Kontrola-pomalý internet

Zpráva

HANS55 · #1 Příspěvek od **HANS55** » 24 led 2015 18:59

Dobrý den. prosím o kontrolu, již několik dní mi na netu vyskakují tabulky s reklamou, což dost zpomaluje načítání. Pár věcí mi antivir našel, ale nic se nezměnilo.
Zde log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2015-01-24 18:28:42
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 14 GB (14%) free of 100 GB
Total RAM: 3326 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:55, on 24.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\ASUS\AASP\1.00.65\aaCenter.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files\Alwil Software\Avast5\avastui.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Uzivatel\Desktop\RSIT.exe
C:\Program Files\trend micro\Uzivatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5208
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - (no CLSID) - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate1c9f9ca8679c5b5) (gupdate1c9f9ca8679c5b5) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\System32\ssins.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe

--
End of file - 7218 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job - C:\Users\Uzivatel\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job - C:\Users\Uzivatel\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GlaryInitialize.job - C:\Program Files\Glary Utilities\initialize.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job - C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job - C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0, {7b13ec3e-999a-4b70-b9cb-2617b8323822}:3.3.3.2, wrc@avast.com:7.0.1426, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
"{FFB96CC1-7EB3-449D-B827-DB661701C6BB}"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.257 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi]
"Description"=ZoneAlarm LTD Toolbar Api
"Path"=C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\Windows\system32\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_ScriptHelper.com/Plugin]
"Description"=VideoDownloadConverter_ScriptHelper Plugin
"Path"=C:\Program Files\VideoDownloadConverter\npVDCPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\extensions\
bv4@ZK4OBwDj.org
iobitascsurfingprotection@iobit.com
{20a82645-c095-46ed-80e3-08825760534b}
{ecdee021-0d17-467f-a1ff-c7a115230949}(317)

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\
buenosearch.xml
daemon-search.xml
icq-search.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
zonealarm.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-01-21 752960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-12-29 362928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Softwar [2013-04-14 40]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Surfing Protection - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-10-17 669984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-12-29 59824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2014-12-29 6688472]
"AvastUI.exe"=C:\Program Files\Alwil Softwar [2013-04-14 40]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-30 642304]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2014-08-13 137352]
"IObit Malware Fighter"=C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-12-24 6699800]
"Advanced SystemCare 8"=C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2014-12-10 2427680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
c:\windows\ehome\ehtray.exe [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
C:\Windows\windowsmobile\wmdsync.exe [2008-01-21 215552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.xvid"=xvid.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.DIVX"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-24 18:28:42 ----D---- C:\rsit
2015-01-18 21:52:28 ----D---- C:\Program Files\GIANTS Software
2015-01-18 19:43:05 ----D---- C:\ProgramData\1407909864421307402
2015-01-18 19:43:05 ----D---- C:\Program Files\uniSaleS
2015-01-18 19:42:32 ----D---- C:\ProgramData\kmjhncnbhjhjjgemogodimfcfaekmjlj
2015-01-17 17:21:06 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2015-01-17 17:16:35 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2015-01-17 17:16:27 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2015-01-14 18:16:49 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 17:55:30 ----A---- C:\Windows\system32\profsvc.dll
2015-01-09 21:34:42 ----D---- C:\Program Files\Farming Simulator 2013
2014-12-29 21:54:28 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-29 21:50:53 ----D---- C:\Program Files\Farming Simulator 2015
2014-12-29 17:02:57 ----D---- C:\Program Files\CheckPoint
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files\Java
2014-12-29 15:45:21 ----A---- C:\Windows\system32\npdeployJava1.dll
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaws.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaw.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\java.exe
2014-12-29 15:45:11 ----D---- C:\Program Files\Java
2014-12-29 15:44:16 ----ASH---- C:\ProgramData\desktop.ini
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesLib.dll
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesGUILib.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tosade.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\TepeqAPO.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo2.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SStudio.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSWOW.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSXT.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSHD.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSHP360.dll
2014-12-29 15:41:55 ----A---- C:\Windows\system32\sltech32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slprp32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slcnt32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\sl3apo32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFNHK.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFCOM.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFAPO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-12-29 15:41:52 ----A---- C:\Windows\system32\RtkPgExt.dll
2014-12-29 15:41:52 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoLDR.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoInstII.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkApoApi.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEP32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEL32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEG32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEED32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DHT32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DAA32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-12-29 15:41:48 ----A---- C:\Windows\system32\RltkAPO.dll
2014-12-29 15:41:47 ----A---- C:\Windows\system32\RCoRes.dat
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEP32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEL32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEG32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EED32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEA32A.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\MISS_APO.dll
2014-12-29 15:41:44 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-12-29 15:41:43 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxAudioVnN.dll
2014-12-29 15:41:41 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\KAAPORT.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\ICEsoundAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\FMAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPP32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPO32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPD32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPA32.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\audioLibVc.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTARen.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTACap.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AcpiServiceVnA.dll
2014-12-29 15:40:47 ----A---- C:\Windows\system32\drivers\AtihdLH3.sys
2014-12-29 15:40:14 ----A---- C:\Windows\system32\drivers\jraid.sys
2014-12-29 15:35:31 ----A---- C:\Windows\system32\drivers\L1E60x86.sys
2014-12-29 14:38:59 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS

======List of files/folders modified in the last 1 month======

2015-01-24 18:28:55 ----D---- C:\Windows\Prefetch
2015-01-24 18:28:48 ----D---- C:\Windows\Temp
2015-01-24 18:28:46 ----D---- C:\Program Files\trend micro
2015-01-24 13:09:21 ----SHD---- C:\System Volume Information
2015-01-24 12:00:39 ----D---- C:\Program Files\SUPERAntiSpyware
2015-01-23 14:56:28 ----D---- C:\Windows\SoftwareDistribution
2015-01-23 14:54:55 ----D---- C:\Windows\system32\catroot2
2015-01-23 14:53:20 ----D---- C:\Windows\Debug
2015-01-23 12:51:59 ----D---- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
2015-01-23 12:03:33 ----D---- C:\Windows\inf
2015-01-23 12:03:33 ----D---- C:\Windows
2015-01-21 18:30:00 ----RD---- C:\Program Files
2015-01-21 18:12:45 ----D---- C:\ProgramData\ProductData
2015-01-21 18:12:25 ----D---- C:\Windows\system32\Tasks
2015-01-21 18:10:58 ----D---- C:\Program Files\IObit
2015-01-18 19:43:05 ----D---- C:\ProgramData
2015-01-18 14:37:17 ----AD---- C:\Windows\System32
2015-01-17 17:20:00 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-01-17 17:16:29 ----D---- C:\ProgramData\IObit
2015-01-17 17:16:27 ----D---- C:\Windows\system32\drivers
2015-01-17 17:16:26 ----D---- C:\Users\Uzivatel\AppData\Roaming\IObit
2015-01-15 21:51:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-14 18:16:52 ----D---- C:\Windows\winsxs
2015-01-14 18:16:52 ----D---- C:\Windows\system32\catroot
2015-01-14 18:16:48 ----D---- C:\Windows\system32\MRT
2015-01-14 17:56:25 ----A---- C:\Windows\system32\mrt.exe
2015-01-10 18:21:53 ----D---- C:\Windows\Logs
2015-01-10 18:21:49 ----D---- C:\Program Files\Steam
2015-01-09 19:51:24 ----D---- C:\Program Files\Common Files\Steam
2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-29 18:45:28 ----D---- C:\Windows\Microsoft.NET
2014-12-29 17:30:22 ----D---- C:\Windows\Minidump
2014-12-29 17:06:56 ----SHD---- C:\Windows\Installer
2014-12-29 16:57:37 ----D---- C:\Users\Uzivatel\AppData\Roaming\CheckPoint
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files
2014-12-29 15:45:13 ----A---- C:\Windows\system32\deployJava1.dll
2014-12-29 15:44:56 ----D---- C:\Program Files\Mozilla Firefox
2014-12-29 15:43:40 ----D---- C:\Windows\system32\RTCOM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-24 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-24 206248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2014-12-29 106296]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-01-25 721904]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-12-24 55240]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-24 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-24 423784]
R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-12-24 57928]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2014-12-29 23840]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\Windows\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 tStLibG;tStLibG; C:\Windows\system32\drivers\tStLibG.sys [2014-04-15 55232]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-08-13 456088]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-24 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-24 70384]
R3 3xHybrid;3xHybrid service; C:\Windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdLH3.sys [2014-12-29 75776]
R3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [2013-03-23 21480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-12-29 3086040]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2014-12-29 54824]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-10-18 7680]
R3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [2013-11-19 32288]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [2013-11-19 20944]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2009-01-13 19336]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2009-01-13 49160]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 abu42u75;abu42u75; C:\Windows\system32\drivers\abu42u75.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 cpuz137;cpuz137; \??\C:\Users\Uzivatel\AppData\Local\Temp\cpuz137\cpuz137_x32.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-01-08 36608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-04-17 25280]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-09-08 47360]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2007-10-25 5632]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-11 31616]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2009-01-13 29192]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2009-01-13 31240]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2009-01-13 14728]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-12-24 142648]
R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-04 815392]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 217088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Softwar [2013-04-14 40]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2014-08-13 3596752]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 ZAPrivacyService;ZoneAlarm Privacy Service; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [2014-08-13 96272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate1c9f9ca8679c5b5;Služba Google Update (gupdate1c9f9ca8679c5b5); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-12-10 2631456]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-17 267440]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 ssinstall;SInstalátor; C:\Windows\System32\ssins.exe [2014-05-14 2324216]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 24 led 2015 19:27

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

HANS55 · #3 Příspěvek od **HANS55** » 25 led 2015 02:09

Link byl bohužel nefunkční, takže jsem musel najít jinde, ale povedlo se a na první pohled vypadá, že cleaner svou práci splnil.
Zde ještě log:

# AdwCleaner v4.109 - Report created 25/01/2015 at 01:53:27
# Updated 24/01/2015 by Xplode
# Database : 2015-01-24.4 [Live]
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : Uzivatel - UZIVATEL-PC
# Running from : C:\Users\Uzivatel\Desktop\adwcleaner_4.109.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : tStLibG

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\1407909864421307402
Folder Deleted : C:\Program Files\VideoDownloadConverter
Folder Deleted : C:\Program Files\uniSaleS
Folder Deleted : C:\Users\Uzivatel\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Uzivatel\AppData\LocalLow\Internet Saving Optimizer
Folder Deleted : C:\Users\Uzivatel\AppData\LocalLow\Media Access Startup
Folder Deleted : C:\Users\Uzivatel\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Folder Deleted : C:\Users\Uzivatel\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\Extensions\bv4@ZK4OBwDj.org
Folder Deleted : C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd
Folder Deleted : C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Folder Deleted : C:\ProgramData\kmjhncnbhjhjjgemogodimfcfaekmjlj
File Deleted : C:\Windows\system32\drivers\tStLibG.sys
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\invalidprefs.js
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\buenosearch.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\daemon-search.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin.gif
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin.src
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-1.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-2.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-3.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-4.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-5.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-6.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-7.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\icqplugin-8.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\zonealarm.xml
File Deleted : C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\user.js
File Deleted : C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage

***** [ Scheduled Tasks ] *****

Task Deleted : Driver Booster Scan
Task Deleted : Driver Booster Update

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\adldappccjhelkmbkpiibilgnnjakieg
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter.ScriptHelper.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@VideoDownloadConverter_ScriptHelper.com/Plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{06DEB529-DE09-43EC-B6E2-451AAB0FF000}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{385F1935-3784-48D0-A61F-6385493DED3C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A4E8BCB-5598-4CAF-9DEC-4D452760E28D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D6F0AC3-0C2E-4E07-8FDA-11268AB51211}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F84D69AA-3E20-4305-984E-18E640D7F7FF}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\{5617ECA9-488D-4BA2-8562-9710B9AB78D2}
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\DoubleD
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\Internet Saving Optimizer
Key Deleted : HKCU\Software\AppDataLow\Software\Media Access Startup
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\VideoDownloadConverter
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Bueno Chrome Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\buenosearch
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ICQToolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\free-downloads.net Toolbar

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16599

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v30.0 (cs)

[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.AllowNonPrivacy", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.CTID", "CT1098640");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.CTPBaseServerUrl", "hxxp://services.conduit.com/");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.CommunitiesChangesLastCheckTime", "Fri Feb 13 2009 23:20:20 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.CommunityChanged", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.DialogsAlignMode", "LTR");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.DownloadDomainsCheckInterval", "168");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.DownloadDomainsListLastCheckTime", "Sun Feb 08 2009 00:38:20 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.DownloadDomainsListLastServerUpdateTime", "1201073583");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.EnableUsage", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FeedLastCount128295885701037994", 10);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FeedPollDate128295885701037994", "Fri Feb 13 2009 23:20:20 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FirstTime", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FirstTimeFF3", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FixPageNotFoundErrors", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.FixPageNotFoundUrl", "hxxp://freedownloadsnet.OurToolbar.com/notfound/?actid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID&url=EB_MAIN_FRAME_URL");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.Initialize", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.InitializeCommonPrefs", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.IsGrouping", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.IsMulticommunity", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.IsOpenThankYouPage", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.IsOpenUninstallPage", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.LanguagePackLastCheckTime", "Fri Feb 13 2009 23:20:21 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.LanguagePackReloadInterval", "24");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.LastLogin", "Fri Feb 13 2009 23:20:21 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.Locale", "en-us");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.LoginCache", "4");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.MCDetectTooltipHeight", "83");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.MCDetectTooltipWidth", "295");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.MyGadgetsServerUrl", "hxxp://services.MyStuff.u-page.com/MyStuffService.asmx/LegacyLogin");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.MyGadgetsTrustedDomains", "u-page.com");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioIsPodcast", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioLastCheckTime", "Fri Feb 13 2009 23:20:21 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioLastUpdateIPServer", "0");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioLastUpdateServer", "128780720807000000");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioMediaID", "4817804");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioMediaType", "Media Player");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioMenuSelectedID", "EBRadioMenu_CT10986404817804");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioStationName", "Adult%20Alternative");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.RadioStationURL", "hxxp://syndication.choiceradio.com/asxplay/asx-music/406.asx");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.SHRINK_TOOLBAR", 1);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.SearchFromAddressBarIsInit", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1098640&SearchSource=2&q=");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.Server", "hxxp://users.conduit.com");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.SettingsLastUpdate", "1234010833");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.ThirdPartyComponentsInterval", "72");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.ThirdPartyComponentsLastCheck", "Sun Feb 08 2009 00:38:20 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.ThirdPartyComponentsLastUpdate", "1234008881");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.ToolbarAlignMode", "SYSTEM");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.ToolbarName", "free-downloads.net");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&so ... sealid=112");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.UserID", "UN20090208003819456");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.VusualLastUpdateTime", "1233591280");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.WeatherNetwork", "");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.WeatherPollDate", "Fri Feb 13 2009 23:20:21 GMT+0100");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT1098640.WeatherUnit", "C");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CT2438727_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1009867879889,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2438727/CT2438727", "\"f46d37a270b0d7625ee9eae7b919b9cf3\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2438727", "\"0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.13.0.6", "\"0d648794549cd1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.14.1.0", "\"0e0a4327275cd1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.15.1.0", "\"0343677cfb1cd1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.16.0.3", "\"0343677cfb1cd1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.18.0.7", "\"0343677cfb1cd1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.19.0.3", "\"23c5489aa686ce1:16c0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.20.0.4", "\"dfe74040abc2ce1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2438727", "\"07766f5592f76b152ec9246ce6a0b574\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/27/243/CT2438727/Images/634047717512341250.png", "\"d4521a47e2c8ca1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/27/243/CT2438727/Images/634047717845935000.png", "\"3ceceb5ae2c8ca1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/27/243/CT2438727/Images/Blank.png", "\"27f9ceb6f365cb1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/images/skins/zynga/seperator.gif", "\"461a8601461ca1:0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"968402cf2834e7ec0f38a19f0e9a9eb0\"");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.MyGadgetsIntervalMM", 1440);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT1098640,CT2438727");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT1098640,CT2438727");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("CommunityToolbar.globalUserId", "6000532f-c999-4d1c-9227-4fed811f127d");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultthis.engineName", "free-downloads.net Customized Web Search");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.admin", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.aflt", "babsst");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.appId", "{37EB75F2-7392-4DBE-B5AD-147EC6D7BF5F}");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.autoRvrt", "false");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.dfltLng", "en");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.excTlbr", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.ffxUnstlRst", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.id", "fa1eee7e0000000000000023546b8245");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.instlDay", "16165");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.instlRef", "sst");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.newTab", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.prdct", "buenosearch");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.prtnrId", "buenosearch");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.rvrt", "false");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.smplGrp", "none");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tb_url", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5208");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tlbrId", "base");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.tlbrSrchUrl", "hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5208");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsn", "1.8.28.7");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsnTs", "1.8.28.718:41:18");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.buenosearch.vrsni", "1.8.28.7");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.snipit.askTbInstalled", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.snipit.chromeURL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101787&gct=&gc=1&q={searchTerms}&crm=1");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.zonealarm.hmpgUrl", "hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=EN&gu=267f1ceadb7f413f9333162d9bf38183&tu=10GXy00Hd2D33N0&sku=&tstsId=&ver=&");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.zonealarm.lastB", "hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=EN&gu=267f1ceadb7f413f9333162d9bf38183&tu=10GXy00Hd2D33N0&sku=&tstsId=&ver=&");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.zonealarm.newTabUrl", "hxxp://search.zonealarm.com/?src=nt&tbid=HFA5&Lan=EN&gu=267f1ceadb7f413f9333162d9bf38183&tu=10GXy00Hd2D33N0&sku=&tstsId=&ver=&");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("extensions.zonealarm.tlbrSrchUrl", "hxxp://search.zonealarm.com/search?src=tb&tbid=HFA5&Lan={dfltLng}&gu=267f1ceadb7f413f9333162d9bf38183&tu=10GXy00Hd2D33N0&sku=&tstsId=&ver=&&q=");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.allowSendURL", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.engineVerified", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.firstTbRun", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.geolastmodified", 1009839857);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.history", "%C5%A1koda%20130%20rsarma%20cold%20war%20assault%20%C4%8De%C5%A1tinaseznamivan%20fi%C5%A1erazeroschiftsimcity%204%20realism%20modgoogle%20prekladackombaj[...]
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.icqgeo", 42);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.installTime", "1343332438");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_most_visited_state", "1");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_recently_closed_state", "1");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.newtab_state", "1");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.numberOfSearches", 0);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.previousFFVersion", "30.0");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.skip_default_search", "no");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.suggestions", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uninstStatSent", true);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.uniqueID", "123402785912340278531234038391290");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.usageStatstTimestamp", 1009839859);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherHideClicks", 0);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherRedeemClicks", 0);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.voucherWasShown", 0);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlEnableSuggestions", false);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("icqtoolbar.xmlLanguage", "cs");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("plugin.state.npconduitfirefoxplugin", 2);
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2438727&q=");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("smartbar.machineId", "GXNFEZNCP4C2ZJQNEYXPR7EM4GTMRJXWSHYSZT+NUGM6+/LYP2TWX3+QEAUZM9G2FK0WLNBT7OZK8BXIWIQLLQ");
[yvuwkn32.default\prefs.js] - Line Deleted : user_pref("smartbar.searchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2438727&q=");

-\\ Google Chrome v

[C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=icq-fx-plug
[C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&st=kwd&ptb=194D27CC-F08F-4B45-81F0-5799DD60AB17&n=77fd2edd&ind=2013081309&p2=^ZJ^xpt304^YYA^cz
[C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5208
[C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.buenosearch.com/?q={searchTerms}&ba ... 3&tsp=5208

*************************

AdwCleaner[R0].txt - [25016 octets] - [25/01/2015 01:51:35]
AdwCleaner[S0].txt - [26443 octets] - [25/01/2015 01:53:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [26504 octets] ##########

#4 Příspěvek od **Rudy** » 25 led 2015 10:41

Dejte nový log RSIT.

HANS55 · #5 Příspěvek od **HANS55** » 25 led 2015 13:55

Po dnešním prvním zapnutí byl PC uplně vykolejenej, až mě to vyděsilo, nešel ani internet. Po restartu se to nějak stabilizovalo.
Zde nový log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2015-01-25 13:16:59
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 14 GB (14%) free of 100 GB
Total RAM: 3326 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:24:10, on 25.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\AASP\1.00.65\aaCenter.exe
C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\Alwil Software\Avast5\avastui.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe
C:\Users\Uzivatel\Desktop\RSIT.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\SUPERAntiSpyware\SSUPDATE.EXE
C:\Program Files\trend micro\Uzivatel.exe
C:\Windows\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5208
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - (no CLSID) - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate1c9f9ca8679c5b5) (gupdate1c9f9ca8679c5b5) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\System32\ssins.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe

--
End of file - 7071 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job - C:\Users\Uzivatel\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job - C:\Users\Uzivatel\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GlaryInitialize.job - C:\Program Files\Glary Utilities\initialize.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job - C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job - C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0, {7b13ec3e-999a-4b70-b9cb-2617b8323822}:3.3.3.2, wrc@avast.com:7.0.1426, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.257 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\Windows\system32\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\extensions\
iobitascsurfingprotection@iobit.com
{20a82645-c095-46ed-80e3-08825760534b}
{ecdee021-0d17-467f-a1ff-c7a115230949}(317)

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\
icq-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-01-21 752960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-12-29 362928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Softwar [2013-04-14 40]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-12-29 59824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2014-12-29 6688472]
"AvastUI.exe"=C:\Program Files\Alwil Softwar [2013-04-14 40]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-30 642304]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2014-08-13 137352]
"IObit Malware Fighter"=C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-12-24 6699800]
"Advanced SystemCare 8"=C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2014-12-10 2427680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
c:\windows\ehome\ehtray.exe [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
C:\Windows\windowsmobile\wmdsync.exe [2008-01-21 215552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.xvid"=xvid.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.DIVX"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-25 01:51:29 ----D---- C:\AdwCleaner
2015-01-24 18:28:42 ----D---- C:\rsit
2015-01-18 21:52:28 ----D---- C:\Program Files\GIANTS Software
2015-01-17 17:21:06 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2015-01-17 17:16:35 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2015-01-17 17:16:27 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2015-01-14 18:16:49 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 17:55:30 ----A---- C:\Windows\system32\profsvc.dll
2015-01-09 21:34:42 ----D---- C:\Program Files\Farming Simulator 2013
2014-12-29 21:54:28 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-29 21:50:53 ----D---- C:\Program Files\Farming Simulator 2015
2014-12-29 17:02:57 ----D---- C:\Program Files\CheckPoint
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files\Java
2014-12-29 15:45:21 ----A---- C:\Windows\system32\npdeployJava1.dll
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaws.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaw.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\java.exe
2014-12-29 15:45:11 ----D---- C:\Program Files\Java
2014-12-29 15:44:16 ----ASH---- C:\ProgramData\desktop.ini
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesLib.dll
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesGUILib.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tosade.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\TepeqAPO.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo2.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SStudio.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSWOW.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSXT.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSHD.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSHP360.dll
2014-12-29 15:41:55 ----A---- C:\Windows\system32\sltech32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slprp32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slcnt32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\sl3apo32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFNHK.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFCOM.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFAPO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-12-29 15:41:52 ----A---- C:\Windows\system32\RtkPgExt.dll
2014-12-29 15:41:52 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoLDR.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoInstII.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkApoApi.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEP32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEL32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEG32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEED32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DHT32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DAA32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-12-29 15:41:48 ----A---- C:\Windows\system32\RltkAPO.dll
2014-12-29 15:41:47 ----A---- C:\Windows\system32\RCoRes.dat
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEP32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEL32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEG32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EED32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEA32A.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\MISS_APO.dll
2014-12-29 15:41:44 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-12-29 15:41:43 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxAudioVnN.dll
2014-12-29 15:41:41 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\KAAPORT.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\ICEsoundAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\FMAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPP32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPO32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPD32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPA32.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\audioLibVc.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTARen.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTACap.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AcpiServiceVnA.dll
2014-12-29 15:40:47 ----A---- C:\Windows\system32\drivers\AtihdLH3.sys
2014-12-29 15:40:14 ----A---- C:\Windows\system32\drivers\jraid.sys
2014-12-29 15:35:31 ----A---- C:\Windows\system32\drivers\L1E60x86.sys
2014-12-29 14:38:59 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS

======List of files/folders modified in the last 1 month======

2015-01-25 13:23:34 ----D---- C:\Program Files\trend micro
2015-01-25 13:23:19 ----D---- C:\Windows\Temp
2015-01-25 13:17:04 ----D---- C:\Windows\Prefetch
2015-01-25 01:59:43 ----D---- C:\Program Files\SUPERAntiSpyware
2015-01-25 01:55:56 ----D---- C:\Windows
2015-01-25 01:53:45 ----D---- C:\Windows\system32\drivers
2015-01-25 01:53:45 ----D---- C:\ProgramData
2015-01-25 01:53:33 ----D---- C:\Users\Uzivatel\AppData\Roaming\CheckPoint
2015-01-25 01:53:30 ----RD---- C:\Program Files
2015-01-25 01:53:30 ----D---- C:\ProgramData\ICQ
2015-01-25 01:52:15 ----D---- C:\Windows\inf
2015-01-25 01:52:15 ----AD---- C:\Windows\System32
2015-01-25 01:52:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-24 13:09:21 ----SHD---- C:\System Volume Information
2015-01-23 14:56:28 ----D---- C:\Windows\SoftwareDistribution
2015-01-23 14:54:55 ----D---- C:\Windows\system32\catroot2
2015-01-23 14:53:20 ----D---- C:\Windows\Debug
2015-01-23 12:51:59 ----D---- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
2015-01-21 18:12:45 ----D---- C:\ProgramData\ProductData
2015-01-21 18:12:25 ----D---- C:\Windows\system32\Tasks
2015-01-21 18:10:58 ----D---- C:\Program Files\IObit
2015-01-17 17:20:00 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-01-17 17:16:29 ----D---- C:\ProgramData\IObit
2015-01-17 17:16:26 ----D---- C:\Users\Uzivatel\AppData\Roaming\IObit
2015-01-14 18:16:52 ----D---- C:\Windows\winsxs
2015-01-14 18:16:52 ----D---- C:\Windows\system32\catroot
2015-01-14 18:16:48 ----D---- C:\Windows\system32\MRT
2015-01-14 17:56:25 ----A---- C:\Windows\system32\mrt.exe
2015-01-10 18:21:53 ----D---- C:\Windows\Logs
2015-01-10 18:21:49 ----D---- C:\Program Files\Steam
2015-01-09 19:51:24 ----D---- C:\Program Files\Common Files\Steam
2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-29 18:45:28 ----D---- C:\Windows\Microsoft.NET
2014-12-29 17:30:22 ----D---- C:\Windows\Minidump
2014-12-29 17:06:56 ----SHD---- C:\Windows\Installer
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files
2014-12-29 15:45:13 ----A---- C:\Windows\system32\deployJava1.dll
2014-12-29 15:44:56 ----D---- C:\Program Files\Mozilla Firefox
2014-12-29 15:43:40 ----D---- C:\Windows\system32\RTCOM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-24 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-24 206248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2014-12-29 106296]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-01-25 721904]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-12-24 55240]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-24 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-24 423784]
R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-12-24 57928]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2014-12-29 23840]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\Windows\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-08-13 456088]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-24 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-24 70384]
R3 3xHybrid;3xHybrid service; C:\Windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdLH3.sys [2014-12-29 75776]
R3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [2013-03-23 21480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-12-29 3086040]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2014-12-29 54824]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-10-18 7680]
R3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [2013-11-19 32288]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [2013-11-19 20944]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2009-01-13 19336]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2009-01-13 49160]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
S3 awzscd7t;awzscd7t; C:\Windows\system32\drivers\awzscd7t.sys []
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 cpuz137;cpuz137; \??\C:\Users\Uzivatel\AppData\Local\Temp\cpuz137\cpuz137_x32.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-01-08 36608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-04-17 25280]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-09-08 47360]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2007-10-25 5632]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-11 31616]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2009-01-13 29192]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2009-01-13 31240]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2009-01-13 14728]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-12-24 142648]
R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-04 815392]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 217088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Softwar [2013-04-14 40]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2014-08-13 3596752]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 ZAPrivacyService;ZoneAlarm Privacy Service; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [2014-08-13 96272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate1c9f9ca8679c5b5;Služba Google Update (gupdate1c9f9ca8679c5b5); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-12-10 2631456]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-17 267440]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 ssinstall;SInstalátor; C:\Windows\System32\ssins.exe [2014-05-14 2324216]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#6 Příspěvek od **Rudy** » 25 led 2015 16:59

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3868313945-1240060992-1829608889-1000UA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

HANS55 · #7 Příspěvek od **HANS55** » 25 led 2015 17:48

Provedeno dle pokynů, ale před koncem akce se aplikace sekla a musel jsem vypnout přes správce souborů, poté restart. Snad oprava proběhla správně, visí mi na ploše dva konfig. soubory "desktop.ini".

Zde log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2015-01-25 17:40:43
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 12 GB (12%) free of 100 GB
Total RAM: 3326 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:41:19, on 25.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\Alwil Software\Avast5\avastui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
C:\Program Files\ASUS\AASP\1.00.65\aaCenter.exe
C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\Uzivatel\Desktop\RSIT.exe
C:\Program Files\trend micro\Uzivatel.exe
C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5208
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] "C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User 'Default user')
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - (no CLSID) - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) - IObit - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate1c9f9ca8679c5b5) (gupdate1c9f9ca8679c5b5) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\System32\ssins.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe

--
End of file - 6764 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GlaryInitialize.job - C:\Program Files\Glary Utilities\initialize.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{800b5000-a755-47e1-992b-48a1c1357f07}:1.1.7, {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11, {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {7AB6D133-2A14-4C11-B3AD-35B1548D38F9}:1.0, {7b13ec3e-999a-4b70-b9cb-2617b8323822}:3.3.3.2, wrc@avast.com:7.0.1426, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.257 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_45]
"Description"=
"Path"=C:\Windows\system32\npdeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\extensions\
iobitascsurfingprotection@iobit.com
{20a82645-c095-46ed-80e3-08825760534b}
{ecdee021-0d17-467f-a1ff-c7a115230949}(317)

C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\yvuwkn32.default\searchplugins\
icq-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-01-21 752960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2014-12-29 362928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Softwar [2013-04-14 40]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2014-12-29 59824]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2014-12-29 6688472]
"AvastUI.exe"=C:\Program Files\Alwil Softwar [2013-04-14 40]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-30 642304]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2014-08-13 137352]
"IObit Malware Fighter"=C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [2014-10-13 1802048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-12-24 6699800]
"Advanced SystemCare 8"=C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2014-12-10 2427680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
c:\windows\ehome\ehtray.exe [2008-01-21 125952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
C:\Windows\windowsmobile\wmdsync.exe [2008-01-21 215552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.xvid"=xvid.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MP43"=MPG4c32.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.DIVX"=DivX.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-25 17:25:03 ----D---- C:\_OTM
2015-01-25 01:51:29 ----D---- C:\AdwCleaner
2015-01-24 18:28:42 ----D---- C:\rsit
2015-01-18 21:52:28 ----D---- C:\Program Files\GIANTS Software
2015-01-17 17:21:06 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2015-01-17 17:16:35 ----A---- C:\Windows\system32\IObitSmartDefragExtension.dll
2015-01-17 17:16:27 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2015-01-14 18:16:49 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\nlaapi.dll
2015-01-14 17:55:50 ----A---- C:\Windows\system32\ncsi.dll
2015-01-14 17:55:30 ----A---- C:\Windows\system32\profsvc.dll
2015-01-09 21:34:42 ----D---- C:\Program Files\Farming Simulator 2013
2014-12-29 21:54:28 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-29 21:50:53 ----D---- C:\Program Files\Farming Simulator 2015
2014-12-29 17:02:57 ----D---- C:\Program Files\CheckPoint
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files\Java
2014-12-29 15:45:21 ----A---- C:\Windows\system32\npdeployJava1.dll
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaws.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\javaw.exe
2014-12-29 15:45:21 ----A---- C:\Windows\system32\java.exe
2014-12-29 15:45:11 ----D---- C:\Program Files\Java
2014-12-29 15:44:16 ----ASH---- C:\ProgramData\desktop.ini
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesLib.dll
2014-12-29 15:41:57 ----A---- C:\Windows\system32\WavesGUILib.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tosade.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\TepeqAPO.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo2.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\tadefxapo.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SStudio.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSWOW.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSXT.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSTSHD.dll
2014-12-29 15:41:56 ----A---- C:\Windows\system32\SRSHP360.dll
2014-12-29 15:41:55 ----A---- C:\Windows\system32\sltech32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slprp32.dll
2014-12-29 15:41:54 ----A---- C:\Windows\system32\slcnt32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\sl3apo32.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFNHK.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFCOM.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\SFAPO.dll
2014-12-29 15:41:53 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-12-29 15:41:52 ----A---- C:\Windows\system32\RtkPgExt.dll
2014-12-29 15:41:52 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoLDR.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkCoInstII.dll
2014-12-29 15:41:51 ----A---- C:\Windows\system32\RtkApoApi.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEP32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEL32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEEG32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RTEED32A.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DHT32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\RP3DAA32.dll
2014-12-29 15:41:49 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-12-29 15:41:48 ----A---- C:\Windows\system32\RltkAPO.dll
2014-12-29 15:41:47 ----A---- C:\Windows\system32\RCoRes.dat
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEP32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEL32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEG32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EED32A.dll
2014-12-29 15:41:46 ----A---- C:\Windows\system32\R4EEA32A.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-12-29 15:41:45 ----A---- C:\Windows\system32\MISS_APO.dll
2014-12-29 15:41:44 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-12-29 15:41:43 ----A---- C:\Windows\system32\MaxxVoiceAPO30.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxVoiceAPO20.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxSpeechAPO.dll
2014-12-29 15:41:42 ----A---- C:\Windows\system32\MaxxAudioVnN.dll
2014-12-29 15:41:41 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2014-12-29 15:41:40 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2014-12-29 15:41:39 ----A---- C:\Windows\system32\MaxxAudioAPO60.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\KAAPORT.dll
2014-12-29 15:41:38 ----A---- C:\Windows\system32\ICEsoundAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\FMAPO.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2014-12-29 15:41:35 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2014-12-29 15:41:34 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPP32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPO32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPD32A.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\DDPA32.dll
2014-12-29 15:41:33 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\audioLibVc.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTARen.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AERTACap.dll
2014-12-29 15:41:32 ----A---- C:\Windows\system32\AcpiServiceVnA.dll
2014-12-29 15:40:47 ----A---- C:\Windows\system32\drivers\AtihdLH3.sys
2014-12-29 15:40:14 ----A---- C:\Windows\system32\drivers\jraid.sys
2014-12-29 15:35:31 ----A---- C:\Windows\system32\drivers\L1E60x86.sys
2014-12-29 14:38:59 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS

======List of files/folders modified in the last 1 month======

2015-01-25 17:41:18 ----D---- C:\Windows\Temp
2015-01-25 17:40:46 ----D---- C:\Program Files\trend micro
2015-01-25 17:39:04 ----D---- C:\Program Files\SUPERAntiSpyware
2015-01-25 17:38:53 ----D---- C:\Windows\Prefetch
2015-01-25 17:25:13 ----D---- C:\Windows\Tasks
2015-01-25 15:26:30 ----SHD---- C:\System Volume Information
2015-01-25 01:55:56 ----D---- C:\Windows
2015-01-25 01:53:45 ----D---- C:\Windows\system32\drivers
2015-01-25 01:53:45 ----D---- C:\ProgramData
2015-01-25 01:53:33 ----D---- C:\Users\Uzivatel\AppData\Roaming\CheckPoint
2015-01-25 01:53:30 ----RD---- C:\Program Files
2015-01-25 01:53:30 ----D---- C:\ProgramData\ICQ
2015-01-25 01:52:15 ----D---- C:\Windows\inf
2015-01-25 01:52:15 ----AD---- C:\Windows\System32
2015-01-25 01:52:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-23 14:56:28 ----D---- C:\Windows\SoftwareDistribution
2015-01-23 14:54:55 ----D---- C:\Windows\system32\catroot2
2015-01-23 14:53:20 ----D---- C:\Windows\Debug
2015-01-23 12:51:59 ----D---- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
2015-01-21 18:12:45 ----D---- C:\ProgramData\ProductData
2015-01-21 18:12:25 ----D---- C:\Windows\system32\Tasks
2015-01-21 18:10:58 ----D---- C:\Program Files\IObit
2015-01-17 17:20:00 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-01-17 17:16:29 ----D---- C:\ProgramData\IObit
2015-01-17 17:16:26 ----D---- C:\Users\Uzivatel\AppData\Roaming\IObit
2015-01-14 18:16:52 ----D---- C:\Windows\winsxs
2015-01-14 18:16:52 ----D---- C:\Windows\system32\catroot
2015-01-14 18:16:48 ----D---- C:\Windows\system32\MRT
2015-01-14 17:56:25 ----A---- C:\Windows\system32\mrt.exe
2015-01-10 18:21:53 ----D---- C:\Windows\Logs
2015-01-10 18:21:49 ----D---- C:\Program Files\Steam
2015-01-09 19:51:24 ----D---- C:\Program Files\Common Files\Steam
2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-12-29 18:45:28 ----D---- C:\Windows\Microsoft.NET
2014-12-29 17:30:22 ----D---- C:\Windows\Minidump
2014-12-29 17:06:56 ----SHD---- C:\Windows\Installer
2014-12-29 15:45:29 ----D---- C:\Program Files\Common Files
2014-12-29 15:45:13 ----A---- C:\Windows\system32\deployJava1.dll
2014-12-29 15:44:56 ----D---- C:\Program Files\Mozilla Firefox
2014-12-29 15:43:40 ----D---- C:\Windows\system32\RTCOM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-24 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-24 206248]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2014-12-29 106296]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2014-06-04 18624]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-01-25 721904]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2014-12-24 55240]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-24 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-24 423784]
R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2014-12-24 57928]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2014-12-29 23840]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2008-10-31 270888]
R1 sbhips;Sunbelt HIPS Driver; C:\Windows\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-08-13 456088]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-24 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-24 70384]
R3 3xHybrid;3xHybrid service; C:\Windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 290304]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdLH3.sys [2014-12-29 75776]
R3 FileMonitor;FileMonitor; \??\C:\Program Files\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys [2013-03-23 21480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-12-29 3086040]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2014-12-29 54824]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2006-10-18 7680]
R3 RegFilter;RegFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\regfilter.sys [2013-11-19 32288]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 UrlFilter;UrlFilter; \??\C:\Program Files\IObit\IObit Malware Fighter\drivers\wlh_x86\UrlFilter.sys [2013-11-19 20944]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2009-01-13 19336]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2009-01-13 49160]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 a9mosfsu;a9mosfsu; C:\Windows\system32\drivers\a9mosfsu.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 cpuz137;cpuz137; \??\C:\Users\Uzivatel\AppData\Local\Temp\cpuz137\cpuz137_x32.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-01-08 36608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-04-17 25280]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-09-08 47360]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2007-10-25 5632]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-11 31616]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2009-01-13 29192]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2009-01-13 31240]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2009-01-13 14728]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-12-24 142648]
R2 AdvancedSystemCareService8;Advanced SystemCare Service 8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [2014-11-04 815392]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 217088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Softwar [2013-04-14 40]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 IMFservice;IMF Service; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [2014-09-30 344896]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2014-08-13 3596752]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R2 ZAPrivacyService;ZoneAlarm Privacy Service; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [2014-08-13 96272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate1c9f9ca8679c5b5;Služba Google Update (gupdate1c9f9ca8679c5b5); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-12-10 2631456]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-17 267440]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21 107912]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-06-09 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-06 119408]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 ssinstall;SInstalátor; C:\Windows\System32\ssins.exe [2014-05-14 2324216]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-09-23 833728]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#8 Příspěvek od **Rudy** » 25 led 2015 18:39

Dvouklikem na soubor C:\Program Files\trend micro\Uzivatel.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 3&tsp=5208

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Doporučuji odinstalovat AdvancedSystemCare. Důvod: http://forum.viry.cz/viewtopic.php?f=14 ... ilit=iobit .

HANS55 · #9 Příspěvek od **HANS55** » 25 led 2015 19:28

O.K. uklizeno, jestě odinstaluju produkty od IObit. Takže kombinace Avast-SUPERAntiSpyware-ZoneAlarm by měla stačit pro běžné použití ?

#10 Příspěvek od **Rudy** » 25 led 2015 20:16

HANS55 píše:....Takže kombinace Avast-SUPERAntiSpyware-ZoneAlarm by měla stačit pro běžné použití ?

Pro home použití určitě.

HANS55 · #11 Příspěvek od **HANS55** » 27 led 2015 11:26

O.K. zatím vypadá, že vše funguje jak má, takže díky za drahocenou pomoc a přeju mnoho zdaru.

#12 Příspěvek od **Rudy** » 27 led 2015 17:18

Hodně zdaru i vám a nemáte zač!

VIRY.CZ

Kontrola-pomalý internet

Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet

Re: Kontrola-pomalý internet