Preventivka

Zpráva

stancoj · #1 Příspěvek od **stancoj** » 01 říj 2014 17:49

Zdravim, po dlhsej dobe vas prosim o preventivku. Dakujem

Logfile of random's system information tool 1.08 (written by random/random)
Run by Jaro at 2014-10-01 18:40:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (18%) free of 244 GB
Total RAM: 8104 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:40:38, on 1. 10. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17280)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
C:\Users\Jaro\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Users\Jaro\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\trend micro\Jaro.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Jaro\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jaro\AppData\Local\Akamai\netsession_win.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: KernelPro Advanced Virtual COM Port service (AdvancedVirtualCOMportService) - Unknown owner - C:\Windows\System32\DRIVERS\AvcpService.exe (file missing)
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Automation License Manager Service (almservice) - SIEMENS AG - C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
O23 - Service: Intel® Centrino® Bluetooth 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HW Virtual Serial Port (single) (HW_VSP3s_Service) - Unknown owner - C:\Program Files (x86)\HW group\HW VSP3s\HW_VSP3s_srv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\Windows\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments, Inc. - C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corp. - C:\Windows\SysWOW64\nisvcloc.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: S7 HSP Service (s7hspsvx) - SIEMENS AG - C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe
O23 - Service: SIMATIC IEPG Help Service (s7oiehsx64) - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe
O23 - Service: S7TraceServiceX - SIEMENS AG - C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SetupARService - Realtek Semiconductor. - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14772 bytes

stancoj · #2 Příspěvek od **stancoj** » 01 říj 2014 17:50

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
System32\DRIVERS\AvcpService.exe /service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
C:\Windows\system32\WLANExt.exe 29467664
\??\C:\Windows\system32\conhost.exe "-1995683866-63132457-719226939-1867224251212342753-11388259171418520639-781160688
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\HW group\HW VSP3s\HW_VSP3s_srv.exe"
C:\Windows\SysWOW64\lkcitdl.exe
C:\Windows\SysWOW64\lkads.exe
C:\Windows\SysWOW64\lktsrv.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
C:\Windows\System32\svchost.exe -k HPZ12
"taskhost.exe"
taskeng.exe {1989CE56-50ED-4421-BF40-DFEE03F589BB}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
taskeng.exe {D9A565EA-92EA-4F8A-A9DF-DCDBAFAD4DD4}
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe"
ATKOSD.exe
KBFiltr.exe
WDC.exe
C:\Windows\SysWOW64\nisvcloc.exe -s
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe" -scheduler
"C:\Users\Jaro\AppData\Local\Akamai\netsession_win.exe"
"C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:/Users/Jaro/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 10f5afe4-190f-426d-9446-88466c000b4a 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "170456157-1907609418874443680875148756576946856690085394-1572322825-246893657
\??\C:\Windows\system32\conhost.exe "17487413318791113311867976735-1692301880-140433667513748594021311465707-1853377234
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Siemens\Step7\s7bin\s7hspsvx.exe"
"C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe"
"C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64x.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\PNIOMGR.exe" --start 0
\??\C:\Windows\system32\conhost.exe "-2039370531127441274-1152196084-1522971665-1487432070-1565173774804518981-375472923
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\SysWOW64\pniopcac.exe 0 {84F12F44-0A5A-4C40-B216-1117A5046B82}
C:\Windows\SysWOW64\pniopcac.exe 0 {002EF485-3A18-4AE9-9842-0E2CB580522C}
C:\Windows\SysWOW64\pniopcac.exe 0 {9C0D290B-8FA8-4191-8A84-8A8E626B0958}
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7epasrv64x.exe"
WLIDSvcM.exe 604
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6d11224b-caf1-412b-a1fc-bd54db63a184 -SystemEventPortName:HostProcess-442e1685-294e-42e9-9651-fd9eab719797 -IoCancelEventPortName:HostProcess-045a39fc-b764-49d1-b393-eb575d910b5d -NonStateChangingEventPortName:HostProcess-31c2e29f-fed7-459b-9b21-e40dee3c764c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:12f70581-8fb7-4dd1-86a3-331af6af276a -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Deskjet F4200 series#1356895832" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\Jaro\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore1cecb83c5f9aece.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cecb83c6b2507f.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Prog [2012-08-27 6516280]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Prog [2012-08-27 6516280]
"IntelPAN"=C:\Prog [2012-08-27 6516280]
"SynAsusAcpi"=C:\Prog [2012-08-27 6516280]
"BTMTrayAgent"=C:\Prog [2012-08-27 6516280]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
"NvBackend"=C:\Prog [2012-08-27 6516280]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-01-29 442328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Prog [2012-08-27 6516280]
"ISUSPM"=C:\Prog [2012-08-27 6516280]
"uTorrent"=C:\Users\Jaro\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-29 1270352]
"Akamai NetSession Interface"=C:\Users\Jaro\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-08-08 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent Sync]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GIGABYTEMOUSE]
C:\Users\Jaro\Documents\GIGABYTE\GIGABYTE Sim\Mouse.exe [2012-04-27 1308672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControlUser]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nuance PDF Reader-reminder]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\S7UB Start]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Jaro\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-29 1270352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VizorHtmlDialog.exe]
C:\Prog [2012-08-27 6516280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jaro^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-09-13 36414624]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSWebStorage"=C:\Prog [2012-08-27 6516280]
"SonicMasterTray"=C:\Prog [2012-08-27 6516280]
"ATKOSD2"=C:\Prog [2012-08-27 6516280]
"ATKMEDIA"=C:\Prog [2012-08-27 6516280]
"Wireless Console 3"=C:\Prog [2012-08-27 6516280]
"UpdateLBPShortCut"=C:\Prog [2012-08-27 6516280]
"UpdateP2GoShortCut"=C:\Prog [2012-08-27 6516280]
"HControlUser"=C:\Prog [2012-08-27 6516280]
"HP Software Update"=C:\Prog [2012-08-27 6516280]
"hpqSRMon"=C:\Prog [2012-08-27 6516280]
"AvastUI.exe"=C:\Prog [2012-08-27 6516280]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\Jaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-10-01 18:40:35 ----D---- C:\rsit
2014-09-30 23:32:53 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-09-30 23:32:53 ----A---- C:\Windows\system32\qdvd.dll
2014-09-29 18:43:38 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-09-29 18:43:37 ----A---- C:\Windows\system32\mstscax.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\YamahaAE.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tossaeapo64.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\toseaeapo64.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tosasfapo64.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tosade.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\tadefxapo.dll
2014-09-27 21:21:32 ----A---- C:\Windows\system32\SStudio.dll
2014-09-27 21:21:31 ----A---- C:\Windows\system32\sltech64.dll
2014-09-27 21:21:31 ----A---- C:\Windows\system32\slprp64.dll
2014-09-27 21:21:31 ----A---- C:\Windows\system32\slcnt64.dll
2014-09-27 21:21:31 ----A---- C:\Windows\system32\sl3apo64.dll
2014-09-27 21:21:31 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-09-27 21:21:30 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-09-27 21:21:30 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-09-27 21:21:29 ----A---- C:\Windows\system32\RltkAPO64.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\R4EED64A.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-09-27 21:21:28 ----A---- C:\Windows\system32\MISS_APO.dll
2014-09-27 21:21:27 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-27 21:21:27 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-09-27 21:21:27 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-09-27 21:21:27 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2014-09-27 21:21:27 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-09-27 21:21:26 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2014-09-27 21:21:26 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-09-27 21:21:25 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-09-27 21:21:25 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-27 21:21:25 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-09-27 21:21:25 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2014-09-27 21:21:22 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-09-27 21:21:22 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-09-27 21:21:21 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-09-27 21:21:21 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-09-27 21:21:21 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\DDPP64A.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\DDPO64A.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\DDPD64A.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\DDPA64.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-27 21:21:20 ----A---- C:\Windows\system32\audioLibVc.dll
2014-09-27 21:21:19 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2014-09-27 18:28:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-09-27 18:27:53 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-09-27 18:27:53 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-09-27 18:27:53 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-09-27 18:27:52 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-09-27 18:27:52 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-09-27 18:27:52 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-09-27 18:27:52 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-09-27 18:27:52 ----A---- C:\Windows\system32\wksprtPS.dll
2014-09-27 18:27:52 ----A---- C:\Windows\system32\wksprt.exe
2014-09-27 18:27:52 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-09-27 18:27:52 ----A---- C:\Windows\system32\tsgqec.dll
2014-09-27 18:27:52 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-09-27 18:27:51 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-09-27 18:27:51 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-09-27 18:27:51 ----A---- C:\Windows\system32\mstsc.exe
2014-09-26 18:05:37 ----D---- C:\Program Files (x86)\Garena Plus
2014-09-25 23:44:10 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-09-24 19:48:08 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-09-24 19:48:08 ----A---- C:\Windows\system32\tzres.dll
2014-09-22 12:50:22 ----D---- C:\Users\Jaro\AppData\Roaming\TS3Client
2014-09-22 12:50:16 ----D---- C:\Program Files\TeamSpeak 3 Client
2014-09-19 16:59:30 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-09-19 16:58:35 ----D---- C:\Windows\SYSWOW64\NV
2014-09-19 16:58:35 ----D---- C:\Windows\system32\NV
2014-09-19 16:54:33 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-09-19 16:54:33 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-09-19 16:54:33 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-09-19 16:54:33 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-09-19 16:54:33 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-09-19 16:54:33 ----A---- C:\Windows\system32\nvopencl.dll
2014-09-19 16:54:33 ----A---- C:\Windows\system32\nvoglv64.dll
2014-09-19 16:54:33 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-09-19 16:54:33 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-09-19 16:54:33 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-09-19 16:54:32 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-09-19 16:54:32 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-09-19 16:54:32 ----A---- C:\Windows\system32\NvIFR64.dll
2014-09-19 16:54:32 ----A---- C:\Windows\system32\NvFBC64.dll
2014-09-19 16:54:32 ----A---- C:\Windows\system32\nvdispgenco6434411.dll
2014-09-19 16:54:32 ----A---- C:\Windows\system32\nvdispco6434411.dll
2014-09-19 16:54:31 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-09-19 16:54:31 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-09-19 16:54:31 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-09-19 16:54:31 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-09-19 16:54:31 ----A---- C:\Windows\system32\nvcuvid.dll
2014-09-19 16:54:31 ----A---- C:\Windows\system32\nvcuda.dll
2014-09-19 16:54:31 ----A---- C:\Windows\system32\nvcompiler.dll
2014-09-19 16:37:38 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-09-19 16:37:38 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-09-19 16:37:09 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-09-19 16:37:09 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-09-19 10:35:34 ----D---- C:\Program Files (x86)\Mozilla Firefox.bak
2014-09-11 07:31:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-09-11 07:31:17 ----A---- C:\Windows\system32\ieui.dll
2014-09-11 07:31:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-09-11 07:31:15 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-09-11 07:31:15 ----A---- C:\Windows\system32\jscript9diag.dll
2014-09-11 07:31:15 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-11 07:31:15 ----A---- C:\Windows\system32\iernonce.dll
2014-09-11 07:31:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-09-11 07:31:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-09-11 07:31:14 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-09-11 07:31:14 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-09-11 07:31:14 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-09-11 07:31:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-09-11 07:31:14 ----A---- C:\Windows\system32\vbscript.dll
2014-09-11 07:31:14 ----A---- C:\Windows\system32\msrating.dll
2014-09-11 07:31:14 ----A---- C:\Windows\system32\mshtmled.dll
2014-09-11 07:31:14 ----A---- C:\Windows\system32\ieUnatt.exe
2014-09-11 07:31:14 ----A---- C:\Windows\system32\dxtrans.dll
2014-09-11 07:31:14 ----A---- C:\Windows\system32\dxtmsft.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-09-11 07:31:13 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-09-11 07:31:13 ----A---- C:\Windows\system32\msfeeds.dll
2014-09-11 07:31:13 ----A---- C:\Windows\system32\jsproxy.dll
2014-09-11 07:31:13 ----A---- C:\Windows\system32\iesetup.dll
2014-09-11 07:31:13 ----A---- C:\Windows\system32\iedkcs32.dll
2014-09-11 07:31:13 ----A---- C:\Windows\system32\ie4uinit.exe
2014-09-11 07:31:12 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-09-11 07:31:12 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-11 07:31:11 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-09-11 07:31:11 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-09-11 07:31:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-09-11 07:31:11 ----A---- C:\Windows\system32\mshtml.dll
2014-09-11 07:31:11 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-09-11 07:31:11 ----A---- C:\Windows\system32\ieapfltr.dll
2014-09-11 07:31:10 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-09-11 07:31:10 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-11 07:31:10 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-09-11 07:31:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-09-11 07:31:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-09-11 07:31:08 ----A---- C:\Windows\system32\wininet.dll
2014-09-11 07:31:08 ----A---- C:\Windows\system32\iertutil.dll
2014-09-11 07:31:07 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-09-11 07:31:07 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-09-11 07:31:07 ----A---- C:\Windows\system32\urlmon.dll
2014-09-11 07:31:07 ----A---- C:\Windows\system32\jscript9.dll
2014-09-11 07:31:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-09-11 07:31:04 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-09-11 07:31:04 ----A---- C:\Windows\system32\ieframe.dll
2014-09-11 07:19:33 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-09-11 07:19:32 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-09-10 23:01:37 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-09-10 23:01:36 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-09-10 23:01:23 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-09-10 23:01:23 ----A---- C:\Windows\system32\d3d10warp.dll
2014-09-10 23:01:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-09-10 23:01:08 ----A---- C:\Windows\system32\kerberos.dll
2014-09-10 23:01:07 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-09-10 23:01:07 ----A---- C:\Windows\system32\lsasrv.dll
2014-09-10 23:01:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-09-10 23:01:03 ----A---- C:\Windows\system32\aepdu.dll
2014-09-10 23:01:02 ----A---- C:\Windows\system32\aeinv.dll

stancoj · #3 Příspěvek od **stancoj** » 01 říj 2014 17:50

======List of files/folders modified in the last 1 months======

2014-10-01 18:40:37 ----D---- C:\Windows\Temp
2014-10-01 18:40:37 ----D---- C:\Program Files\trend micro
2014-10-01 18:38:56 ----D---- C:\Windows\system32\config
2014-10-01 18:29:00 ----D---- C:\Users\Jaro\AppData\Roaming\Dropbox
2014-10-01 18:28:32 ----D---- C:\Windows\system32\Tasks
2014-10-01 18:24:25 ----D---- C:\Users\Jaro\AppData\Roaming\uTorrent
2014-10-01 18:23:15 ----AD---- C:\ProgramData\Temp
2014-10-01 17:53:42 ----D---- C:\Program Files (x86)\War Thunder World of Planes
2014-10-01 17:37:24 ----D---- C:\Windows\Prefetch
2014-10-01 11:40:49 ----D---- C:\Windows\system32\NDF
2014-09-30 23:55:10 ----D---- C:\Windows\SysWOW64
2014-09-30 23:55:10 ----D---- C:\Windows\System32
2014-09-30 23:55:07 ----D---- C:\Windows\winsxs
2014-09-30 23:55:02 ----SHD---- C:\System Volume Information
2014-09-30 23:54:21 ----D---- C:\Users\Jaro\AppData\Roaming\Skype
2014-09-30 23:31:12 ----D---- C:\Windows\system32\catroot
2014-09-29 19:20:55 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-09-29 19:20:55 ----D---- C:\Windows\system32\cs-CZ
2014-09-29 19:20:44 ----D---- C:\Windows\system32\catroot2
2014-09-28 18:23:54 ----D---- C:\Windows\rescache
2014-09-28 12:33:43 ----HD---- C:\Program Files (x86)\Temp
2014-09-28 12:33:32 ----D---- C:\Windows
2014-09-28 12:32:23 ----A---- C:\Windows\system32\acovcnt.exe
2014-09-28 12:32:13 ----A---- C:\Windows\system32\ServiceFilter.ini
2014-09-28 12:32:04 ----A---- C:\Windows\system32\AutoRunFilter.ini
2014-09-28 12:28:05 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-09-28 12:28:00 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-09-28 12:28:00 ----D---- C:\Windows\system32\drivers
2014-09-28 12:28:00 ----D---- C:\Windows\inf
2014-09-28 12:27:58 ----D---- C:\Windows\system32\DriverStore
2014-09-28 12:26:02 ----SHD---- C:\Windows\Installer
2014-09-28 12:25:15 ----HD---- C:\Config.Msi
2014-09-28 11:31:45 ----D---- C:\Program Files (x86)\Steam
2014-09-27 21:23:43 ----HD---- C:\ProgramData
2014-09-27 18:32:38 ----D---- C:\Windows\SYSWOW64\wbem
2014-09-27 18:32:36 ----D---- C:\Windows\system32\wbem
2014-09-27 18:32:36 ----D---- C:\Windows\system32\drivers\en-US
2014-09-27 18:31:09 ----D---- C:\Program Files\Common Files\Intel
2014-09-27 18:31:08 ----D---- C:\Program Files (x86)\Common Files
2014-09-26 21:07:15 ----SD---- C:\ProgramData\Microsoft
2014-09-26 20:09:12 ----D---- C:\Windows\system32\LogFiles
2014-09-26 19:25:25 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-26 18:30:41 ----RD---- C:\Program Files (x86)
2014-09-24 21:52:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-09-24 19:35:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-09-23 17:47:31 ----D---- C:\Program Files
2014-09-23 17:46:04 ----D---- C:\Users\Jaro\AppData\Roaming\DAEMON Tools Lite
2014-09-23 17:45:47 ----D---- C:\Windows\Panther
2014-09-23 17:45:38 ----D---- C:\Windows\Minidump
2014-09-23 17:45:38 ----D---- C:\Windows\Logs
2014-09-23 17:45:38 ----D---- C:\Windows\debug
2014-09-22 17:35:12 ----D---- C:\Python27
2014-09-22 12:43:10 ----D---- C:\Program Files (x86)\CCleaner
2014-09-19 16:59:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-09-19 16:58:53 ----D---- C:\temp
2014-09-19 16:58:34 ----D---- C:\ProgramData\NVIDIA
2014-09-19 16:55:54 ----D---- C:\Program Files\NVIDIA Corporation
2014-09-19 16:37:37 ----D---- C:\ProgramData\NVIDIA Corporation
2014-09-18 20:02:48 ----D---- C:\xampp
2014-09-17 04:13:36 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-09-17 04:12:40 ----A---- C:\Windows\system32\nvspcap64.dll
2014-09-15 09:06:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-09-14 01:48:03 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-09-14 01:48:03 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-09-14 01:48:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-09-14 01:48:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-09-14 01:48:03 ----A---- C:\Windows\system32\nvinitx.dll
2014-09-14 01:48:03 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-09-14 01:48:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-09-13 23:53:36 ----A---- C:\Windows\system32\nvsvc64.dll
2014-09-13 23:53:36 ----A---- C:\Windows\system32\nvcpl.dll
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nvvsvc.exe
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nvsvcr.dll
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nvshext.dll
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nvmctray.dll
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nv3dappshextr.dll
2014-09-13 23:53:34 ----A---- C:\Windows\system32\nv3dappshext.dll
2014-09-11 16:13:36 ----D---- C:\Windows\Microsoft.NET
2014-09-11 16:12:33 ----RSD---- C:\Windows\assembly
2014-09-11 15:50:38 ----D---- C:\Program Files\Internet Explorer
2014-09-11 15:50:37 ----D---- C:\Windows\SYSWOW64\en-US
2014-09-11 15:50:34 ----D---- C:\Windows\system32\en-US
2014-09-11 15:50:32 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-11 07:34:37 ----D---- C:\ProgramData\Microsoft Help
2014-09-11 07:29:29 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-09-11 07:28:24 ----D---- C:\Windows\system32\MRT
2014-09-11 07:20:45 ----A---- C:\Windows\system32\MRT.exe
2014-09-11 07:19:15 ----SD---- C:\Windows\system32\CompatTel
2014-09-04 21:14:38 ----A---- C:\Windows\system32\nvaudcap64v.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-07-17 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-07-17 224896]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-13 437272]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2014-09-14 32576]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-18 834544]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-07-17 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-07-17 1041168]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-07-17 427360]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_; \??\C:\Prog [2012-08-27 6516280]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-07 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Prog [2012-08-27 6516280]
R1 SASKUTIL;SASKUTIL; \??\C:\Prog [2012-08-27 6516280]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-07-17 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-07-17 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-07-17 92008]
R2 s7ousbu64x;SIMATIC USB Service; C:\Windows\system32\DRIVERS\s7ousbu64x.sys [2011-05-06 190464]
R2 s7sn2srtx;PROFINET IO RT-Protocol V2.0; C:\Windows\system32\DRIVERS\s7sn2srtx.sys [2011-06-16 83032]
R2 SNTIE;SIMATIC Industrial Ethernet (ISO); C:\Windows\system32\DRIVERS\sntie.sys [2011-05-31 179288]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 AMPPAL;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2011-04-21 294912]
R3 dpmconv;SIMATIC NET DP Driver; C:\Windows\system32\DRIVERS\dpmconv.sys [2011-04-19 259072]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 KernelProBus;KernelPro Virtual Bus Driver; C:\Windows\system32\DRIVERS\KernelProBus.sys [2011-04-26 173584]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-05-01 8593920]
R3 NvStreamKms;NvStreamKms; \??\C:\Prog [2012-08-27 6516280]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2010-08-03 290920]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
R3 s7odpx2x64;SIMATIC Knotentaufe; C:\Windows\system32\DRIVERS\s7odpx2x64.sys [2011-05-06 71168]
R3 s7oppinx64;SIMATIC PPI Transport; C:\Windows\system32\DRIVERS\s7oppinx64.sys [2011-05-06 107008]
R3 s7oserix64;Siemens PC Serial Cable; C:\Windows\System32\Drivers\s7oserix64.sys [2011-05-06 121344]
R3 s7osmcax64;SIMATIC PC Adapter RS232; C:\Windows\system32\DRIVERS\s7osmcax64.sys [2011-05-06 195584]
R3 s7osobux64;SIMATIC SoftBus; C:\Windows\system32\DRIVERS\s7osobux64.sys [2011-05-06 152576]
R3 s7otmcd64x;SIMATIC Memory Cards; C:\Windows\System32\Drivers\s7otmcd64x.sys [2011-05-06 199680]
R3 s7otranx64;SIMATIC Transport; C:\Windows\system32\DRIVERS\s7otranx64.sys [2011-05-06 260096]
R3 s7otsadx64;SIMATIC TS Adapter RS232; C:\Windows\system32\DRIVERS\s7otsadx64.sys [2011-05-06 192000]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-05 1439792]
S3 AdvancedVirtualComPort;KernelPro Virtual COM Port driver; C:\Windows\System32\DRIVERS\AdvancedVirtualComPort.sys [2011-04-26 299024]
S3 AMPPALP;Intel(R) Centrino(R) Bluetooth 3.0 + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2011-04-21 294912]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2011-03-08 51712]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-03-08 274944]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 evserial;Virtual Serial Ports Driver (Eltima Softwate); C:\Windows\System32\DRIVERS\evserial.sys [2010-04-19 67072]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2014-01-27 94704]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2014-01-27 86896]
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Prog [2012-08-27 6516280]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 CH341SER_A64;CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [2011-11-04 58368]
S3 iBtFltCoex;iBtFltCoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2011-03-23 59904]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Prog [2012-08-27 6516280]
R2 AdvancedVirtualCOMportService;KernelPro Advanced Virtual COM Port service; C:\Windows\System32\DRIVERS\AvcpService.exe [2011-04-26 558592]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-03-04 379520]
R2 almservice;Automation License Manager Service; C:\Prog [2012-08-27 6516280]
R2 AMPPALR3;Intel® Centrino® Bluetooth 3.0 + High Speed Service; C:\Prog [2012-08-27 6516280]
R2 ASLDRService;ASLDR Service; C:\Prog [2012-08-27 6516280]
R2 avast! Antivirus;avast! Antivirus; C:\Prog [2012-08-27 6516280]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Prog [2012-08-27 6516280]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Prog [2012-08-27 6516280]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service; C:\Prog [2012-08-27 6516280]
R2 cvhsvc;Client Virtualization Handler; C:\Prog [2012-08-27 6516280]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Prog [2012-08-27 6516280]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Prog [2012-08-27 6516280]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HW_VSP3s_Service;HW Virtual Serial Port (single); C:\Prog [2012-08-27 6516280]
R2 LkCitadelServer;Lookout Citadel Server; C:\Windows\SysWOW64\lkcitdl.exe [2007-01-22 695136]
R2 lkClassAds;National Instruments PSP Server Locator; C:\Windows\SysWOW64\lkads.exe [2007-02-14 56096]
R2 lkTimeSync;National Instruments Time Synchronization; C:\Windows\SysWOW64\lktsrv.exe [2007-02-14 64288]
R2 MDM;Machine Debug Manager; C:\Prog [2012-08-27 6516280]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Prog [2012-08-27 6516280]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NIDomainService;National Instruments Domain Service; C:\Prog [2012-08-27 6516280]
R2 niSvcLoc;NI Service Locator; C:\Windows\SysWOW64\nisvcloc.exe [2007-02-21 56096]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Prog [2012-08-27 6516280]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-09-13 934216]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-04-26 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Prog [2012-08-27 6516280]
R2 s7hspsvx;S7 HSP Service; C:\Prog [2012-08-27 6516280]
R2 s7oiehsx64;SIMATIC IEPG Help Service; C:\Prog [2012-08-27 6516280]
R2 S7TraceServiceX;S7TraceServiceX; C:\Prog [2012-08-27 6516280]
R2 SeaPort;SeaPort; C:\Prog [2012-08-27 6516280]
R2 sftlist;Application Virtualization Client; C:\Prog [2012-08-27 6516280]
R2 SQLWriter;SQL Server VSS Writer; c:\Prog [2012-08-27 6516280]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Prog [2012-08-27 6516280]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Prog [2012-08-27 6516280]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 sftvsa;Application Virtualization Service Agent; C:\Prog [2012-08-27 6516280]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Prog [2012-08-27 6516280]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Prog [2012-08-27 6516280]
S2 NvNetworkService;NVIDIA Network Service; C:\Prog [2012-08-27 6516280]
S2 SetupARService;SetupARService; C:\Prog [2012-08-27 6516280]
S2 SkypeUpdate;Skype Updater; C:\Prog [2012-08-27 6516280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24 267440]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 fsssvc;Windows Live Family Safety Service; C:\Prog [2012-08-27 6516280]
S3 gupdatem;Služba Google Update (gupdatem); C:\Prog [2012-08-27 6516280]
S3 IDriverT;InstallDriver Table Manager; C:\Prog [2012-08-27 6516280]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-08-19 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Prog [2012-08-27 6516280]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Prog [2012-08-27 6516280]
S3 odserv;Microsoft Office Diagnostics Service; C:\Prog [2012-08-27 6516280]
S3 ose;Office Source Engine; C:\Prog [2012-08-27 6516280]
S3 osppsvc;Office Software Protection Platform; C:\Prog [2012-08-27 6516280]
S3 Steam Client Service;Steam Client Service; C:\Prog [2012-08-27 6516280]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Prog [2012-08-27 6516280]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NILM License Manager;NILM License Manager; C:\Prog [2012-08-27 6516280]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Prog [2012-08-27 6516280]
S4 SQLBrowser;SQL Server Browser; c:\Prog [2012-08-27 6516280]

-----------------EOF-----------------

#4 Příspěvek od **motji** » 05 říj 2014 07:21

Dobré ranko

Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/
-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.

stancoj · #5 Příspěvek od **stancoj** » 05 říj 2014 22:16

Pekný večer

# AdwCleaner v3.311 - Report created 05/10/2014 at 23:09:28
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jaro - ASUS-PC
# Running from : C:\Users\Jaro\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\547B38670606DF14AA57B0BB83F3AE4D
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280

-\\ Mozilla Firefox v32.0.3 (x86 sk)

[ File : C:\Users\Jaro\AppData\Roaming\Mozilla\Firefox\Profiles\aa3gkh4m.default-1352044960671\prefs.js ]

-\\ Google Chrome v37.0.2062.124

[ File : C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R1].txt - [11537 octets] - [05/10/2014 23:07:07]
AdwCleaner[S1].txt - [11303 octets] - [05/10/2014 23:09:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [11364 octets] ##########

#6 Příspěvek od **motji** » 05 říj 2014 23:07

Tak ještě

Stáhněte Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
-Uložte program na plochu a spusťte . Pak se zobrazí se licenční podminky - potvrďte start libovolnou klávesou.
- vytvoří se záloha a proběhne skenování.
Po skončení skenování na Vás vyběhne log (bude uložen v c:\JRT jako JRT.txt) - zkopírujte jej sem

Použijte

CCleaner http://forum.viry.cz/viewtopic.php?f=46&t=7478

stancoj · #7 Příspěvek od **stancoj** » 06 říj 2014 20:30

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.1 (10.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Jaro on po 06. 10. 2014 at 21:23:00,33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}

~~~ Files

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Jaro\appdata\local\cre"
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{04E4EDC7-997C-42C0-8FE7-D8C28D77F578}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{08E0F0E1-4328-4C06-AD49-B289D1F7C53A}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{0B006014-38E6-4735-AFAA-7D8EA056E7BE}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{113FE926-0AAD-4B11-BC55-5B8223703F25}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{17ABA65C-2DBF-4E50-BC6B-077D907AC391}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{18336FB8-286B-4056-A280-6D59E56C8991}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{1B395E87-850A-4806-A37A-0BB22C93B91B}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{227DB0C1-490B-4E12-AA0B-C437751A8D22}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{2F278614-FC8E-4679-A2D0-936F7045BFB2}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{2F364572-D555-4A65-BE69-3EEA997821F8}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{3082698D-E2E1-4263-B72C-6C408F4090D7}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{33B569B4-7260-48D6-9EAC-26E2BCFCDD93}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{352E7F9A-DA6D-4BF0-AA7D-2F297C799F62}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{357E9AF5-050D-420C-BC01-B35B7B9596B6}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{3C948C8F-5A40-4278-ACDF-496909A3030F}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{3D740361-D9B0-4DDD-8C61-AB1DE2FCE3CF}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{41195773-3F57-4834-8492-6E35D57F7CC0}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{429EF80F-C47C-4BB1-A15F-EBA43E769FDA}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{4435C70C-9207-4D4D-BA0A-3155EE3A4B7C}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{44C3A309-A574-4487-A18C-D82DE7295125}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{46738D1E-5F56-421F-A6A3-1E6CF34EB63A}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{46C036B3-F80B-4605-9181-1BB636C1FD2A}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{4D5905E6-1318-4C36-BA71-4A205BC159B7}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{5329D0A5-8C1B-485C-AF54-AD6616C6A08A}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{56B05093-1CBF-4EFC-9657-1C939A467CA8}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{5B2127D9-1856-4409-9E79-EF858332EEF9}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{6193518D-2C51-4145-AEA5-8C5ACDBD13EA}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{707E1232-656C-4825-A6DB-21D733DA92D4}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{73980946-1DD6-471C-9EB0-CE75579199D4}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{741870C3-8D49-4FE8-92C3-F22CA6A7BB63}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{77CCFB89-A66C-4348-8805-3BF2D49BDE6C}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{7B266F87-ACBE-4D69-B31A-2792F98AC33C}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{8BADEEBD-8318-44F6-A2B1-C61DC2862457}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{918A192E-464C-4A46-BA24-4552398D6548}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{93C430AC-3CBB-4DB7-AE47-BC7AFA141135}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{99CC16C9-79F3-4F64-82DE-AC4B87E1F3D6}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{99CEC314-A55C-4ECC-9CD8-25239A321665}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{A008A62E-BEEF-4168-A4BB-AD9083B57646}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{AD92D1CD-913D-4644-95A5-396218128C86}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{AF3FB70A-C6DB-4BC5-B611-0F2606A276CD}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{B805E438-FDDE-4B61-9642-65FA608AC823}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{B98F48C3-81DF-48A7-AB40-80843377213E}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{BC6BCFA0-A9A6-4A4F-8107-4286F1C5C8FC}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{C0046B6B-01BA-4A94-BF67-D13482FB8862}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{C0271205-6C2B-4D4F-BE5B-1D5F30EFF1FB}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{C28024A3-B15A-40A8-84A2-A5DB2F22DE81}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{C718C43F-C069-4CDF-BB29-8FA335AF534D}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{CC66B941-9B0D-4D92-A715-0D58ED389445}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{CD7B25B4-C724-44C3-BAEC-7BE8A7EE4772}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{CEB2821B-7184-47B4-BA24-C3FFF6F38AE0}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{D81BFFB8-A5B5-4118-9ABB-410C1EE200AB}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{DCA4C223-E31B-4D07-B95C-7D3F7AD19BC6}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{E74DB9D5-5C4B-4CF5-9507-8CA5303C9D3E}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{EA693BD2-63F4-4746-96DE-98BA70C38172}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{EB94F49D-D163-4E00-AA6B-B6B200C574CE}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{EF30C915-E1CC-40A0-869F-0C8D473B71F6}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{EF89FD9D-E873-4B45-B0C5-557D78D5C196}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{F604DC64-4789-4CD8-A741-6747EC4AFEFA}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{F9784DA1-7AA2-4C07-9762-3B21F3EB8AA3}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{FDA5FBFD-B600-4397-A296-A77AE25FE5EC}
Successfully deleted: [Empty Folder] C:\Users\Jaro\appdata\local\{FF796DD3-5DB6-48FE-A483-40767CE6D76E}

~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted the following from C:\Users\Jaro\AppData\Roaming\mozilla\firefox\profiles\aa3gkh4m.default-1352044960671\prefs.js

user_pref("browser.search.useDBForOrder", true);
user_pref("extensions.firebug.DBG_TOGGLESIDEPANELS", false);
Emptied folder: C:\Users\Jaro\AppData\Roaming\mozilla\firefox\profiles\aa3gkh4m.default-1352044960671\minidumps [538 files]

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 06. 10. 2014 at 21:29:14,26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#8 Příspěvek od **motji** » 07 říj 2014 20:51

Bylo toho dost, tak ještě
http://forum.viry.cz/viewtopic.php?f=29&t=137928

stancoj · #9 Příspěvek od **stancoj** » 08 říj 2014 05:57

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 7. 10. 2014
Čas skenování: 23:59:53
Protokol: log.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.10.07.13
Databáze rootkitů: v2014.09.19.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Self-protection: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Jaro

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 961096
Uplynulý čas: 3 hod, 44 min, 41 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 1
Trojan.Ursnif, D:\Matlab\toolbox\images\images\private\watershed_vs.mexw64, Do karantény, [b43524edadcf83b3112e050556afca36],

Fyzické sektory: 0
(No malicious items detected)

(end)

#10 Příspěvek od **motji** » 08 říj 2014 13:43

Tak, ted už by mohlo být čisto, co na to počítač?

stancoj · #11 Příspěvek od **stancoj** » 08 říj 2014 21:39

Problemy som ani predtym neregistroval, teda všetko v poriadku. Ďakujem za váš čas

#12 Příspěvek od **motji** » 09 říj 2014 12:14

Není zač

VIRY.CZ

Preventivka

Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka

Re: Preventivka