Dobrý den, prosím o kontrolu logu, na notebooku je pomalý internet... Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-12 20:52:40
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 31 GB (37%) free of 82 GB
Total RAM: 2558 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:52:48, on 12.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program
Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -
C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program
Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera
Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common
Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD
Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common
Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi
Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program
Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee
Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -
res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O9 - Extra button: Skype Click to Call settings -
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program
Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program
Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program
Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems
Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe
Systems Incorporated -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program
Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO -
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program
Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation -
C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program
Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService)
- McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation
- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation -
C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program
Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology
Solutions - C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc -
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 9236 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job -
C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program
Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program
Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath -
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" -
"{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013,
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10,
{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1,
{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi
Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\searchplugins\
icqplugin.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
[2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
[2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
[2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
[2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
[2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28
346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
[2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer
/watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25
1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
[2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21
959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security
Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program
Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 16:10:06 ----D---- C:\rsit
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
2014-10-22 17:19:12 ----D---- C:\Program Files\McAfee Security Scan
2014-10-15 08:03:15 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 08:03:10 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 08:03:04 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 08:03:04 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 08:03:04 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 08:03:03 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 08:03:03 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 08:03:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 08:03:03 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 08:03:03 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 08:03:03 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 08:03:03 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 08:03:02 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 08:03:02 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 08:03:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 08:03:01 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 08:03:00 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 08:03:00 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 08:02:59 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 08:02:58 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 08:02:57 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 08:02:56 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 08:02:56 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 08:02:56 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 08:02:55 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 08:02:55 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 08:02:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 08:02:53 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 08:02:53 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 08:02:52 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\wdigest.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\schannel.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\ncrypt.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\msv1_0.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 08:02:26 ----A---- C:\Windows\system32\packager.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 08:02:18 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winload.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\mf.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ci.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 08:02:16 ----A---- C:\Windows\system32\evr.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\qdvd.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 08:02:14 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 08:02:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:02:10 ----A---- C:\Windows\system32\wmploc.DLL
======List of files/folders modified in the last 1 month======
2014-11-12 20:51:34 ----D---- C:\ProgramData\GameXN
2014-11-12 20:51:32 ----D---- C:\Windows\Temp
2014-11-12 20:48:06 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-12 20:46:35 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-12 20:44:00 ----D---- C:\Windows\inf
2014-11-12 20:43:59 ----D---- C:\Windows\Minidump
2014-11-12 20:43:59 ----AD---- C:\Windows
2014-11-12 19:44:41 ----D---- C:\ProgramData\MFAData
2014-11-12 19:42:13 ----D---- C:\Windows\System32
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:19:23 ----D---- C:\Windows\system32\config
2014-11-12 16:10:53 ----RD---- C:\Program Files
2014-11-12 16:09:02 ----D---- C:\VSTUPY
2014-11-12 16:05:56 ----D---- C:\Windows\Prefetch
2014-11-12 16:04:27 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-12 16:02:43 ----D---- C:\Windows\winsxs
2014-11-12 16:02:43 ----D---- C:\Windows\Tasks
2014-11-12 16:02:43 ----D---- C:\Windows\system32\wfp
2014-11-12 16:02:43 ----D---- C:\Windows\system32\en-US
2014-11-12 16:02:43 ----D---- C:\Windows\system32\DriverStore
2014-11-12 16:02:43 ----D---- C:\Windows\system32\drivers
2014-11-12 16:02:43 ----D---- C:\Windows\system32\cs-CZ
2014-11-12 16:02:43 ----D---- C:\Windows\system32\catroot2
2014-11-12 16:02:43 ----D---- C:\Program Files\Internet Explorer
2014-11-12 16:02:41 ----D---- C:\Windows\system32\Tasks
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:41 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-12 16:02:32 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-12 16:02:32 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-12 16:02:32 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-12 16:02:24 ----D---- C:\Windows\system32\wbem
2014-11-12 16:02:23 ----D---- C:\Windows\registration
2014-11-12 16:02:03 ----D---- C:\Windows\Microsoft.NET
2014-11-12 16:01:56 ----RSD---- C:\Windows\assembly
2014-11-12 16:00:35 ----D---- C:\System Volume Information
2014-11-12 08:56:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-30 21:47:02 ----D---- C:\Windows\debug
2014-10-30 09:22:50 ----SHD---- C:\Windows\Installer
2014-10-30 09:22:49 ----SHD---- C:\Config.Msi
2014-10-17 11:01:23 ----D---- C:\Windows\rescache
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
2014-10-15 19:24:21 ----D---- C:\Windows\system32\MRT
2014-10-15 19:24:15 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 08:01:55 ----D---- C:\Windows\system32\catroot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17
241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield;
C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys
[2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000;
C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30
121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys
[2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17
21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys
[2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;
C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver;
C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
[2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17
24232]
R1 inspect;COMODO Internet Security Firewall Driver;
C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22
12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12
67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
[2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program
Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;
\??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver;
C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM);
C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ;
C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver;
C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys
[2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys
[2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;
C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block;
C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network);
C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys
[2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth;
C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys
[2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16
25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys
[2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys
[2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys
[2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver;
C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI);
C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14
52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1;
C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03
36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
[2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14
53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14
52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;
C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
[2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common
Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25
3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program
Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program
Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO
livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO
Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe
[2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
[2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01
211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
[2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth
Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03
315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet
Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common
Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000;
C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program
Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla
Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source
Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common
Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09
4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe
[2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601;
C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe
[2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08
390528]
S4
NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý internet
Dobrý den,
předem díky za pomoc. Log zde:
# AdwCleaner v4.101 - Report created 13/11/2014 at 08:43:50
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Marketa - NOTAS-MALOUSCI
# Running from : C:\VSTUPY\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files\AVG Security Toolbar
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
File Deleted : C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\searchplugins\icqplugin.xml
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v33.1 (x86 cs)
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.70\",\"d\":\"032414\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_US\\\\/all\\\\.js$/i\"]}]}[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.list_api", "{\"r\":[\"hxxp://24x7homesecurity.com/\",\"hxxp://a1supplements.com/\",\"hxxp://aactionair.net/\",\"hxxp://abcnews.go.com/\",\"hxxp://adp.com/\",\"hxxp://[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp://ads.adtrustmedia.com/con[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v0.1.10%20-%202014-04-07%2018%3A21%3A58%20*%2F%0D%0Avar%20u%20%3D%20%7B%7D%3B%0A%0Avar%20Util%20%3D%20%7B%0A%09de[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.engineVerified", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.history", "prod%C3%A1m%20tri%C4%8Dko%20zumba%20prod%C3%A1m%20zumba%20tri%C4%8Dkozumba%20tri%C4%8Dkonapajedla%20net%20oleje%20policiez%C3%A1sah%20policie%20hofman%20napaje[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.installTime", "1278619149");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.itbsitescount", 0);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.3");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.suggestions", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uniqueID", "127848544212784854201278619149101");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1295464374);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
-\\ Google Chrome v38.0.2125.111
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={A5E3A7E1-8008-452A-9D8F-1CD31A6D870D}&mid=9daf55ded176357cebc410ba88036cbb-489f00097feaf940e1194ae16afa6ca248e4ec5a&lang=cs&ds=AVG&pr=fr&d=2012-06-30 15:46:07&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://isearch.avg.com?cid={A5E3A7E1-8008-452A-9D8F-1CD31A6D870D}&mid=9daf55ded176357cebc410ba88036cbb-489f00097feaf940e1194ae16afa6ca248e4ec5a&lang=cs&ds=AVG&coid=&cmpid=&pr=fr&d=2012-06-30 15:46:07&v=18.1.9.799&pid=avg&sg=0&sap=hp
*************************
AdwCleaner[R0].txt - [7535 octets] - [13/11/2014 08:41:23]
AdwCleaner[S0].txt - [7752 octets] - [13/11/2014 08:43:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7812 octets] ##########
předem díky za pomoc. Log zde:
# AdwCleaner v4.101 - Report created 13/11/2014 at 08:43:50
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Marketa - NOTAS-MALOUSCI
# Running from : C:\VSTUPY\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files\AVG Security Toolbar
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Folder Deleted : C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
File Deleted : C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\searchplugins\icqplugin.xml
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cmaiofennmphjldldcpphcechfnnohja
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v33.1 (x86 cs)
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.ExLst", "{\"u\":{\"v\":\"1.70\",\"d\":\"032414\"},\"h\":{\"pogo.com\":{\"p\":[{\"e\":\"/.*/\",\"r\":[\"/connect\\\\.facebook\\\\.net\\\\/en_US\\\\/all\\\\.js$/i\"]}]}[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.list_api", "{\"r\":[\"hxxp://24x7homesecurity.com/\",\"hxxp://a1supplements.com/\",\"hxxp://aactionair.net/\",\"hxxp://abcnews.go.com/\",\"hxxp://adp.com/\",\"hxxp://[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.serpInject", "{\"u\":{\"v\":\"2.72\",\"d\":\"061714\"},\"l\":\"hxxp://search.adtrustmedia.com/search_safecontent.php\",\"e\":[{\"u\":\"hxxp://ads.adtrustmedia.com/con[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("extensions.trusted-ads.serp_mywebsearch", "\"%2F*!%20serp-mywebsearch%20-%20v0.1.10%20-%202014-04-07%2018%3A21%3A58%20*%2F%0D%0Avar%20u%20%3D%20%7B%7D%3B%0A%0Avar%20Util%20%3D%20%7B%0A%09de[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.engineVerified", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.hiddenElements", "itb_options");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.history", "prod%C3%A1m%20tri%C4%8Dko%20zumba%20prod%C3%A1m%20zumba%20tri%C4%8Dkozumba%20tri%C4%8Dkonapajedla%20net%20oleje%20policiez%C3%A1sah%20policie%20hofman%20napaje[...]
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.installTime", "1278619149");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.itbsitescount", 0);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.previousFFVersion", "3.6.3");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.suggestions", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uniqueID", "127848544212784854201278619149101");
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1295464374);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[cadv1qa6.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
-\\ Google Chrome v38.0.2125.111
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={A5E3A7E1-8008-452A-9D8F-1CD31A6D870D}&mid=9daf55ded176357cebc410ba88036cbb-489f00097feaf940e1194ae16afa6ca248e4ec5a&lang=cs&ds=AVG&pr=fr&d=2012-06-30 15:46:07&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bopakagnckmlgajfccecajhnimjiiedh
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ndibdjnfmopecpmkdieinmbadjfpblof
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
[C:\Users\Marketa\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Startup_URLs] : hxxp://isearch.avg.com?cid={A5E3A7E1-8008-452A-9D8F-1CD31A6D870D}&mid=9daf55ded176357cebc410ba88036cbb-489f00097feaf940e1194ae16afa6ca248e4ec5a&lang=cs&ds=AVG&coid=&cmpid=&pr=fr&d=2012-06-30 15:46:07&v=18.1.9.799&pid=avg&sg=0&sap=hp
*************************
AdwCleaner[R0].txt - [7535 octets] - [13/11/2014 08:41:23]
AdwCleaner[S0].txt - [7752 octets] - [13/11/2014 08:43:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7812 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý internet
Nový log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-14 10:21:35
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 31 GB (37%) free of 82 GB
Total RAM: 2558 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:21:46, on 14.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 9289 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe [2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe [2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28 346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe [2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25 1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 16:10:06 ----D---- C:\rsit
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
2014-10-22 17:19:12 ----D---- C:\Program Files\McAfee Security Scan
2014-10-15 08:03:10 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 08:02:18 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winload.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\mf.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ci.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 08:02:16 ----A---- C:\Windows\system32\evr.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\qdvd.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 08:02:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:02:10 ----A---- C:\Windows\system32\wmploc.DLL
======List of files/folders modified in the last 1 month======
2014-11-14 10:21:46 ----D---- C:\Windows\Prefetch
2014-11-14 10:21:05 ----D---- C:\Windows\inf
2014-11-14 10:21:04 ----D---- C:\Windows\Temp
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-14 10:21:04 ----AD---- C:\Windows
2014-11-14 10:20:17 ----D---- C:\ProgramData\GameXN
2014-11-14 09:52:41 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-14 09:36:53 ----D---- C:\VSTUPY
2014-11-14 09:11:24 ----D---- C:\Windows\system32\config
2014-11-14 08:59:33 ----D---- C:\ProgramData\MFAData
2014-11-14 08:50:36 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-14 08:50:29 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:35 ----D---- C:\Windows\System32
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:38:09 ----SHD---- C:\Windows\Installer
2014-11-13 14:38:09 ----SHD---- C:\Config.Msi
2014-11-13 14:36:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\Tasks
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----RD---- C:\Program Files
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
2014-10-15 08:01:55 ----D---- C:\Windows\system32\catroot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17 241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30 121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17 21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys [2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16 25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25 3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08 390528]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-14 10:21:35
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 31 GB (37%) free of 82 GB
Total RAM: 2558 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:21:46, on 14.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 9289 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe [2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe [2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28 346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe [2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25 1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 16:10:06 ----D---- C:\rsit
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
2014-10-22 17:19:12 ----D---- C:\Program Files\McAfee Security Scan
2014-10-15 08:03:10 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 08:02:18 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winload.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\mf.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ci.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 08:02:16 ----A---- C:\Windows\system32\evr.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\qdvd.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 08:02:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:02:10 ----A---- C:\Windows\system32\wmploc.DLL
======List of files/folders modified in the last 1 month======
2014-11-14 10:21:46 ----D---- C:\Windows\Prefetch
2014-11-14 10:21:05 ----D---- C:\Windows\inf
2014-11-14 10:21:04 ----D---- C:\Windows\Temp
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-14 10:21:04 ----AD---- C:\Windows
2014-11-14 10:20:17 ----D---- C:\ProgramData\GameXN
2014-11-14 09:52:41 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-14 09:36:53 ----D---- C:\VSTUPY
2014-11-14 09:11:24 ----D---- C:\Windows\system32\config
2014-11-14 08:59:33 ----D---- C:\ProgramData\MFAData
2014-11-14 08:50:36 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-14 08:50:29 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:35 ----D---- C:\Windows\System32
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:38:09 ----SHD---- C:\Windows\Installer
2014-11-13 14:38:09 ----SHD---- C:\Config.Msi
2014-11-13 14:36:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\Tasks
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----RD---- C:\Program Files
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
2014-10-15 08:01:55 ----D---- C:\Windows\system32\catroot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17 241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30 121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17 21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys [2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16 25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25 3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 235696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08 390528]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC a dejte nový log RSIT.:files
C:\Program Files\McAfee Security Scan
C:\Program Files\Skype\Toolbars
C:\Windows\AutoKMS.exe
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
:services
McComponentHostService
c2cautoupdatesvc
c2cpnrsvc
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý internet
Provedeno, nový log zde:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-14 21:04:37
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 31 GB (37%) free of 82 GB
Total RAM: 2558 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:05:07, on 14.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -
C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program
Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera
Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common
Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD
Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common
Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi
Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program
Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -
res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O9 - Extra button: Skype Click to Call settings -
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program
Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program
Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program
Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems
Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe
Systems Incorporated -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program
Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO -
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program
Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation -
C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program
Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation
- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation -
C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program
Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology
Solutions - C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc -
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 8724 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job -
C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
=========Mozilla firefox=========
ProfilePath -
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" -
"{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013,
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10,
{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1,
{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi
Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
[2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
[2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
[2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
[2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28
346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
[2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer
/watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25
1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
[2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21
959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program
Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-14 21:00:19 ----D---- C:\_OTM
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 16:10:06 ----D---- C:\rsit
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 08:03:10 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 08:02:18 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winload.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\mf.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ci.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 08:02:16 ----A---- C:\Windows\system32\evr.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\qdvd.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 08:02:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:02:10 ----A---- C:\Windows\system32\wmploc.DLL
======List of files/folders modified in the last 1 month======
2014-11-14 21:04:56 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-14 21:04:28 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-14 21:04:00 ----D---- C:\ProgramData\GameXN
2014-11-14 21:03:58 ----D---- C:\Windows\Prefetch
2014-11-14 21:03:48 ----D---- C:\Windows\Temp
2014-11-14 21:03:48 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-14 21:02:46 ----D---- C:\Windows\inf
2014-11-14 21:02:45 ----D---- C:\Windows\system32\config
2014-11-14 21:02:29 ----AD---- C:\Windows
2014-11-14 21:00:23 ----RD---- C:\Program Files\Skype
2014-11-14 21:00:23 ----D---- C:\Windows\Tasks
2014-11-14 21:00:22 ----RD---- C:\Program Files
2014-11-14 20:58:28 ----D---- C:\VSTUPY
2014-11-14 20:53:20 ----D---- C:\ProgramData\MFAData
2014-11-14 12:29:52 ----D---- C:\Windows\System32
2014-11-14 12:29:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:38:09 ----SHD---- C:\Windows\Installer
2014-11-13 14:38:09 ----SHD---- C:\Config.Msi
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
2014-10-15 08:01:55 ----D---- C:\Windows\system32\catroot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17
241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield;
C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys
[2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000;
C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30
121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys
[2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17
21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys
[2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;
C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver;
C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
[2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17
24232]
R1 inspect;COMODO Internet Security Firewall Driver;
C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22
12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12
67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
[2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program
Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;
\??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver;
C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM);
C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ;
C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver;
C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys
[2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys
[2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;
C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block;
C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network);
C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys
[2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth;
C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys
[2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16
25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys
[2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys
[2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys
[2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver;
C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI);
C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14
52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1;
C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03
36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
[2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14
53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14
52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;
C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
[2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common
Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25
3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO
livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO
Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe
[2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
[2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01
211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
[2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth
Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03
315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet
Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common
Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000;
C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla
Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source
Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common
Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09
4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe
[2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601;
C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe
[2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08
390528]
S4
NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-14 21:04:37
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 31 GB (37%) free of 82 GB
Total RAM: 2558 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:05:07, on 14.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -
C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program
Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera
Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack
5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common
Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD
Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common
Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi
Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program
Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User
'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -
res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program
Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O9 - Extra button: Skype Click to Call settings -
{898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program
Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program
Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program
Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program
Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems
Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe
Systems Incorporated -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program
Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program
Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO -
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program
Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program
Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation -
C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program
Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation
- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation -
C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program
Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology
Solutions - C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc -
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 8724 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job -
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job -
C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
=========Mozilla firefox=========
ProfilePath -
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" -
"{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013,
{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10,
{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1,
{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi
Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet
Explorer\SkypeIEPlugin.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
[2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
[2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
[2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
[2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet
Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28
346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
[2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer
/watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25
1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
[2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21
959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program
Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-14 21:00:19 ----D---- C:\_OTM
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 16:10:06 ----D---- C:\rsit
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 08:03:10 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 08:02:39 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 08:02:35 ----A---- C:\Windows\system32\mstsc.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 08:02:34 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 08:02:34 ----A---- C:\Windows\system32\aaclient.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 08:02:19 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 08:02:18 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\winload.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 08:02:17 ----A---- C:\Windows\system32\mf.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 08:02:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 08:02:17 ----A---- C:\Windows\system32\ci.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 08:02:16 ----A---- C:\Windows\system32\evr.dll
2014-10-15 08:02:16 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\qdvd.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 08:02:15 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 08:02:13 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 08:02:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 08:02:11 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 08:02:11 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 08:02:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 08:02:10 ----A---- C:\Windows\system32\wmploc.DLL
======List of files/folders modified in the last 1 month======
2014-11-14 21:04:56 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-14 21:04:28 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-14 21:04:00 ----D---- C:\ProgramData\GameXN
2014-11-14 21:03:58 ----D---- C:\Windows\Prefetch
2014-11-14 21:03:48 ----D---- C:\Windows\Temp
2014-11-14 21:03:48 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-14 21:02:46 ----D---- C:\Windows\inf
2014-11-14 21:02:45 ----D---- C:\Windows\system32\config
2014-11-14 21:02:29 ----AD---- C:\Windows
2014-11-14 21:00:23 ----RD---- C:\Program Files\Skype
2014-11-14 21:00:23 ----D---- C:\Windows\Tasks
2014-11-14 21:00:22 ----RD---- C:\Program Files
2014-11-14 20:58:28 ----D---- C:\VSTUPY
2014-11-14 20:53:20 ----D---- C:\ProgramData\MFAData
2014-11-14 12:29:52 ----D---- C:\Windows\System32
2014-11-14 12:29:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:38:09 ----SHD---- C:\Windows\Installer
2014-11-13 14:38:09 ----SHD---- C:\Config.Msi
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
2014-10-15 08:01:55 ----D---- C:\Windows\system32\catroot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17
241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield;
C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys
[2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000;
C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30
121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys
[2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17
21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys
[2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;
C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver;
C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys
[2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17
24232]
R1 inspect;COMODO Internet Security Firewall Driver;
C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22
12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12
67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys
[2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program
Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;
\??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver;
C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM);
C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ;
C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver;
C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys
[2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys
[2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;
C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block;
C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network);
C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys
[2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth;
C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys
[2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16
25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys
[2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys
[2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys
[2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver;
C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI);
C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14
52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1;
C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03
36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
[2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14
53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14
52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;
C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand,
4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
[2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common
Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25
3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO
livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO
Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe
[2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
[2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01
211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program
Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
[2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth
Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity
Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03
315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;
C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet
Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program
Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common
Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000;
C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla
Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source
Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common
Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09
4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe
[2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000;
C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601;
C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe
[2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08
390528]
S4
NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4
NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199;
C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Dvouklikem na soubor C:\Program Files\trend micro\Marketa.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O20 - AppInit_DLLs:
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý internet
Posílám nový log. A můžete prosím stručně popsat kde byl problém? Díky Laďa
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-15 17:18:04
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 30 GB (37%) free of 82 GB
Total RAM: 2558 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:18:12, on 15.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 8149 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe [2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe [2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28 346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe [2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25 1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-15 17:18:04 ----D---- C:\rsit
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2014-11-15 17:16:30 ----D---- C:\VSTUPY
2014-11-15 17:10:26 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-15 17:09:51 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-15 17:09:39 ----D---- C:\ProgramData\GameXN
2014-11-15 17:09:34 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-15 17:09:30 ----D---- C:\Windows\Temp
2014-11-15 17:09:15 ----D---- C:\Windows\system32\config
2014-11-15 17:08:45 ----AD---- C:\Windows
2014-11-15 16:00:08 ----D---- C:\ProgramData\MFAData
2014-11-15 01:54:05 ----SHD---- C:\Windows\Installer
2014-11-15 01:54:05 ----SHD---- C:\Config.Msi
2014-11-15 01:49:17 ----RD---- C:\Program Files
2014-11-15 01:49:05 ----D---- C:\Windows\Tasks
2014-11-14 21:03:58 ----D---- C:\Windows\Prefetch
2014-11-14 21:02:46 ----D---- C:\Windows\inf
2014-11-14 21:00:23 ----RD---- C:\Program Files\Skype
2014-11-14 12:29:52 ----D---- C:\Windows\System32
2014-11-14 12:29:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17 241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30 121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17 21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys [2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16 25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25 3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08 390528]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marketa at 2014-11-15 17:18:04
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 30 GB (37%) free of 82 GB
Total RAM: 2558 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:18:12, on 15.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe
C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe
C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\ProgramData\GameXN\GameXNGO.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\Totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\VSTUPY\RSIT.exe
C:\Program Files\trend micro\Marketa.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless_Selector] C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe
O4 - HKLM\..\Run: [Camera Hotkey] C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CSRSkype] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe
O4 - HKLM\..\Run: [ConMgr] "C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe"
O4 - HKLM\..\Run: [CSRBIP] C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ACSW17EN] "C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [GameXN GO] "C:\ProgramData\GameXN\GameXNGO.exe" /startup
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2014\avgwdsvc.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) - COMODO - C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Unknown owner - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) - Fujitsu Technology Solutions - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: Bluetooth Feature Support (VFPRadioSupportService) - CSR, plc - C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
--
End of file - 8149 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{02BFBBFC-5BF4-40E1-983D-C116397D8DCE}.exe --uninstall=1
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51, avg@toolbar:17.1.2.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3"
prefs.js - "keyword.URL" - "http://us.search.yahoo.com/search?fr=ytff-comodo&p="
"{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}"=C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
browserdirprovider.dll
brwsrcmp.dll
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npnul32.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Marketa\AppData\Roaming\Mozilla\Firefox\Profiles\cadv1qa6.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedads.dll [2014-06-17 937128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-20 1545512]
"Wireless_Selector"=C:\Program Files\Fujitsu\Wireless_Utility\Wireless Selector.exe [2009-05-14 327680]
"Camera Hotkey"=C:\Program Files\Fujitsu\Wireless_Utility\Camera Hotkey.exe [2010-04-29 311296]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-05-22 7514656]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1225944]
"NeroFilterCheck"=C:\Windows\system32\NeroCheck.exe [2006-01-12 155648]
"CSRSkype"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRSkype.exe [2009-07-28 346464]
"ConMgr"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\ConMgr.exe [2009-07-28 504160]
"CSRBIP"=C:\Program Files\CSR\Bluetooth Feature Pack 5.0\CSRBipPushResponder.exe [2009-07-28 306040]
"LogMeIn GUI"=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2010-09-17 63048]
"NokiaMServer"=C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"ACSW17EN"=C:\Program Files\ACD Systems\ACDSee\17.0\acdIDInTouch2.exe [2013-09-25 1414984]
"PrivDogService"=C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [2014-06-17 662184]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"AVG_UI"=C:\Program Files\AVG\AVG2014\avgui.exe [2014-08-25 5188112]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"GameXN GO"=C:\ProgramData\GameXN\GameXNGO.exe [2011-11-06 347008]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-10-13 6692632]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2014-10-01 22067296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2014-04-06 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CLPSLS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-15 17:18:04 ----D---- C:\rsit
2014-11-13 13:17:16 ----A---- C:\Windows\system32\oleaut32.dll
2014-11-13 13:17:12 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-13 13:17:11 ----A---- C:\Windows\system32\msxml3.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\EncDump.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-13 13:17:10 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-13 13:17:08 ----A---- C:\Windows\system32\win32k.sys
2014-11-13 13:17:02 ----A---- C:\Windows\system32\wdigest.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\schannel.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-13 13:17:02 ----A---- C:\Windows\system32\kerberos.dll
2014-11-13 13:17:01 ----A---- C:\Windows\system32\credssp.dll
2014-11-13 13:16:14 ----A---- C:\Windows\system32\packager.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\termsrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-13 13:16:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-13 13:16:11 ----A---- C:\Windows\system32\adtschema.dll
2014-11-13 13:16:10 ----A---- C:\Windows\system32\msaudite.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iernonce.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-13 13:15:57 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-13 13:15:57 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\urlmon.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-13 13:15:56 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-13 13:15:56 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\msrating.dll
2014-11-13 13:15:54 ----A---- C:\Windows\system32\iesetup.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\wininet.dll
2014-11-13 13:15:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\ieui.dll
2014-11-13 13:15:52 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-13 13:15:51 ----A---- C:\Windows\system32\ieframe.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-13 13:15:50 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-13 13:15:49 ----A---- C:\Windows\system32\iertutil.dll
2014-11-13 13:15:48 ----A---- C:\Windows\system32\mshtml.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\vbscript.dll
2014-11-13 13:15:47 ----A---- C:\Windows\system32\jscript9.dll
2014-11-13 08:40:58 ----D---- C:\AdwCleaner
2014-11-12 16:10:53 ----D---- C:\Program Files\trend micro
2014-11-12 14:33:22 ----D---- C:\Program Files\ESET
2014-11-12 08:24:04 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2014-11-15 17:16:30 ----D---- C:\VSTUPY
2014-11-15 17:10:26 ----D---- C:\Users\Marketa\AppData\Roaming\Skype
2014-11-15 17:09:51 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-15 17:09:39 ----D---- C:\ProgramData\GameXN
2014-11-15 17:09:34 ----D---- C:\Users\Marketa\AppData\Roaming\go
2014-11-15 17:09:30 ----D---- C:\Windows\Temp
2014-11-15 17:09:15 ----D---- C:\Windows\system32\config
2014-11-15 17:08:45 ----AD---- C:\Windows
2014-11-15 16:00:08 ----D---- C:\ProgramData\MFAData
2014-11-15 01:54:05 ----SHD---- C:\Windows\Installer
2014-11-15 01:54:05 ----SHD---- C:\Config.Msi
2014-11-15 01:49:17 ----RD---- C:\Program Files
2014-11-15 01:49:05 ----D---- C:\Windows\Tasks
2014-11-14 21:03:58 ----D---- C:\Windows\Prefetch
2014-11-14 21:02:46 ----D---- C:\Windows\inf
2014-11-14 21:00:23 ----RD---- C:\Program Files\Skype
2014-11-14 12:29:52 ----D---- C:\Windows\System32
2014-11-14 12:29:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-14 10:21:04 ----D---- C:\Windows\Minidump
2014-11-14 10:21:04 ----D---- C:\Windows\debug
2014-11-13 19:47:49 ----D---- C:\System Volume Information
2014-11-13 19:34:35 ----D---- C:\Windows\rescache
2014-11-13 17:42:11 ----RSD---- C:\Windows\assembly
2014-11-13 17:42:11 ----D---- C:\Windows\Microsoft.NET
2014-11-13 16:47:33 ----D---- C:\Windows\winsxs
2014-11-13 16:44:33 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 16:44:31 ----D---- C:\Windows\system32\en-US
2014-11-13 16:44:31 ----D---- C:\Windows\system32\drivers
2014-11-13 16:44:28 ----D---- C:\Program Files\Internet Explorer
2014-11-13 14:25:56 ----D---- C:\Windows\system32\MRT
2014-11-13 14:25:52 ----A---- C:\Windows\system32\MRT.exe
2014-11-13 13:00:18 ----D---- C:\Windows\system32\wfp
2014-11-13 13:00:18 ----D---- C:\Windows\system32\DriverStore
2014-11-13 13:00:18 ----D---- C:\Windows\system32\catroot2
2014-11-13 13:00:16 ----D---- C:\Windows\system32\Tasks
2014-11-13 13:00:16 ----D---- C:\Windows\system32\CodeIntegrity
2014-11-13 13:00:07 ----D---- C:\Users\Marketa\AppData\Roaming\GHISLER
2014-11-13 13:00:05 ----D---- C:\ProgramData\McAfee Security Scan
2014-11-13 13:00:05 ----D---- C:\Program Files\ICQ6Toolbar
2014-11-13 13:00:04 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-13 13:00:04 ----D---- C:\Program Files\AVG Security Toolbar
2014-11-13 12:59:56 ----D---- C:\Windows\system32\wbem
2014-11-13 12:59:56 ----D---- C:\Windows\registration
2014-11-12 19:42:01 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-12 16:02:41 ----D---- C:\Windows\system32\NDF
2014-11-12 16:02:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-08 00:30:35 ----HD---- C:\ProgramData
2014-10-16 12:48:13 ----A---- C:\Autoconfig.ini
2014-10-16 08:00:07 ----D---- C:\Windows\system32\Dism
2014-10-16 08:00:07 ----D---- C:\Program Files\Windows Media Player
2014-10-16 08:00:04 ----D---- C:\Windows\system32\Boot
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2014-06-17 241944]
R0 AvgMfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\System32\Drivers\avgmfx86.sys [2014-08-06 98584]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2014-06-17 27416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2014-06-30 121624]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2014-07-21 200984]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17 21272]
R1 AvgLdx86;AVG AVI Loader Driver; C:\Windows\System32\Drivers\avgldx86.sys [2014-06-17 188696]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 607168]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 43728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 92656]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files\LogMeIn\x86\RaInfo.sys [2010-09-17 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2010-09-17 47640]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-07-13 1096704]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FSCSLII;FSCSLII; C:\Windows\system32\DRIVERS\FSCSLII.sys [2009-05-18 16384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-05-23 2361952]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2010-09-17 10144]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6232.sys [2009-07-01 287392]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-28 17920]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-06-16 27632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-07-20 213552]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-06-16 12400]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-06-16 25200]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nvrd32;nvrd32; C:\Windows\system32\DRIVERS\nvrd32.sys [2009-06-30 139296]
S3 nvstor32;nvstor32; C:\Windows\system32\DRIVERS\nvstor32.sys [2009-06-30 212000]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-10-04 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [2014-08-25 3242000]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [2014-08-25 289328]
R2 CLPSLS;COMODO livePCsupport Service; C:\Program Files\COMODO\COMODO livePCsupport\CLPSLS.exe [2010-02-19 148744]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 5306504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ezGOSvc;Easybits GO Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe [2010-12-08 374152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 TestHandler;Fujitsu Diagnostic Testhandler; C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2009-02-19 341264]
R2 VFPRadioSupportService;Bluetooth Feature Support; C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe [2009-07-28 111488]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 1663192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-12 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-08 1343400]
S4 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2010-12-08 136584]
S4 LogMeIn;LogMeIn Service; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2010-11-08 390528]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Smazáno. Byly tam AdWary a pár zbytečností. Pokud se vám net zrychlil, chvilku rychlost sledujte, tento problém může způsobovat i samotné připojení.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý internet
Moc díky. Laďa
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý internet
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?