2014-08-15 14:51:56 ----D---- C:\ProgramData\DrivingSpeed2
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-08-15 14:50:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-08-15 14:50:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-08-15 14:50:30 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-08-15 14:50:30 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-08-15 14:50:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-08-15 14:50:29 ----A---- C:\Windows\system32\xinput1_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-08-15 14:50:11 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-08-15 14:50:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-08-15 14:50:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-08-15 14:50:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-08-15 14:50:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-08-15 14:47:55 ----D---- C:\Program Files (x86)\DrivingSpeed2
2014-08-15 11:45:24 ----D---- C:\ProgramData\54e6438eb996f1b8
2014-08-14 14:13:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 21:58:22 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 21:58:12 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 21:58:12 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 21:57:54 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 21:57:54 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:49:37 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:49:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 09:49:35 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 09:49:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:49:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:49:27 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:30:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:30:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 09:30:49 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:30:43 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:30:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 09:30:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:30:40 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:30:38 ----A---- C:\Windows\system32\aeinv.dll
2014-08-12 19:44:54 ----D---- C:\Program Files (x86)\Maxiget
2014-08-12 19:44:51 ----A---- C:\Windows\unins000.exe
2014-08-12 12:25:30 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-08-12 11:45:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-08-12 11:45:14 ----A---- C:\Windows\system32\xinput1_3.dll
======List of files/folders modified in the last 1 months======
2014-09-04 22:51:40 ----D---- C:\Users\Šnajdrovi\AppData\Roaming\Skype
2014-09-04 22:50:52 ----A---- C:\Windows\SYSWOW64\log.txt
2014-09-04 22:50:27 ----D---- C:\Windows\Temp
2014-09-04 22:49:38 ----HD---- C:\ASUS.DAT
2014-09-04 22:48:36 ----D---- C:\Windows\system32\config
2014-09-04 22:48:21 ----D---- C:\Windows\SysWOW64
2014-09-04 22:46:28 ----D---- C:\Windows\Tasks
2014-09-04 22:46:27 ----D---- C:\Program Files (x86)\Google
2014-09-04 22:46:20 ----D---- C:\Program Files (x86)\Microsoft
2014-09-04 22:09:35 ----D---- C:\ProgramData\Trend Micro
2014-09-04 22:08:56 ----D---- C:\Windows
2014-09-04 20:18:40 ----SHD---- C:\$Recycle.Bin
2014-09-04 19:18:40 ----SHD---- C:\Windows\Installer
2014-09-04 19:18:04 ----D---- C:\Windows\system32\drivers
2014-09-04 19:17:59 ----D---- C:\Windows\system32\catroot
2014-09-04 19:17:58 ----D---- C:\Windows\system32\DriverStore
2014-09-04 19:17:58 ----D---- C:\Windows\inf
2014-09-04 19:17:22 ----D---- C:\Windows\system32\Tasks
2014-09-04 19:16:42 ----D---- C:\Windows\System32
2014-09-04 19:16:40 ----HD---- C:\ProgramData
2014-09-04 19:16:09 ----SHD---- C:\Config.Msi
2014-09-04 19:16:04 ----RD---- C:\Program Files
2014-09-04 19:01:07 ----D---- C:\Windows\SYSWOW64\drivers
2014-09-04 00:10:54 ----D---- C:\Windows\winsxs
2014-09-04 00:03:31 ----D---- C:\Windows\system32\catroot2
2014-09-03 22:06:56 ----RD---- C:\Users
2014-09-03 21:34:20 ----D---- C:\Windows\Panther
2014-09-03 21:34:20 ----D---- C:\Windows\ModemLogs
2014-09-03 21:34:20 ----D---- C:\Windows\Minidump
2014-09-03 21:34:20 ----D---- C:\Windows\Logs
2014-09-03 21:34:20 ----D---- C:\Windows\debug
2014-09-03 21:30:31 ----RD---- C:\Program Files (x86)
2014-09-03 21:22:31 ----D---- C:\Windows\sr-Latn-CS
2014-09-03 21:21:41 ----D---- C:\Program Files\Common Files
2014-09-03 21:21:35 ----D---- C:\Program Files (x86)\GotClip
2014-09-03 20:19:30 ----D---- C:\Windows\Prefetch
2014-09-02 22:15:16 ----SHD---- C:\System Volume Information
2014-08-29 22:50:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-27 19:21:48 ----D---- C:\Windows\SYSWOW64\mjcm
2014-08-27 19:21:48 ----D---- C:\Windows\system32\tprb
2014-08-26 21:27:31 ----D---- C:\Windows\rescache
2014-08-24 13:04:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-24 13:04:19 ----D---- C:\Windows\system32\cs-CZ
2014-08-18 20:19:48 ----AD---- C:\ProgramData\Temp
2014-08-15 14:50:25 ----RSD---- C:\Windows\assembly
2014-08-15 14:50:17 ----D---- C:\Windows\Microsoft.NET
2014-08-15 12:06:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-15 11:45:24 ----HD---- C:\Windows\system32\GroupPolicy
2014-08-15 11:45:24 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-08-14 14:05:09 ----D---- C:\Windows\ehome
2014-08-14 14:05:07 ----RSD---- C:\Windows\Fonts
2014-08-14 14:04:37 ----D---- C:\Program Files\Internet Explorer
2014-08-14 14:04:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-14 14:04:28 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 14:04:27 ----D---- C:\Windows\system32\en-US
2014-08-14 14:04:23 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 22:16:48 ----D---- C:\ProgramData\Microsoft Help
2014-08-13 22:10:09 ----D---- C:\Windows\system32\MRT
2014-08-13 22:04:39 ----A---- C:\Windows\system32\MRT.exe
2014-08-13 21:57:24 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 19:02:32 ----D---- C:\Program Files (x86)\ASUS
2014-08-13 10:10:43 ----D---- C:\Program Files (x86)\Radical Games
2014-08-13 10:01:58 ----D---- C:\Program Files (x86)\Common Files
2014-08-12 11:44:41 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2014-08-12 09:34:09 ----D---- C:\Windows\system32\NDF
2014-08-07 13:31:57 ----RD---- C:\Program Files (x86)\Skype
2014-08-05 09:20:00 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-07-18 281600]
R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-07-18 116264]
R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-07-18 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-03 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-03 394728]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-07 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-08 2736872]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
R3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 104448]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2012-04-23 238080]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-18 76888]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 892cc6a3;Performance Optimizer; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-14 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
:Logfile of random's system information tool 1.08 (written by random/random)
Run by Šnajdrovi at 2014-09-04 22:51:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 71 GB (37%) free of 191 GB
Total RAM: 3873 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:51:54, on 4.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\trend micro\Šnajdrovi.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Trend Micro NSC BHO - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{B5FE44C3-3FC1-4453-B5C4-97CD50778781}: NameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{C14CDE78-1370-4E4B-9E67-DA7A3B046FF7}: NameServer =
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O18 - Protocol: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12666 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {4C1728BD-618F-40FC-938F-E774DCFA59DC}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0
uiWatchDog.exe 1864
"C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe"
"taskhost.exe"
\??\C:\Windows\system32\conhost.exe "-708415732-165801754415090203021340368335-1656248657-9613676211141462639-982401169
coreFrameworkHost.exe 1864 1
\??\C:\Windows\system32\conhost.exe "-2095859296-697244652-6536060261939118237288998008-23825978713574250451476545254
taskeng.exe {2251C9F0-3B84-4357-9CF2-05AC1737EBAE}
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe" PanProcess
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\SysWOW64\svchost.exe -k MbnExt
WLIDSvcM.exe 2808
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Users\Šnajdrovi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-Files FixerASKUSER.job
C:\Windows\tasks\DLL-Files.Com Fixer_MONTHLY.job
C:\Windows\tasks\DLL-Files.Com Fixer_Updates.job
C:\Windows\tasks\Registry Optimizer_DEFAULT.job
C:\Windows\tasks\Registry Optimizer_UPDATES.job
C:\Windows\tasks\SmartPCFix Task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg.dll [2013-07-10 449048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CA1377B-DC1D-4A52-9585-6E06050FAC53}]
TmIEPlugInBHO Class - C:\Program Files\Trend Micro\AMSP\module\20004\3.0.1251\6.8.1118\TmIEPlg32.dll [2013-07-10 332824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2013-07-23 509200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-01 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}]
TmBpIeBHO Class - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []
{eec0f710-38b5-4aba-99bf-ec87564a4e13} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-12 2589992]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2011-03-21 361984]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-01-18 2188904]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-06-01 926880]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-06-01 792736]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-07-28 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-07-28 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-07-28 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-26 11775592]
"Trend Micro Client Framework"=C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [2013-07-23 221584]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-07-14 1841264]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-05-08 21444224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"=C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [2011-02-23 731472]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [2010-07-10 984400]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-18 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-08 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2011-10-18 2319536]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-11-15 3058304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-07-26 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDriveAutoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2014-09-04 22:48:21 ----A---- C:\Windows\SYSWOW64\acovcnt.exe
2014-09-04 22:45:20 ----D---- C:\_OTM
2014-09-04 20:31:53 ----D---- C:\rsit
2014-09-04 19:22:27 ----HD---- C:\TMRescueDisk
2014-09-04 19:18:04 ----A---- C:\Windows\system32\drivers\tmeevw.sys
2014-09-04 19:18:02 ----A---- C:\Windows\system32\drivers\tmnciesc.sys
2014-09-04 19:18:00 ----A---- C:\Windows\system32\drivers\tmtdi.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmevtmgr.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmcomm.sys
2014-09-04 19:17:56 ----A---- C:\Windows\system32\drivers\tmactmon.sys
2014-09-04 19:17:54 ----A---- C:\Windows\system32\drivers\TMEBC64.sys
2014-09-04 19:16:42 ----A---- C:\Windows\system32\SupportTool.exe.bat
2014-09-04 19:16:04 ----D---- C:\Program Files\Trend Micro
2014-09-04 18:59:52 ----D---- C:\ProgramData\Trend Micro Installer
2014-09-03 21:32:39 ----D---- C:\Program Files\CCleaner
2014-09-03 20:31:36 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-09-03 20:31:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-09-03 20:31:22 ----D---- C:\ProgramData\Malwarebytes
2014-09-03 20:31:22 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-03 20:13:13 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-09-03 20:12:12 ----D---- C:\AdwCleaner
2014-09-02 12:25:45 ----D---- C:\ProgramData\Performance Optimizer
2014-08-28 14:56:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-28 14:56:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-28 14:56:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wups2.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wucltux.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-22 16:20:14 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wups.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wudriver.dll
2014-08-22 16:19:51 ----A---- C:\Windows\system32\wuapi.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-22 16:19:36 ----A---- C:\Windows\system32\wuapp.exe
2014-08-19 09:19:00 ----D---- C:\Program Files (x86)\_utorrent
2014-08-15 14:51:56 ----D---- C:\ProgramData\DrivingSpeed2
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-08-15 14:50:33 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-08-15 14:50:32 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-08-15 14:50:32 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xinput1_2.dll
2014-08-15 14:50:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-08-15 14:50:30 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-08-15 14:50:30 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-08-15 14:50:29 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-08-15 14:50:29 ----A---- C:\Windows\system32\xinput1_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-08-15 14:50:25 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-08-15 14:50:11 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-08-15 14:50:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-08-15 14:50:09 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-08-15 14:50:07 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-08-15 14:50:07 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-08-15 14:50:03 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-08-15 14:50:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-08-15 14:50:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-08-15 14:47:55 ----D---- C:\Program Files (x86)\DrivingSpeed2
2014-08-15 11:45:24 ----D---- C:\ProgramData\54e6438eb996f1b8
2014-08-14 14:13:22 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-13 21:58:22 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-13 21:58:22 ----A---- C:\Windows\system32\icardagt.exe
2014-08-13 21:58:12 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-13 21:58:12 ----A---- C:\Windows\system32\icardres.dll
2014-08-13 21:57:54 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-13 21:57:54 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2014-08-13 19:13:08 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-13 09:49:39 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:49:39 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-13 09:49:38 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:49:38 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-13 09:49:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:49:37 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:49:37 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:49:36 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:49:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-13 09:49:35 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-13 09:49:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-13 09:49:33 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-13 09:49:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:49:32 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:49:31 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:49:30 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:49:29 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:49:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:49:27 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:49:27 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:40:49 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:30:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:30:57 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:30:56 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:30:49 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-13 09:30:49 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:30:43 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:30:42 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-13 09:30:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:30:40 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-13 09:30:39 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:30:38 ----A---- C:\Windows\system32\aeinv.dll
2014-08-12 19:44:54 ----D---- C:\Program Files (x86)\Maxiget
2014-08-12 19:44:51 ----A---- C:\Windows\unins000.exe
2014-08-12 12:25:30 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-08-12 12:25:30 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-08-12 11:45:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-08-12 11:45:14 ----A---- C:\Windows\system32\xinput1_3.dll
======List of files/folders modified in the last 1 months======
2014-09-04 22:51:40 ----D---- C:\Users\Šnajdrovi\AppData\Roaming\Skype
2014-09-04 22:50:52 ----A---- C:\Windows\SYSWOW64\log.txt
2014-09-04 22:50:27 ----D---- C:\Windows\Temp
2014-09-04 22:49:38 ----HD---- C:\ASUS.DAT
2014-09-04 22:48:36 ----D---- C:\Windows\system32\config
2014-09-04 22:48:21 ----D---- C:\Windows\SysWOW64
2014-09-04 22:46:28 ----D---- C:\Windows\Tasks
2014-09-04 22:46:27 ----D---- C:\Program Files (x86)\Google
2014-09-04 22:46:20 ----D---- C:\Program Files (x86)\Microsoft
2014-09-04 22:09:35 ----D---- C:\ProgramData\Trend Micro
2014-09-04 22:08:56 ----D---- C:\Windows
2014-09-04 20:18:40 ----SHD---- C:\$Recycle.Bin
2014-09-04 19:18:40 ----SHD---- C:\Windows\Installer
2014-09-04 19:18:04 ----D---- C:\Windows\system32\drivers
2014-09-04 19:17:59 ----D---- C:\Windows\system32\catroot
2014-09-04 19:17:58 ----D---- C:\Windows\system32\DriverStore
2014-09-04 19:17:58 ----D---- C:\Windows\inf
2014-09-04 19:17:22 ----D---- C:\Windows\system32\Tasks
2014-09-04 19:16:42 ----D---- C:\Windows\System32
2014-09-04 19:16:40 ----HD---- C:\ProgramData
2014-09-04 19:16:09 ----SHD---- C:\Config.Msi
2014-09-04 19:16:04 ----RD---- C:\Program Files
2014-09-04 19:01:07 ----D---- C:\Windows\SYSWOW64\drivers
2014-09-04 00:10:54 ----D---- C:\Windows\winsxs
2014-09-04 00:03:31 ----D---- C:\Windows\system32\catroot2
2014-09-03 22:06:56 ----RD---- C:\Users
2014-09-03 21:34:20 ----D---- C:\Windows\Panther
2014-09-03 21:34:20 ----D---- C:\Windows\ModemLogs
2014-09-03 21:34:20 ----D---- C:\Windows\Minidump
2014-09-03 21:34:20 ----D---- C:\Windows\Logs
2014-09-03 21:34:20 ----D---- C:\Windows\debug
2014-09-03 21:30:31 ----RD---- C:\Program Files (x86)
2014-09-03 21:22:31 ----D---- C:\Windows\sr-Latn-CS
2014-09-03 21:21:41 ----D---- C:\Program Files\Common Files
2014-09-03 21:21:35 ----D---- C:\Program Files (x86)\GotClip
2014-09-03 20:19:30 ----D---- C:\Windows\Prefetch
2014-09-02 22:15:16 ----SHD---- C:\System Volume Information
2014-08-29 22:50:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-27 19:21:48 ----D---- C:\Windows\SYSWOW64\mjcm
2014-08-27 19:21:48 ----D---- C:\Windows\system32\tprb
2014-08-26 21:27:31 ----D---- C:\Windows\rescache
2014-08-24 13:04:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-24 13:04:19 ----D---- C:\Windows\system32\cs-CZ
2014-08-18 20:19:48 ----AD---- C:\ProgramData\Temp
2014-08-15 14:50:25 ----RSD---- C:\Windows\assembly
2014-08-15 14:50:17 ----D---- C:\Windows\Microsoft.NET
2014-08-15 12:06:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-15 11:45:24 ----HD---- C:\Windows\system32\GroupPolicy
2014-08-15 11:45:24 ----D---- C:\Windows\SYSWOW64\GroupPolicy
2014-08-14 14:05:09 ----D---- C:\Windows\ehome
2014-08-14 14:05:07 ----RSD---- C:\Windows\Fonts
2014-08-14 14:04:37 ----D---- C:\Program Files\Internet Explorer
2014-08-14 14:04:34 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-14 14:04:28 ----D---- C:\Windows\PolicyDefinitions
2014-08-14 14:04:27 ----D---- C:\Windows\system32\en-US
2014-08-14 14:04:23 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-13 22:16:48 ----D---- C:\ProgramData\Microsoft Help
2014-08-13 22:10:09 ----D---- C:\Windows\system32\MRT
2014-08-13 22:04:39 ----A---- C:\Windows\system32\MRT.exe
2014-08-13 21:57:24 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 19:02:32 ----D---- C:\Program Files (x86)\ASUS
2014-08-13 10:10:43 ----D---- C:\Program Files (x86)\Radical Games
2014-08-13 10:01:58 ----D---- C:\Program Files (x86)\Common Files
2014-08-12 11:44:41 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2014-08-12 09:34:09 ----D---- C:\Windows\system32\NDF
2014-08-07 13:31:57 ----RD---- C:\Program Files (x86)\Skype
2014-08-05 09:20:00 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-04-26 557848]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 tmcomm;tmcomm; C:\Windows\system32\DRIVERS\tmcomm.sys [2013-07-18 281600]
R0 TMEBC;TMEBC; C:\Windows\system32\DRIVERS\TMEBC64.sys [2013-07-01 50976]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-26 17536]
R1 tmactmon;tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [2013-07-18 116264]
R1 tmevtmgr;tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [2013-07-18 85424]
R1 tmtdi;Trend Micro TDI Driver; C:\Windows\system32\DRIVERS\tmtdi.sys [2011-08-22 105744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-10-03 129512]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-10-03 394728]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-07 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-06-01 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-12 142632]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-04-23 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-02-08 2736872]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 tmeevw;tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [2013-06-13 100640]
R3 tmnciesc;tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [2013-05-15 303392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2011-03-18 74840]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-06-01 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-06-01 330400]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-06-01 110240]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-06-01 167072]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-06-01 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-06-01 280992]
S3 BTATH_VDP;Bluetooth VDP Driver; C:\Windows\system32\drivers\btath_vdp.sys [2011-06-01 420896]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-06-01 491168]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2010-03-20 13952]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2012-04-23 104448]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2012-04-23 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2012-04-23 238080]
S3 netr28ux;RT2870 USB Wireless LAN Card Driver pro systém Windows Vista; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-06-10 867328]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Amsp;Trend Micro Solution Platform; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2013-07-15 305760]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-06-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-06-01 97952]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 PanService;PandoraService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-09-28 625304]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-18 76888]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 892cc6a3;Performance Optimizer; C:\Windows\syswow64\rundll32.exe [2009-07-14 44544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-03 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-14 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Dvouklikem na soubor C:\Program Files\trend micro\Šnajdrovi.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.R3 - Default URLSearchHook is missing
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (file missing)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Ahoj Rudy, pokyny jsem provedl, nicméně průzkumník pořád padá. Takže asi to budu muset přeinstalovat, pokud Vás už nic nenapadá. Každopádně moc a moc děkuji za snahu a mějte se.
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
ComboFix 14-09-05.01 - Šnajdrovi 05.09.2014 20:57:52.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3873.2192 [GMT 2:00]
Spuštěný z: c:\users\Őnajdrovi\Desktop\ComboFix.exe
AV: Trend Micro Titanium Internet Security *Disabled/Updated* {5D349EF8-873B-C657-917F-F1D93E101A7C}
SP: Trend Micro Titanium Internet Security *Disabled/Updated* {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
c:\programdata\Performance Optimizer
c:\programdata\Performance Optimizer\PerformanceOptimizer.dll
c:\programdata\Performance Optimizer\PerformanceOptimizer_x64.dll
c:\programdata\Performance Optimizer\PerformanceOptimizerSvc.dll
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bkomkhdkcldldpopljioaikpkolfhbli_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gpcloglcoibdbkafhnmghmaeofdikpnm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_klimmmdgmchjalopeopeabmbhfpklmbm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lpjmhibanjbicehodjphiofpdpllahpm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oilipfekkmncanaajkapbpancpelijih_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-08-05 do 2014-09-05 )))))))))))))))))))))))))))))))
.
.
2014-09-05 19:07 . 2014-09-05 19:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-09-04 20:48 . 2014-09-05 18:26 45056 ----a-w- c:\windows\SysWow64\acovcnt.exe
2014-09-04 17:22 . 2014-09-04 17:22 -------- d-----w- C:\TMRescueDisk
2014-09-04 17:18 . 2013-06-13 06:35 100640 ----a-w- c:\windows\system32\drivers\tmeevw.sys
2014-09-04 17:18 . 2013-05-15 10:23 303392 ----a-w- c:\windows\system32\drivers\tmnciesc.sys
2014-09-04 17:18 . 2011-08-22 15:33 105744 ----a-w- c:\windows\system32\drivers\tmtdi.sys
2014-09-04 17:17 . 2013-07-18 04:25 116264 ----a-w- c:\windows\system32\drivers\tmactmon.sys
2014-09-04 17:17 . 2013-07-18 04:25 85424 ----a-w- c:\windows\system32\drivers\tmevtmgr.sys
2014-09-04 17:17 . 2013-07-18 04:25 281600 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2014-09-04 17:17 . 2013-07-01 13:08 50976 ----a-w- c:\windows\system32\drivers\TMEBC64.sys
2014-09-04 17:16 . 2014-09-04 17:16 59 ----a-w- c:\windows\system32\SupportTool.exe.bat
2014-09-04 17:16 . 2014-09-05 18:20 -------- d-----w- c:\program files\Trend Micro
2014-09-04 17:02 . 2014-09-04 17:02 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B267425E-EE37-4352-BC78-2F8A3C4BD81A}\offreg.dll
2014-09-04 17:02 . 2014-09-04 17:18 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Trend Micro
2014-09-04 16:59 . 2014-09-04 20:08 -------- d-----w- c:\programdata\Trend Micro Installer
2014-09-03 19:32 . 2014-09-03 19:32 -------- d-----w- c:\program files\CCleaner
2014-09-03 18:31 . 2014-09-03 18:35 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 18:31 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-09-03 18:31 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-09-03 18:31 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-09-03 18:31 . 2014-09-03 18:31 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-09-03 18:31 . 2014-09-03 18:31 -------- d-----w- c:\programdata\Malwarebytes
2014-09-03 18:13 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-09-03 18:12 . 2014-09-04 20:08 -------- d-----w- C:\AdwCleaner
2014-09-02 20:16 . 2014-08-21 03:43 11319192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B267425E-EE37-4352-BC78-2F8A3C4BD81A}\mpengine.dll
2014-08-28 12:56 . 2014-08-23 02:07 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-08-28 12:56 . 2014-08-23 01:45 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-08-28 12:56 . 2014-08-23 00:59 3163648 ----a-w- c:\windows\system32\win32k.sys
2014-08-26 17:16 . 2014-08-27 10:58 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\SWDS
2014-08-22 14:20 . 2014-05-14 16:23 44512 ----a-w- c:\windows\system32\wups2.dll
2014-08-22 14:20 . 2014-05-14 16:23 58336 ----a-w- c:\windows\system32\wuauclt.exe
2014-08-22 14:20 . 2014-05-14 16:23 2477536 ----a-w- c:\windows\system32\wuaueng.dll
2014-08-22 14:20 . 2014-05-14 16:21 2620928 ----a-w- c:\windows\system32\wucltux.dll
2014-08-22 14:19 . 2014-05-14 16:23 38880 ----a-w- c:\windows\system32\wups.dll
2014-08-22 14:19 . 2014-05-14 16:23 36320 ----a-w- c:\windows\SysWow64\wups.dll
2014-08-22 14:19 . 2014-05-14 16:23 700384 ----a-w- c:\windows\system32\wuapi.dll
2014-08-22 14:19 . 2014-05-14 16:23 581600 ----a-w- c:\windows\SysWow64\wuapi.dll
2014-08-22 14:19 . 2014-05-14 16:20 97792 ----a-w- c:\windows\system32\wudriver.dll
2014-08-22 14:19 . 2014-05-14 16:17 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2014-08-22 14:19 . 2014-05-14 07:23 198600 ----a-w- c:\windows\system32\wuwebv.dll
2014-08-22 14:19 . 2014-05-14 07:23 179656 ----a-w- c:\windows\SysWow64\wuwebv.dll
2014-08-22 14:19 . 2014-05-14 07:20 36864 ----a-w- c:\windows\system32\wuapp.exe
2014-08-22 14:19 . 2014-05-14 07:17 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2014-08-19 07:19 . 2014-08-19 07:20 -------- d-----w- c:\program files (x86)\_utorrent
2014-08-15 12:51 . 2014-08-15 12:57 -------- d-----w- c:\programdata\DrivingSpeed2
2014-08-15 12:47 . 2014-08-15 12:48 -------- d-----w- c:\program files (x86)\DrivingSpeed2
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Packages
2014-08-15 09:45 . 2014-09-02 20:22 -------- d-----w- c:\programdata\54e6438eb996f1b8
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Guest
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Administrator
2014-08-13 19:58 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-13 19:58 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2014-08-13 19:58 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2014-08-13 19:58 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2014-08-13 19:58 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-13 19:58 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2014-08-13 19:57 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-08-13 19:57 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 17:13 . 2014-08-13 17:13 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2014-08-13 17:13 . 2014-08-13 17:13 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-08-13 17:13 . 2014-08-13 17:13 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2014-08-13 07:40 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2014-08-13 07:40 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2014-08-13 07:40 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2014-08-12 17:49 . 2014-08-12 17:49 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\MaxiGet Download Manager
2014-08-12 17:48 . 2014-08-12 17:48 172032 ----a-w- c:\windows\SysWow64\AniGIF.ocx
2014-08-12 17:47 . 2014-08-12 17:47 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Installer
2014-08-12 17:47 . 2014-08-12 17:47 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\CrashRpt
2014-08-12 17:46 . 2014-08-13 07:51 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\CatalinaGroup
2014-08-12 17:44 . 2014-08-13 07:49 -------- d-----w- c:\program files (x86)\Maxiget
2014-08-12 17:44 . 2014-08-12 17:44 718497 ----a-w- c:\windows\unins000.exe
2014-08-12 10:25 . 2014-08-19 07:20 -------- d-----w- c:\windows\SysWow64\bitstreams
2014-08-12 10:25 . 2013-10-26 18:30 538126 --s-a-w- c:\windows\SysWow64\libcurl-4.dll
2014-08-12 10:25 . 2013-10-26 18:30 364544 --s-a-w- c:\windows\SysWow64\ssleay32.dll
2014-08-12 10:25 . 2013-10-26 18:30 192512 --s-a-w- c:\windows\SysWow64\libidn-11.dll
2014-08-12 10:25 . 2013-10-26 18:30 171008 --s-a-w- c:\windows\SysWow64\libssh2.dll
2014-08-12 10:25 . 2013-10-26 18:30 1704448 --s-a-w- c:\windows\SysWow64\libeay32.dll
2014-08-12 10:25 . 2013-10-26 18:30 133632 --s-a-w- c:\windows\SysWow64\librtmp.dll
2014-08-12 10:25 . 2013-06-12 13:15 119888 --s-a-w- c:\windows\SysWow64\pthreadGC2.dll
2014-08-12 10:25 . 2013-06-12 13:15 100864 --s-a-w- c:\windows\SysWow64\zlib1.dll
2014-08-12 10:25 . 2012-09-25 21:46 472424 --s-a-w- c:\windows\SysWow64\cudart32_50_35.dll
2014-08-12 10:25 . 2012-05-26 23:36 55808 --s-a-w- c:\windows\SysWow64\pthreadVC2.dll
2014-08-12 09:45 . 2014-08-12 09:45 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll
2014-08-12 09:45 . 2014-08-12 09:45 107368 ----a-w- c:\windows\system32\xinput1_3.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-04 21:30 . 2014-06-13 12:56 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2014-08-29 06:33 . 2010-06-24 18:33 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-13 20:04 . 2012-11-21 13:36 99218768 ----a-w- c:\windows\system32\MRT.exe
2014-08-05 07:20 . 2012-11-17 17:14 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-07-17 11:43 . 2013-06-03 20:07 2610992 ----a-w- c:\windows\system32\ddddeeee.exe
2014-07-09 09:10 . 2012-11-29 20:09 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-09 09:10 . 2012-11-29 20:09 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-06-18 02:18 . 2014-07-09 11:40 692736 ----a-w- c:\windows\system32\osk.exe
2014-06-18 01:51 . 2014-07-09 11:40 646144 ----a-w- c:\windows\SysWow64\osk.exe
2014-06-09 20:11 . 2014-01-09 19:57 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2014-06-09 20:11 . 2014-01-09 19:57 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"="c:\program files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-07-14 1841264]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-05-08 21444224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"ASUSWebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe" [2011-02-23 731472]
"SonicMasterTray"="c:\program files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe" [2010-07-10 984400]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2011-10-18 2319536]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2012-11-15 3058304]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe /start [2011-4-1 548528]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe -d [2012-11-15 12862]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 892cc6a3;Performance Optimizer;c:\windows\system32\rundll32.exe;c:\windows\SYSNATIVE\rundll32.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MbnExt;Mobile Broadband Extension Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BTATH_VDP;Bluetooth VDP Driver;c:\windows\system32\drivers\btath_vdp.sys;c:\windows\SYSNATIVE\drivers\btath_vdp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juwwanecm.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bbus.sys [x]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdfl.sys [x]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 TMEBC;TMEBC;c:\windows\system32\DRIVERS\TMEBC64.sys;c:\windows\SYSNATIVE\DRIVERS\TMEBC64.sys [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S1 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys;c:\windows\SYSNATIVE\DRIVERS\tmevtmgr.sys [x]
S2 Amsp;Trend Micro Solution Platform;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 tmeevw;tmeevw;c:\windows\system32\DRIVERS\tmeevw.sys;c:\windows\SYSNATIVE\DRIVERS\tmeevw.sys [x]
S3 tmnciesc;tmnciesc;c:\windows\system32\DRIVERS\tmnciesc.sys;c:\windows\SYSNATIVE\DRIVERS\tmnciesc.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-03 19:30 1096520 ----a-w- c:\program files (x86)\Google\Chrome\Application\37.0.2062.103\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-09-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-29 09:10]
.
2014-09-04 c:\windows\Tasks\DLL-Files FixerASKUSER.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
2014-08-21 c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
2014-08-30 c:\windows\Tasks\DLL-Files.Com Fixer_Updates.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2011-03-21 361984]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-01-18 2188904]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-05-31 926880]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-05-31 792736]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-07-28 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-07-28 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-07-28 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-01-26 11775592]
"Trend Micro Client Framework"="c:\program files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" [2013-07-23 221584]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
TCP: DhcpNameServer = 10.0.0.1 10.0.0.10
FF - ProfilePath - c:\users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
AddRemove-{2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.14"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-09-05 21:10:54
ComboFix-quarantined-files.txt 2014-09-05 19:10
.
Před spuštěním: Volných bajtů: 75 872 649 216
Po spuštění: Volných bajtů: 75 191 595 008
.
- - End Of File - - 014E1213BA0D617EAC18CCC0040226ED
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3873.2192 [GMT 2:00]
Spuštěný z: c:\users\Őnajdrovi\Desktop\ComboFix.exe
AV: Trend Micro Titanium Internet Security *Disabled/Updated* {5D349EF8-873B-C657-917F-F1D93E101A7C}
SP: Trend Micro Titanium Internet Security *Disabled/Updated* {E6557F1C-A101-C9D9-ABCF-CAAB459750C1}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
c:\programdata\Performance Optimizer
c:\programdata\Performance Optimizer\PerformanceOptimizer.dll
c:\programdata\Performance Optimizer\PerformanceOptimizer_x64.dll
c:\programdata\Performance Optimizer\PerformanceOptimizerSvc.dll
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\caohogmkgaocnjjoelkkalfehahogkdb\3.9\o3XKWSUtBL.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\popoohickdhddnflocahhgapedfplkdl\1.0\sEzFzDAw.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih\196\tcof.js
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bkomkhdkcldldpopljioaikpkolfhbli_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gpcloglcoibdbkafhnmghmaeofdikpnm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_klimmmdgmchjalopeopeabmbhfpklmbm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_lpjmhibanjbicehodjphiofpdpllahpm_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oilipfekkmncanaajkapbpancpelijih_0.localstorage
c:\users\Šnajdrovi\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-08-05 do 2014-09-05 )))))))))))))))))))))))))))))))
.
.
2014-09-05 19:07 . 2014-09-05 19:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-09-04 20:48 . 2014-09-05 18:26 45056 ----a-w- c:\windows\SysWow64\acovcnt.exe
2014-09-04 17:22 . 2014-09-04 17:22 -------- d-----w- C:\TMRescueDisk
2014-09-04 17:18 . 2013-06-13 06:35 100640 ----a-w- c:\windows\system32\drivers\tmeevw.sys
2014-09-04 17:18 . 2013-05-15 10:23 303392 ----a-w- c:\windows\system32\drivers\tmnciesc.sys
2014-09-04 17:18 . 2011-08-22 15:33 105744 ----a-w- c:\windows\system32\drivers\tmtdi.sys
2014-09-04 17:17 . 2013-07-18 04:25 116264 ----a-w- c:\windows\system32\drivers\tmactmon.sys
2014-09-04 17:17 . 2013-07-18 04:25 85424 ----a-w- c:\windows\system32\drivers\tmevtmgr.sys
2014-09-04 17:17 . 2013-07-18 04:25 281600 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2014-09-04 17:17 . 2013-07-01 13:08 50976 ----a-w- c:\windows\system32\drivers\TMEBC64.sys
2014-09-04 17:16 . 2014-09-04 17:16 59 ----a-w- c:\windows\system32\SupportTool.exe.bat
2014-09-04 17:16 . 2014-09-05 18:20 -------- d-----w- c:\program files\Trend Micro
2014-09-04 17:02 . 2014-09-04 17:02 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B267425E-EE37-4352-BC78-2F8A3C4BD81A}\offreg.dll
2014-09-04 17:02 . 2014-09-04 17:18 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Trend Micro
2014-09-04 16:59 . 2014-09-04 20:08 -------- d-----w- c:\programdata\Trend Micro Installer
2014-09-03 19:32 . 2014-09-03 19:32 -------- d-----w- c:\program files\CCleaner
2014-09-03 18:31 . 2014-09-03 18:35 122584 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-09-03 18:31 . 2014-05-12 05:26 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-09-03 18:31 . 2014-05-12 05:26 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-09-03 18:31 . 2014-05-12 05:25 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-09-03 18:31 . 2014-09-03 18:31 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-09-03 18:31 . 2014-09-03 18:31 -------- d-----w- c:\programdata\Malwarebytes
2014-09-03 18:13 . 2010-08-30 06:34 536576 ----a-w- c:\windows\SysWow64\sqlite3.dll
2014-09-03 18:12 . 2014-09-04 20:08 -------- d-----w- C:\AdwCleaner
2014-09-02 20:16 . 2014-08-21 03:43 11319192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B267425E-EE37-4352-BC78-2F8A3C4BD81A}\mpengine.dll
2014-08-28 12:56 . 2014-08-23 02:07 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-08-28 12:56 . 2014-08-23 01:45 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-08-28 12:56 . 2014-08-23 00:59 3163648 ----a-w- c:\windows\system32\win32k.sys
2014-08-26 17:16 . 2014-08-27 10:58 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\SWDS
2014-08-22 14:20 . 2014-05-14 16:23 44512 ----a-w- c:\windows\system32\wups2.dll
2014-08-22 14:20 . 2014-05-14 16:23 58336 ----a-w- c:\windows\system32\wuauclt.exe
2014-08-22 14:20 . 2014-05-14 16:23 2477536 ----a-w- c:\windows\system32\wuaueng.dll
2014-08-22 14:20 . 2014-05-14 16:21 2620928 ----a-w- c:\windows\system32\wucltux.dll
2014-08-22 14:19 . 2014-05-14 16:23 38880 ----a-w- c:\windows\system32\wups.dll
2014-08-22 14:19 . 2014-05-14 16:23 36320 ----a-w- c:\windows\SysWow64\wups.dll
2014-08-22 14:19 . 2014-05-14 16:23 700384 ----a-w- c:\windows\system32\wuapi.dll
2014-08-22 14:19 . 2014-05-14 16:23 581600 ----a-w- c:\windows\SysWow64\wuapi.dll
2014-08-22 14:19 . 2014-05-14 16:20 97792 ----a-w- c:\windows\system32\wudriver.dll
2014-08-22 14:19 . 2014-05-14 16:17 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2014-08-22 14:19 . 2014-05-14 07:23 198600 ----a-w- c:\windows\system32\wuwebv.dll
2014-08-22 14:19 . 2014-05-14 07:23 179656 ----a-w- c:\windows\SysWow64\wuwebv.dll
2014-08-22 14:19 . 2014-05-14 07:20 36864 ----a-w- c:\windows\system32\wuapp.exe
2014-08-22 14:19 . 2014-05-14 07:17 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2014-08-19 07:19 . 2014-08-19 07:20 -------- d-----w- c:\program files (x86)\_utorrent
2014-08-15 12:51 . 2014-08-15 12:57 -------- d-----w- c:\programdata\DrivingSpeed2
2014-08-15 12:47 . 2014-08-15 12:48 -------- d-----w- c:\program files (x86)\DrivingSpeed2
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Packages
2014-08-15 09:45 . 2014-09-02 20:22 -------- d-----w- c:\programdata\54e6438eb996f1b8
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Guest
2014-08-15 09:45 . 2014-08-15 09:45 -------- d-----w- c:\users\Administrator
2014-08-13 19:58 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-13 19:58 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2014-08-13 19:58 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2014-08-13 19:58 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2014-08-13 19:58 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-13 19:58 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2014-08-13 19:57 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-08-13 19:57 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 17:13 . 2014-08-13 17:13 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2014-08-13 17:13 . 2014-08-13 17:13 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-08-13 17:13 . 2014-08-13 17:13 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2014-08-13 07:40 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2014-08-13 07:40 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2014-08-13 07:40 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2014-08-13 07:40 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2014-08-12 17:49 . 2014-08-12 17:49 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\MaxiGet Download Manager
2014-08-12 17:48 . 2014-08-12 17:48 172032 ----a-w- c:\windows\SysWow64\AniGIF.ocx
2014-08-12 17:47 . 2014-08-12 17:47 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\Installer
2014-08-12 17:47 . 2014-08-12 17:47 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\CrashRpt
2014-08-12 17:46 . 2014-08-13 07:51 -------- d-----w- c:\users\Šnajdrovi\AppData\Local\CatalinaGroup
2014-08-12 17:44 . 2014-08-13 07:49 -------- d-----w- c:\program files (x86)\Maxiget
2014-08-12 17:44 . 2014-08-12 17:44 718497 ----a-w- c:\windows\unins000.exe
2014-08-12 10:25 . 2014-08-19 07:20 -------- d-----w- c:\windows\SysWow64\bitstreams
2014-08-12 10:25 . 2013-10-26 18:30 538126 --s-a-w- c:\windows\SysWow64\libcurl-4.dll
2014-08-12 10:25 . 2013-10-26 18:30 364544 --s-a-w- c:\windows\SysWow64\ssleay32.dll
2014-08-12 10:25 . 2013-10-26 18:30 192512 --s-a-w- c:\windows\SysWow64\libidn-11.dll
2014-08-12 10:25 . 2013-10-26 18:30 171008 --s-a-w- c:\windows\SysWow64\libssh2.dll
2014-08-12 10:25 . 2013-10-26 18:30 1704448 --s-a-w- c:\windows\SysWow64\libeay32.dll
2014-08-12 10:25 . 2013-10-26 18:30 133632 --s-a-w- c:\windows\SysWow64\librtmp.dll
2014-08-12 10:25 . 2013-06-12 13:15 119888 --s-a-w- c:\windows\SysWow64\pthreadGC2.dll
2014-08-12 10:25 . 2013-06-12 13:15 100864 --s-a-w- c:\windows\SysWow64\zlib1.dll
2014-08-12 10:25 . 2012-09-25 21:46 472424 --s-a-w- c:\windows\SysWow64\cudart32_50_35.dll
2014-08-12 10:25 . 2012-05-26 23:36 55808 --s-a-w- c:\windows\SysWow64\pthreadVC2.dll
2014-08-12 09:45 . 2014-08-12 09:45 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll
2014-08-12 09:45 . 2014-08-12 09:45 107368 ----a-w- c:\windows\system32\xinput1_3.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-04 21:30 . 2014-06-13 12:56 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2014-08-29 06:33 . 2010-06-24 18:33 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-08-13 20:04 . 2012-11-21 13:36 99218768 ----a-w- c:\windows\system32\MRT.exe
2014-08-05 07:20 . 2012-11-17 17:14 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-07-17 11:43 . 2013-06-03 20:07 2610992 ----a-w- c:\windows\system32\ddddeeee.exe
2014-07-09 09:10 . 2012-11-29 20:09 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-07-09 09:10 . 2012-11-29 20:09 699056 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-06-18 02:18 . 2014-07-09 11:40 692736 ----a-w- c:\windows\system32\osk.exe
2014-06-18 01:51 . 2014-07-09 11:40 646144 ----a-w- c:\windows\SysWow64\osk.exe
2014-06-09 20:11 . 2014-01-09 19:57 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2014-06-09 20:11 . 2014-01-09 19:57 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"="c:\program files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-07-14 1841264]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-05-08 21444224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"ASUSWebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe" [2011-02-23 731472]
"SonicMasterTray"="c:\program files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe" [2010-07-10 984400]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2011-10-18 2319536]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2012-11-15 3058304]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe /start [2011-4-1 548528]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe -d [2012-11-15 12862]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 892cc6a3;Performance Optimizer;c:\windows\system32\rundll32.exe;c:\windows\SYSNATIVE\rundll32.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MbnExt;Mobile Broadband Extension Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BTATH_VDP;Bluetooth VDP Driver;c:\windows\system32\drivers\btath_vdp.sys;c:\windows\SYSNATIVE\drivers\btath_vdp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juwwanecm.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bbus.sys [x]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdfl.sys [x]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ss_bmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 TMEBC;TMEBC;c:\windows\system32\DRIVERS\TMEBC64.sys;c:\windows\SYSNATIVE\DRIVERS\TMEBC64.sys [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S1 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys;c:\windows\SYSNATIVE\DRIVERS\tmevtmgr.sys [x]
S2 Amsp;Trend Micro Solution Platform;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 tmeevw;tmeevw;c:\windows\system32\DRIVERS\tmeevw.sys;c:\windows\SYSNATIVE\DRIVERS\tmeevw.sys [x]
S3 tmnciesc;tmnciesc;c:\windows\system32\DRIVERS\tmnciesc.sys;c:\windows\SYSNATIVE\DRIVERS\tmnciesc.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
MbnExt REG_MULTI_SZ MbnExt
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-03 19:30 1096520 ----a-w- c:\program files (x86)\Google\Chrome\Application\37.0.2062.103\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-09-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-29 09:10]
.
2014-09-04 c:\windows\Tasks\DLL-Files FixerASKUSER.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
2014-08-21 c:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
2014-08-30 c:\windows\Tasks\DLL-Files.Com Fixer_Updates.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-11-29 10:27]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2011-03-21 361984]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-01-18 2188904]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-05-31 926880]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-05-31 792736]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-07-28 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-07-28 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-07-28 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-01-26 11775592]
"Trend Micro Client Framework"="c:\program files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" [2013-07-23 221584]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
TCP: DhcpNameServer = 10.0.0.1 10.0.0.10
FF - ProfilePath - c:\users\Šnajdrovi\AppData\Roaming\Mozilla\Firefox\Profiles\dq4dz5ud.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
AddRemove-{2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.14"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_14_0_0_145.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-09-05 21:10:54
ComboFix-quarantined-files.txt 2014-09-05 19:10
.
Před spuštěním: Volných bajtů: 75 872 649 216
Po spuštění: Volných bajtů: 75 191 595 008
.
- - End Of File - - 014E1213BA0D617EAC18CCC0040226ED
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spsutí a vykoná příkazy ze skriptu.KillAll::
File::
c:\windows\SysWow64\acovcnt.exe
Driver::
892cc6a3
RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
Reboot::
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Rudy, tak už jsem myslel, že to bude OK, ale zase to spadlo. Tak jak to vidíte
-
Rudy
- Site Admin
- Příspěvky: 119495
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Průzkumník Windows přestal pracovat
Ještě spusťte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Průzkumník Windows přestal pracovat
Ahoj Rudy, jak jsem psal na začátku vlákna, sken mbam jsem již dělal, teď to projiždím znovu, jak jste si přál. Chcete i log z toho prvního skenu, kdy toho spoustu bylo přemístěno do karantény?
Přispějete na provoz fóra?