Čau potřeboval bych poradit mám v NTB asi nějaká malware který mi v prohlížeči pořád otvírá nějaké reklamy šlo by stím něco udělat? Dík moc
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dj at 2015-02-11 14:46:11
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 160 GB (53%) free of 305 GB
Total RAM: 4029 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:46:22, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Users\Dj\AppData\Roaming\ICQM\icq.exe
C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Users\Dj\AppData\Local\Temp\~nsu.tmp\Au_.exe
C:\Program Files\trend micro\Dj.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.creativetoolbars.com/?src ... martbar&g=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [CloudSystemBooster] "C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.7\ViProtocol.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Anvi Cloud System Booster Speed Service (AnviCsbSvc) - Anvisoft - C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.1.7 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10190 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\Windows\system32\conhost.exe "-6883705931436266096-1975929020-294800378-1692834231419421847-821511909356584213
WLIDSvcM.exe 2344
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{8B22A929-C3BC-4C31-9863-8A2ED0BD6575}
{60108D86-AC76-427E-A800-A6E6069473F6}
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Users\Dj\AppData\Roaming\ICQM\icq.exe"
"C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASD2Srv.exe" --service
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe"
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /guide
"taskhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5108.19092620.265868651 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5108 "\\.\pipe\gecko-crash-server-pipe.5108" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --proxy-stub-channel=Flash5004.63256220.8473 --host-broker-channel=Flash5004.63256220.22152 --host-pid=5004 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --channel=6084.0034F6F0.1663283682 --proxy-stub-channel=Flash5004.63256220.8473 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --host-npapi-version=27 --type=renderer
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 29560DFA-1C39-B713-A49F-9AC5DD2E6917 -Reinvoke
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe84_ Global\UsGthrCtrlFltPipeMssGthrPipe84 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\SysWOW64\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"C:\Users\Dj\AppData\Local\Temp\~nsu.tmp\Au_.exe" _?=C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\
"C:\Users\Dj\Downloads\RSITx64(1).exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.7\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\extensions\
ossen@yandex.ru
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-11 553896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-09 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-11 211880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-09 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-14 1814312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-29 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-05-29 387640]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-05-29 418360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2014-08-20 527544]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-05-29 272384]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\Windows\NOTEPAD.EXE %1
======List of files/folders created in the last 1 month======
2015-02-11 13:23:38 ----D---- C:\ProgramData\boost_interprocess
2015-02-11 13:21:59 ----A---- C:\Windows\system32\drivers\asd2fsm.sys
2015-02-11 13:21:51 ----D---- C:\ProgramData\Anvisoft
2015-02-11 13:21:41 ----D---- C:\Program Files (x86)\Anvisoft
2015-02-11 07:18:54 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 07:18:51 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 07:18:50 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 07:18:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 07:18:44 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 07:18:42 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 07:18:28 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 07:18:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 07:18:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 07:18:23 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 07:18:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 07:18:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 07:18:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 07:18:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 07:18:20 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 07:18:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 07:18:17 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 07:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 07:18:13 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 07:18:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 07:18:08 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 07:17:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 07:17:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 07:17:30 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 07:17:28 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 07:17:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 07:17:27 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 07:16:13 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 07:16:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 07:16:11 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 07:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 07:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 07:16:05 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 07:16:05 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 07:15:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 07:15:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 07:15:50 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 07:15:47 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 07:15:47 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 07:15:45 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 07:15:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 07:15:17 ----A---- C:\Windows\system32\win32k.sys
2015-02-07 17:18:53 ----D---- C:\Users\Dj\AppData\Roaming\MailUpdate
2015-01-26 19:21:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 06:30:02 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 06:29:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 06:29:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys
======List of files/folders modified in the last 1 month======
2015-02-11 14:46:19 ----D---- C:\Program Files\trend micro
2015-02-11 14:46:18 ----D---- C:\Windows\Temp
2015-02-11 14:46:08 ----D---- C:\Windows\system32\Tasks
2015-02-11 14:46:03 ----D---- C:\Windows\inf
2015-02-11 14:32:11 ----SHD---- C:\System Volume Information
2015-02-11 14:31:22 ----D---- C:\Windows\Panther
2015-02-11 14:31:22 ----D---- C:\Windows\debug
2015-02-11 14:31:22 ----D---- C:\Windows
2015-02-11 14:25:01 ----D---- C:\Windows\system32\catroot2
2015-02-11 13:23:38 ----D---- C:\ProgramData
2015-02-11 13:23:30 ----D---- C:\Windows\system32\drivers
2015-02-11 13:23:22 ----D---- C:\Windows\system32\DriverStore
2015-02-11 13:21:41 ----RD---- C:\Program Files (x86)
2015-02-11 10:57:47 ----D---- C:\Windows\system32\config
2015-02-11 10:16:55 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-11 09:55:58 ----D---- C:\Windows\SysWOW64
2015-02-11 09:55:58 ----D---- C:\Windows\System32
2015-02-11 08:43:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 08:42:03 ----D---- C:\Program Files (x86)\AviSynth 2.5
2015-02-11 08:41:39 ----D---- C:\Program Files (x86)\AVerMedia
2015-02-11 08:41:31 ----D---- C:\Windows\Driver Cache
2015-02-11 08:33:31 ----D---- C:\Windows\winsxs
2015-02-11 08:30:30 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 08:30:30 ----D---- C:\Windows\system32\appraiser
2015-02-11 08:30:29 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Program Files\Internet Explorer
2015-02-11 08:30:26 ----D---- C:\Windows\system32\en-US
2015-02-11 08:30:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 08:30:20 ----D---- C:\Windows\PolicyDefinitions
2015-02-11 07:21:29 ----SHD---- C:\Windows\Installer
2015-02-11 07:21:27 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 07:14:48 ----D---- C:\Windows\system32\catroot
2015-02-11 06:55:16 ----D---- C:\Windows\Tasks
2015-02-08 09:39:08 ----D---- C:\Users\Dj\AppData\Roaming\vlc
2015-02-07 23:19:45 ----D---- C:\Program Files (x86)\globalUpdate
2015-02-07 18:36:40 ----D---- C:\Program Files (x86)\Common Files
2015-02-07 18:34:48 ----D---- C:\Program Files (x86)\All Video Fixer
2015-02-07 18:34:09 ----D---- C:\Program Files (x86)\GPS Utility
2015-02-07 17:27:45 ----A---- C:\Windows\win.ini
2015-02-07 08:31:47 ----D---- C:\Program Files (x86)\ProFact 3.0 Free
2015-02-06 10:58:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-29 13:00:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-27 08:10:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 09:25:07 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-19 09:24:16 ----RSD---- C:\Windows\Fonts
2015-01-19 09:24:15 ----D---- C:\Users\Dj\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-09 208416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-09 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-09 423240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\dddskx64.sys [2009-02-12 26024]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-09 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-09 85328]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-20 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-29 10629408]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-14 286768]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 e1edc438-f640-4184-a443-d2a7c37a01dc;ASUS home made driver; \??\E:\aktivace1\690b33e1-0462-4e84-9bea-c7552b45432a.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-12-31 225920]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-09-23 144496]
S3 JME;JMicron Ethernet Adapter NDIS6 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-07-14 97632]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys [2012-09-22 35344]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 ubloxusb;ubloxusb; C:\Windows\system32\DRIVERS\ubloxusb.sys [2009-11-27 95232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2014-08-20 42680]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-09 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2013-06-26 368640]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-03-14 346976]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R2 vToolbarUpdater18.1.7;vToolbarUpdater18.1.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.7\ToolbarUpdater.exe [2014-06-03 1808408]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-11-01 657504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-04-30 1716264]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-04-30 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-02-20 1255736]
S3 wifimansvc;Wifi Man Service; C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe [2012-11-10 605696]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
vyskakovací reklamy v prohlížeči
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
zde je
# AdwCleaner v4.110 - Logfile created 11/02/2015 at 18:26:47
# Updated 05/02/2015 by Xplode
# Database : 2015-02-09.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Dj - DJ-PC
# Running from : C:\Users\Dj\Downloads\adwcleaner_4.110.exe
# Option : Cleaning
***** [ Services ] *****
Service Deleted : vToolbarUpdater18.1.7
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\Program Files (x86)\AtuZi
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\SiteLookup
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files\PCDApp
Folder Deleted : C:\Users\Dj\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dj\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Dj\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dj\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Dj\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Dj\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Dj\AppData\Roaming\MailUpdate
Folder Deleted : C:\Users\Dj\Documents\Updater
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{142695B6-7CD7-432C-BC4D-7FED5DF7CDAB}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CSELITE65_is1
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17631
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v35.0.1 (x86 cs)
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.crossrider.bic", "14b64d6035e822349f4d08bf82748b25");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.admin", false);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.aflt", "orgnl");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.appId", "{C5E5951A-4ADD-4402-8A8E-EF97DCB9D8EC}");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.autoRvrt", "false");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dfltLng", "");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dfltSrch", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dnsErr", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.excTlbr", false);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hmpg", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hmpgUrl", "hxxp://search.creativetoolbars.com/?src=hp&id=smartbar&g=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hpOld0", "hxxps://www.facebook.com/");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.id", "70fe78c3000000000000001060d1f337");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.instlDay", "16226");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.instlRef", "");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.kw_url", "hxxp://search.creativetoolbars.com/results?src=tb&id=smartbar&g=&q=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.newTab", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.newTabUrl", "hxxp://search.creativetoolbars.com/?src=nt&id=smartbar&g=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.prdct", "smartbar");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.prtnrId", "bechiro");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.rvrt", "false");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.smplGrp", "mm");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.srchPrvdr", "Search the web (CT)");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.tlbrId", "smartbar");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.tlbrSrchUrl", "hxxp://search.creativetoolbars.com/results?src=tb&id=smartbar&g=&q=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsn", "1.8.8.12");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsnTs", "1.8.8.1220:55:10");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsni", "1.8.8.12");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "safepcrepair@mindspark.com");
-\\ Google Chrome v40.0.2214.111
*************************
AdwCleaner[R0].txt - [9775 bytes] - [11/02/2015 18:23:46]
AdwCleaner[S0].txt - [9813 bytes] - [11/02/2015 18:26:47]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9872 bytes] ##########
# AdwCleaner v4.110 - Logfile created 11/02/2015 at 18:26:47
# Updated 05/02/2015 by Xplode
# Database : 2015-02-09.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Dj - DJ-PC
# Running from : C:\Users\Dj\Downloads\adwcleaner_4.110.exe
# Option : Cleaning
***** [ Services ] *****
Service Deleted : vToolbarUpdater18.1.7
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\Program Files (x86)\AtuZi
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\SiteLookup
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files\PCDApp
Folder Deleted : C:\Users\Dj\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dj\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Dj\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dj\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Dj\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Dj\AppData\Roaming\pdfforge
Folder Deleted : C:\Users\Dj\AppData\Roaming\MailUpdate
Folder Deleted : C:\Users\Dj\Documents\Updater
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{142695B6-7CD7-432C-BC4D-7FED5DF7CDAB}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKLM\SOFTWARE\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\ParetoLogic
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CSELITE65_is1
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17631
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v35.0.1 (x86 cs)
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.crossrider.bic", "14b64d6035e822349f4d08bf82748b25");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.admin", false);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.aflt", "orgnl");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.appId", "{C5E5951A-4ADD-4402-8A8E-EF97DCB9D8EC}");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.autoRvrt", "false");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dfltLng", "");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dfltSrch", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.dnsErr", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.excTlbr", false);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hmpg", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hmpgUrl", "hxxp://search.creativetoolbars.com/?src=hp&id=smartbar&g=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.hpOld0", "hxxps://www.facebook.com/");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.id", "70fe78c3000000000000001060d1f337");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.instlDay", "16226");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.instlRef", "");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.kw_url", "hxxp://search.creativetoolbars.com/results?src=tb&id=smartbar&g=&q=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.newTab", true);
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.newTabUrl", "hxxp://search.creativetoolbars.com/?src=nt&id=smartbar&g=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.prdct", "smartbar");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.prtnrId", "bechiro");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.rvrt", "false");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.smplGrp", "mm");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.srchPrvdr", "Search the web (CT)");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.tlbrId", "smartbar");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.tlbrSrchUrl", "hxxp://search.creativetoolbars.com/results?src=tb&id=smartbar&g=&q=");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsn", "1.8.8.12");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsnTs", "1.8.8.1220:55:10");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.smartbar.vrsni", "1.8.8.12");
[nz7jivsb.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "safepcrepair@mindspark.com");
-\\ Google Chrome v40.0.2214.111
*************************
AdwCleaner[R0].txt - [9775 bytes] - [11/02/2015 18:23:46]
AdwCleaner[S0].txt - [9813 bytes] - [11/02/2015 18:26:47]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9872 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
zde
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dj at 2015-02-11 19:07:03
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 160 GB (53%) free of 305 GB
Total RAM: 4029 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:07:05, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\trend micro\Dj.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [CloudSystemBooster] "C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Anvi Cloud System Booster Speed Service (AnviCsbSvc) - Anvisoft - C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9486 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
WLIDSvcM.exe 2584
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{52E53987-FE48-4CFE-8B4F-A494A7F4F7D4}
{2AA3FEB6-5A95-41B5-A05B-E0A204C906AE}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3680.19a2c580.1461141265 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3680 "\\.\pipe\gecko-crash-server-pipe.3680" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --proxy-stub-channel=Flash4860.68AE6220.28009 --host-broker-channel=Flash4860.68AE6220.7920 --host-pid=4860 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --channel=4900.0032F638.1087315686 --proxy-stub-channel=Flash4860.68AE6220.28009 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Dj\Downloads\RSITx64(1).exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\extensions\
ossen@yandex.ru
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-11 553896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-09 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-11 211880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-09 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-14 1814312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-29 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-05-29 387640]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-05-29 418360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2014-08-20 527544]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-05-29 272384]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\Windows\NOTEPAD.EXE %1
======List of files/folders created in the last 1 month======
2015-02-11 18:23:30 ----D---- C:\AdwCleaner
2015-02-11 13:23:38 ----D---- C:\ProgramData\boost_interprocess
2015-02-11 13:21:59 ----A---- C:\Windows\system32\drivers\asd2fsm.sys
2015-02-11 13:21:51 ----D---- C:\ProgramData\Anvisoft
2015-02-11 13:21:41 ----D---- C:\Program Files (x86)\Anvisoft
2015-02-11 07:18:54 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 07:18:51 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 07:18:50 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 07:18:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 07:18:44 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 07:18:42 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 07:18:28 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 07:18:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 07:18:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 07:18:23 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 07:18:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 07:18:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 07:18:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 07:18:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 07:18:20 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 07:18:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 07:18:17 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 07:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 07:18:13 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 07:18:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 07:18:08 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 07:17:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 07:17:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 07:17:30 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 07:17:28 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 07:17:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 07:17:27 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 07:16:13 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 07:16:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 07:16:11 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 07:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 07:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 07:16:05 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 07:16:05 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 07:15:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 07:15:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 07:15:50 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 07:15:47 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 07:15:47 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 07:15:45 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 07:15:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 07:15:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-26 19:21:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 06:30:02 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 06:29:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 06:29:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys
======List of files/folders modified in the last 1 month======
2015-02-11 19:07:04 ----D---- C:\Windows\Temp
2015-02-11 19:07:04 ----D---- C:\Program Files\trend micro
2015-02-11 18:27:14 ----D---- C:\Windows\system32\config
2015-02-11 18:26:48 ----RD---- C:\Program Files
2015-02-11 18:26:48 ----D---- C:\Program Files (x86)\Common Files
2015-02-11 18:26:47 ----RD---- C:\Program Files (x86)
2015-02-11 18:26:47 ----D---- C:\ProgramData
2015-02-11 18:21:54 ----D---- C:\Windows\rescache
2015-02-11 17:41:59 ----D---- C:\Windows
2015-02-11 14:46:08 ----D---- C:\Windows\system32\Tasks
2015-02-11 14:46:03 ----D---- C:\Windows\inf
2015-02-11 14:32:11 ----SHD---- C:\System Volume Information
2015-02-11 14:31:22 ----D---- C:\Windows\Panther
2015-02-11 14:31:22 ----D---- C:\Windows\debug
2015-02-11 14:25:01 ----D---- C:\Windows\system32\catroot2
2015-02-11 13:23:30 ----D---- C:\Windows\system32\drivers
2015-02-11 13:23:22 ----D---- C:\Windows\system32\DriverStore
2015-02-11 10:16:55 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-11 09:55:58 ----D---- C:\Windows\SysWOW64
2015-02-11 09:55:58 ----D---- C:\Windows\System32
2015-02-11 08:43:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 08:42:03 ----D---- C:\Program Files (x86)\AviSynth 2.5
2015-02-11 08:41:39 ----D---- C:\Program Files (x86)\AVerMedia
2015-02-11 08:41:31 ----D---- C:\Windows\Driver Cache
2015-02-11 08:33:31 ----D---- C:\Windows\winsxs
2015-02-11 08:30:30 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 08:30:30 ----D---- C:\Windows\system32\appraiser
2015-02-11 08:30:29 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Program Files\Internet Explorer
2015-02-11 08:30:26 ----D---- C:\Windows\system32\en-US
2015-02-11 08:30:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 08:30:20 ----D---- C:\Windows\PolicyDefinitions
2015-02-11 07:21:29 ----SHD---- C:\Windows\Installer
2015-02-11 07:21:27 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 07:14:48 ----D---- C:\Windows\system32\catroot
2015-02-11 06:55:16 ----D---- C:\Windows\Tasks
2015-02-08 09:39:08 ----D---- C:\Users\Dj\AppData\Roaming\vlc
2015-02-07 18:34:48 ----D---- C:\Program Files (x86)\All Video Fixer
2015-02-07 18:34:09 ----D---- C:\Program Files (x86)\GPS Utility
2015-02-07 17:27:45 ----A---- C:\Windows\win.ini
2015-02-07 08:31:47 ----D---- C:\Program Files (x86)\ProFact 3.0 Free
2015-02-06 10:58:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-29 13:00:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-27 08:10:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 09:25:07 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-19 09:24:16 ----RSD---- C:\Windows\Fonts
2015-01-19 09:24:15 ----D---- C:\Users\Dj\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-09 208416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-09 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-09 423240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\dddskx64.sys [2009-02-12 26024]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-09 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-09 85328]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-20 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-29 10629408]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-14 286768]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 e1edc438-f640-4184-a443-d2a7c37a01dc;ASUS home made driver; \??\E:\aktivace1\690b33e1-0462-4e84-9bea-c7552b45432a.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-12-31 225920]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-09-23 144496]
S3 JME;JMicron Ethernet Adapter NDIS6 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-07-14 97632]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys [2012-09-22 35344]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 ubloxusb;ubloxusb; C:\Windows\system32\DRIVERS\ubloxusb.sys [2009-11-27 95232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2014-08-20 42680]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-09 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2013-06-26 368640]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-03-14 346976]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-11-01 657504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-04-30 1716264]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-04-30 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-02-20 1255736]
S3 wifimansvc;Wifi Man Service; C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe [2012-11-10 605696]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dj at 2015-02-11 19:07:03
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 160 GB (53%) free of 305 GB
Total RAM: 4029 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:07:05, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\trend micro\Dj.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [CloudSystemBooster] "C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Anvi Cloud System Booster Speed Service (AnviCsbSvc) - Anvisoft - C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9486 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
WLIDSvcM.exe 2584
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{52E53987-FE48-4CFE-8B4F-A494A7F4F7D4}
{2AA3FEB6-5A95-41B5-A05B-E0A204C906AE}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3680.19a2c580.1461141265 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3680 "\\.\pipe\gecko-crash-server-pipe.3680" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --proxy-stub-channel=Flash4860.68AE6220.28009 --host-broker-channel=Flash4860.68AE6220.7920 --host-pid=4860 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --channel=4900.0032F638.1087315686 --proxy-stub-channel=Flash4860.68AE6220.28009 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE"
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Dj\Downloads\RSITx64(1).exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\extensions\
ossen@yandex.ru
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-11 553896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-09 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-11 211880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-09 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-14 1814312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-29 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-05-29 387640]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-05-29 418360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2014-08-20 527544]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-05-29 272384]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\Windows\NOTEPAD.EXE %1
======List of files/folders created in the last 1 month======
2015-02-11 18:23:30 ----D---- C:\AdwCleaner
2015-02-11 13:23:38 ----D---- C:\ProgramData\boost_interprocess
2015-02-11 13:21:59 ----A---- C:\Windows\system32\drivers\asd2fsm.sys
2015-02-11 13:21:51 ----D---- C:\ProgramData\Anvisoft
2015-02-11 13:21:41 ----D---- C:\Program Files (x86)\Anvisoft
2015-02-11 07:18:54 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 07:18:51 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 07:18:50 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 07:18:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 07:18:44 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 07:18:42 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 07:18:28 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 07:18:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 07:18:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 07:18:23 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 07:18:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 07:18:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 07:18:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 07:18:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 07:18:20 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 07:18:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 07:18:17 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 07:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 07:18:13 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 07:18:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 07:18:08 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 07:17:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 07:17:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 07:17:30 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 07:17:28 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 07:17:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 07:17:27 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 07:16:13 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 07:16:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 07:16:11 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 07:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 07:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 07:16:05 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 07:16:05 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 07:15:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 07:15:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 07:15:50 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 07:15:47 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 07:15:47 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 07:15:45 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 07:15:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 07:15:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-26 19:21:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 06:30:02 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 06:29:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 06:29:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys
======List of files/folders modified in the last 1 month======
2015-02-11 19:07:04 ----D---- C:\Windows\Temp
2015-02-11 19:07:04 ----D---- C:\Program Files\trend micro
2015-02-11 18:27:14 ----D---- C:\Windows\system32\config
2015-02-11 18:26:48 ----RD---- C:\Program Files
2015-02-11 18:26:48 ----D---- C:\Program Files (x86)\Common Files
2015-02-11 18:26:47 ----RD---- C:\Program Files (x86)
2015-02-11 18:26:47 ----D---- C:\ProgramData
2015-02-11 18:21:54 ----D---- C:\Windows\rescache
2015-02-11 17:41:59 ----D---- C:\Windows
2015-02-11 14:46:08 ----D---- C:\Windows\system32\Tasks
2015-02-11 14:46:03 ----D---- C:\Windows\inf
2015-02-11 14:32:11 ----SHD---- C:\System Volume Information
2015-02-11 14:31:22 ----D---- C:\Windows\Panther
2015-02-11 14:31:22 ----D---- C:\Windows\debug
2015-02-11 14:25:01 ----D---- C:\Windows\system32\catroot2
2015-02-11 13:23:30 ----D---- C:\Windows\system32\drivers
2015-02-11 13:23:22 ----D---- C:\Windows\system32\DriverStore
2015-02-11 10:16:55 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-11 09:55:58 ----D---- C:\Windows\SysWOW64
2015-02-11 09:55:58 ----D---- C:\Windows\System32
2015-02-11 08:43:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 08:42:03 ----D---- C:\Program Files (x86)\AviSynth 2.5
2015-02-11 08:41:39 ----D---- C:\Program Files (x86)\AVerMedia
2015-02-11 08:41:31 ----D---- C:\Windows\Driver Cache
2015-02-11 08:33:31 ----D---- C:\Windows\winsxs
2015-02-11 08:30:30 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 08:30:30 ----D---- C:\Windows\system32\appraiser
2015-02-11 08:30:29 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Program Files\Internet Explorer
2015-02-11 08:30:26 ----D---- C:\Windows\system32\en-US
2015-02-11 08:30:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 08:30:20 ----D---- C:\Windows\PolicyDefinitions
2015-02-11 07:21:29 ----SHD---- C:\Windows\Installer
2015-02-11 07:21:27 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 07:14:48 ----D---- C:\Windows\system32\catroot
2015-02-11 06:55:16 ----D---- C:\Windows\Tasks
2015-02-08 09:39:08 ----D---- C:\Users\Dj\AppData\Roaming\vlc
2015-02-07 18:34:48 ----D---- C:\Program Files (x86)\All Video Fixer
2015-02-07 18:34:09 ----D---- C:\Program Files (x86)\GPS Utility
2015-02-07 17:27:45 ----A---- C:\Windows\win.ini
2015-02-07 08:31:47 ----D---- C:\Program Files (x86)\ProFact 3.0 Free
2015-02-06 10:58:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-29 13:00:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-27 08:10:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 09:25:07 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-19 09:24:16 ----RSD---- C:\Windows\Fonts
2015-01-19 09:24:15 ----D---- C:\Users\Dj\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-09 208416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-09 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-09 423240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\dddskx64.sys [2009-02-12 26024]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-09 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-09 85328]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-20 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-29 10629408]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-14 286768]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 e1edc438-f640-4184-a443-d2a7c37a01dc;ASUS home made driver; \??\E:\aktivace1\690b33e1-0462-4e84-9bea-c7552b45432a.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-12-31 225920]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-09-23 144496]
S3 JME;JMicron Ethernet Adapter NDIS6 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-07-14 97632]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys [2012-09-22 35344]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 ubloxusb;ubloxusb; C:\Windows\system32\DRIVERS\ubloxusb.sys [2009-11-27 95232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2014-08-20 42680]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-09 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2013-06-26 368640]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-03-14 346976]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-11-01 657504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-04-30 1716264]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-04-30 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-02-20 1255736]
S3 wifimansvc;Wifi Man Service; C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe [2012-11-10 605696]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte Avast a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dj at 2015-02-11 19:52:05
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 160 GB (53%) free of 305 GB
Total RAM: 4029 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:52:10, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Program Files\trend micro\Dj.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [CloudSystemBooster] "C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Anvi Cloud System Booster Speed Service (AnviCsbSvc) - Anvisoft - C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9424 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
taskeng.exe {0E5D5FC8-0292-4E38-92AA-1CE84E0E109A}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2548
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{03E3344E-6B0C-42C9-9363-15F4468B83E6}
{BA94160C-5F94-4C77-A09D-26C285A75889}
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3544.f48d100.640015512 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3544 "\\.\pipe\gecko-crash-server-pipe.3544" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --proxy-stub-channel=Flash4780.66F66220.18058 --host-broker-channel=Flash4780.66F66220.21581 --host-pid=4780 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --channel=4844.0026F450.879952098 --proxy-stub-channel=Flash4780.66F66220.18058 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --host-npapi-version=27 --type=renderer
C:\Windows\system32\sppsvc.exe
"C:\Users\Dj\Downloads\RSITx64(1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\extensions\
ossen@yandex.ru
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-11 553896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-09 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-11 211880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-09 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-14 1814312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-29 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-05-29 387640]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-05-29 418360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2014-08-20 527544]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-05-29 272384]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\Windows\NOTEPAD.EXE %1
======List of files/folders created in the last 1 month======
2015-02-11 19:44:41 ----D---- C:\_OTM
2015-02-11 18:23:30 ----D---- C:\AdwCleaner
2015-02-11 13:23:38 ----D---- C:\ProgramData\boost_interprocess
2015-02-11 13:21:59 ----A---- C:\Windows\system32\drivers\asd2fsm.sys
2015-02-11 13:21:51 ----D---- C:\ProgramData\Anvisoft
2015-02-11 13:21:41 ----D---- C:\Program Files (x86)\Anvisoft
2015-02-11 07:18:54 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 07:18:51 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 07:18:50 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 07:18:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 07:18:44 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 07:18:42 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 07:18:28 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 07:18:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 07:18:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 07:18:23 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 07:18:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 07:18:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 07:18:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 07:18:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 07:18:20 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 07:18:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 07:18:17 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 07:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 07:18:13 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 07:18:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 07:18:08 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 07:17:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 07:17:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 07:17:30 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 07:17:28 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 07:17:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 07:17:27 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 07:16:13 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 07:16:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 07:16:11 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 07:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 07:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 07:16:05 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 07:16:05 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 07:15:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 07:15:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 07:15:50 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 07:15:47 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 07:15:47 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 07:15:45 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 07:15:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 07:15:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-26 19:21:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 06:30:02 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 06:29:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 06:29:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys
======List of files/folders modified in the last 1 month======
2015-02-11 19:52:11 ----D---- C:\Windows\Temp
2015-02-11 19:52:09 ----D---- C:\Program Files\trend micro
2015-02-11 19:48:11 ----D---- C:\Windows\system32\config
2015-02-11 19:44:42 ----D---- C:\Windows\Tasks
2015-02-11 18:26:48 ----RD---- C:\Program Files
2015-02-11 18:26:48 ----D---- C:\Program Files (x86)\Common Files
2015-02-11 18:26:47 ----RD---- C:\Program Files (x86)
2015-02-11 18:26:47 ----D---- C:\ProgramData
2015-02-11 18:21:54 ----D---- C:\Windows\rescache
2015-02-11 17:41:59 ----D---- C:\Windows
2015-02-11 14:46:08 ----D---- C:\Windows\system32\Tasks
2015-02-11 14:46:03 ----D---- C:\Windows\inf
2015-02-11 14:32:11 ----SHD---- C:\System Volume Information
2015-02-11 14:31:22 ----D---- C:\Windows\Panther
2015-02-11 14:31:22 ----D---- C:\Windows\debug
2015-02-11 14:25:01 ----D---- C:\Windows\system32\catroot2
2015-02-11 13:23:30 ----D---- C:\Windows\system32\drivers
2015-02-11 13:23:22 ----D---- C:\Windows\system32\DriverStore
2015-02-11 10:16:55 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-11 09:55:58 ----D---- C:\Windows\SysWOW64
2015-02-11 09:55:58 ----D---- C:\Windows\System32
2015-02-11 08:43:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 08:42:03 ----D---- C:\Program Files (x86)\AviSynth 2.5
2015-02-11 08:41:39 ----D---- C:\Program Files (x86)\AVerMedia
2015-02-11 08:41:31 ----D---- C:\Windows\Driver Cache
2015-02-11 08:33:31 ----D---- C:\Windows\winsxs
2015-02-11 08:30:30 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 08:30:30 ----D---- C:\Windows\system32\appraiser
2015-02-11 08:30:29 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Program Files\Internet Explorer
2015-02-11 08:30:26 ----D---- C:\Windows\system32\en-US
2015-02-11 08:30:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 08:30:20 ----D---- C:\Windows\PolicyDefinitions
2015-02-11 07:21:29 ----SHD---- C:\Windows\Installer
2015-02-11 07:21:27 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 07:14:48 ----D---- C:\Windows\system32\catroot
2015-02-08 09:39:08 ----D---- C:\Users\Dj\AppData\Roaming\vlc
2015-02-07 18:34:48 ----D---- C:\Program Files (x86)\All Video Fixer
2015-02-07 18:34:09 ----D---- C:\Program Files (x86)\GPS Utility
2015-02-07 17:27:45 ----A---- C:\Windows\win.ini
2015-02-07 08:31:47 ----D---- C:\Program Files (x86)\ProFact 3.0 Free
2015-02-06 10:58:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-29 13:00:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-27 08:10:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 09:25:07 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-19 09:24:16 ----RSD---- C:\Windows\Fonts
2015-01-19 09:24:15 ----D---- C:\Users\Dj\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-09 208416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-09 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-09 423240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\dddskx64.sys [2009-02-12 26024]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-09 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-09 85328]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-20 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-29 10629408]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-09-23 144496]
R3 JME;JMicron Ethernet Adapter NDIS6 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-07-14 97632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-14 286768]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 e1edc438-f640-4184-a443-d2a7c37a01dc;ASUS home made driver; \??\E:\aktivace1\690b33e1-0462-4e84-9bea-c7552b45432a.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-12-31 225920]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys [2012-09-22 35344]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 ubloxusb;ubloxusb; C:\Windows\system32\DRIVERS\ubloxusb.sys [2009-11-27 95232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2014-08-20 42680]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-09 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2013-06-26 368640]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-03-14 346976]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-11-01 657504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-04-30 1716264]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-04-30 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-02-20 1255736]
S3 wifimansvc;Wifi Man Service; C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe [2012-11-10 605696]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Run by Dj at 2015-02-11 19:52:05
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 160 GB (53%) free of 305 GB
Total RAM: 4029 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:52:10, on 11.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
C:\Program Files\trend micro\Dj.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [CloudSystemBooster] "C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Dj\AppData\Roaming\ICQM\icq.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Anvi Cloud System Booster Speed Service (AnviCsbSvc) - Anvisoft - C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mobile Partner. OUC (Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect 2 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\ws.exe
O23 - Service: pdfforge CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9424 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/Mobile Partner/UpdateDog/"
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
taskeng.exe {0E5D5FC8-0292-4E38-92AA-1CE84E0E109A}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2548
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe" /hide /autorun
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{03E3344E-6B0C-42C9-9363-15F4468B83E6}
{BA94160C-5F94-4C77-A09D-26C285A75889}
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3544.f48d100.640015512 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3544 "\\.\pipe\gecko-crash-server-pipe.3544" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --proxy-stub-channel=Flash4780.66F66220.18058 --host-broker-channel=Flash4780.66F66220.21581 --host-pid=4780 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe" --channel=4844.0026F450.879952098 --proxy-stub-channel=Flash4780.66F66220.18058 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll" --host-npapi-version=27 --type=renderer
C:\Windows\system32\sppsvc.exe
"C:\Users\Dj\Downloads\RSITx64(1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\PDF Architect 2]
"Description"=
"Path"=C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\extensions\
ossen@yandex.ru
C:\Users\Dj\AppData\Roaming\Mozilla\Firefox\Profiles\nz7jivsb.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-11-11 553896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-06-09 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-11-11 211880]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-06-09 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-14 1814312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-29 163384]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2014-05-29 387640]
"Persistence"=C:\Windows\system32\igfxpers.exe [2014-05-29 418360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-07-13 966712]
"CloudSystemBooster"=C:\Program Files (x86)\Anvisoft\Cloud System Booster\CloudSystemBooster.exe [2014-08-20 527544]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-05-29 272384]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - C:\Windows\NOTEPAD.EXE %1
======List of files/folders created in the last 1 month======
2015-02-11 19:44:41 ----D---- C:\_OTM
2015-02-11 18:23:30 ----D---- C:\AdwCleaner
2015-02-11 13:23:38 ----D---- C:\ProgramData\boost_interprocess
2015-02-11 13:21:59 ----A---- C:\Windows\system32\drivers\asd2fsm.sys
2015-02-11 13:21:51 ----D---- C:\ProgramData\Anvisoft
2015-02-11 13:21:41 ----D---- C:\Program Files (x86)\Anvisoft
2015-02-11 07:18:54 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 07:18:53 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 07:18:52 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 07:18:51 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 07:18:50 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 07:18:44 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 07:18:44 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 07:18:43 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 07:18:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 07:18:42 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 07:18:30 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 07:18:30 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 07:18:29 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 07:18:29 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 07:18:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 07:18:28 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 07:18:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 07:18:25 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 07:18:24 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 07:18:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 07:18:23 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 07:18:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 07:18:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 07:18:21 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 07:18:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 07:18:21 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 07:18:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 07:18:20 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 07:18:19 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 07:18:17 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 07:18:17 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 07:18:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 07:18:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 07:18:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 07:18:13 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 07:18:13 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 07:18:12 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 07:18:11 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 07:18:10 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 07:18:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 07:18:08 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 07:17:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 07:17:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 07:17:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 07:17:30 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 07:17:29 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 07:17:29 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 07:17:29 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 07:17:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 07:17:28 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 07:17:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 07:17:27 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 07:17:05 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 07:17:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 07:16:13 ----A---- C:\Windows\system32\mstscax.dll
2015-02-11 07:16:12 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-11 07:16:11 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-11 07:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 07:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 07:16:05 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 07:16:05 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 07:15:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 07:15:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 07:15:50 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 07:15:47 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 07:15:47 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 07:15:45 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 07:15:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 07:15:17 ----A---- C:\Windows\system32\win32k.sys
2015-01-26 19:21:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-14 06:30:04 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-14 06:30:02 ----A---- C:\Windows\system32\profsvc.dll
2015-01-14 06:29:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-14 06:29:57 ----A---- C:\Windows\system32\drivers\mrxdav.sys
======List of files/folders modified in the last 1 month======
2015-02-11 19:52:11 ----D---- C:\Windows\Temp
2015-02-11 19:52:09 ----D---- C:\Program Files\trend micro
2015-02-11 19:48:11 ----D---- C:\Windows\system32\config
2015-02-11 19:44:42 ----D---- C:\Windows\Tasks
2015-02-11 18:26:48 ----RD---- C:\Program Files
2015-02-11 18:26:48 ----D---- C:\Program Files (x86)\Common Files
2015-02-11 18:26:47 ----RD---- C:\Program Files (x86)
2015-02-11 18:26:47 ----D---- C:\ProgramData
2015-02-11 18:21:54 ----D---- C:\Windows\rescache
2015-02-11 17:41:59 ----D---- C:\Windows
2015-02-11 14:46:08 ----D---- C:\Windows\system32\Tasks
2015-02-11 14:46:03 ----D---- C:\Windows\inf
2015-02-11 14:32:11 ----SHD---- C:\System Volume Information
2015-02-11 14:31:22 ----D---- C:\Windows\Panther
2015-02-11 14:31:22 ----D---- C:\Windows\debug
2015-02-11 14:25:01 ----D---- C:\Windows\system32\catroot2
2015-02-11 13:23:30 ----D---- C:\Windows\system32\drivers
2015-02-11 13:23:22 ----D---- C:\Windows\system32\DriverStore
2015-02-11 10:16:55 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-11 09:55:58 ----D---- C:\Windows\SysWOW64
2015-02-11 09:55:58 ----D---- C:\Windows\System32
2015-02-11 08:43:22 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-11 08:42:03 ----D---- C:\Program Files (x86)\AviSynth 2.5
2015-02-11 08:41:39 ----D---- C:\Program Files (x86)\AVerMedia
2015-02-11 08:41:31 ----D---- C:\Windows\Driver Cache
2015-02-11 08:33:31 ----D---- C:\Windows\winsxs
2015-02-11 08:30:30 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 08:30:30 ----D---- C:\Windows\system32\appraiser
2015-02-11 08:30:29 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 08:30:28 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 08:30:28 ----D---- C:\Program Files\Internet Explorer
2015-02-11 08:30:26 ----D---- C:\Windows\system32\en-US
2015-02-11 08:30:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 08:30:20 ----D---- C:\Windows\PolicyDefinitions
2015-02-11 07:21:29 ----SHD---- C:\Windows\Installer
2015-02-11 07:21:27 ----D---- C:\ProgramData\Microsoft Help
2015-02-11 07:14:48 ----D---- C:\Windows\system32\catroot
2015-02-08 09:39:08 ----D---- C:\Users\Dj\AppData\Roaming\vlc
2015-02-07 18:34:48 ----D---- C:\Program Files (x86)\All Video Fixer
2015-02-07 18:34:09 ----D---- C:\Program Files (x86)\GPS Utility
2015-02-07 17:27:45 ----A---- C:\Windows\win.ini
2015-02-07 08:31:47 ----D---- C:\Program Files (x86)\ProFact 3.0 Free
2015-02-06 10:58:25 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-29 13:00:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-27 08:10:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 09:25:07 ----D---- C:\Program Files (x86)\TeamViewer
2015-01-19 09:24:16 ----RSD---- C:\Windows\Fonts
2015-01-19 09:24:15 ----D---- C:\Users\Dj\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-06-09 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-06-09 208416]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-06-09 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-06-09 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-06-09 423240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\dddskx64.sys [2009-02-12 26024]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-06-09 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-06-09 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-06-09 85328]
R3 athr;Atheros – ovladač pro zařízení pro rozšiřitelnou bezdrátovou síť LAN; C:\Windows\system32\DRIVERS\athrx.sys [2009-06-20 1394688]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-20 90112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-05-29 10629408]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-09-23 144496]
R3 JME;JMicron Ethernet Adapter NDIS6 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-07-14 97632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-14 286768]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 e1edc438-f640-4184-a443-d2a7c37a01dc;ASUS home made driver; \??\E:\aktivace1\690b33e1-0462-4e84-9bea-c7552b45432a.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2011-12-31 225920]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2012-12-24 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 NPF;WinPcap Packet Driver (NPF); C:\Windows\system32\drivers\NPF.sys [2012-09-22 35344]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 Ser2pl;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 ubloxusb;ubloxusb; C:\Windows\system32\DRIVERS\ubloxusb.sys [2009-11-27 95232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264]
R2 AnviCsbSvc;Anvi Cloud System Booster Speed Service; C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe [2014-08-20 42680]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-06-09 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2013-06-26 368640]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2011-03-14 346976]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2014-12-15 5426448]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S2 Mobile Partner. RunOuc;Mobile Partner. OUC; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [2012-11-01 657504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-06 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-09 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-26 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDF Architect 2;PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-04-30 1716264]
S3 pdfforge CrashHandler;pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-04-30 861736]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-02-20 1255736]
S3 wifimansvc;Wifi Man Service; C:\Program Files (x86)\Mobile Partner\eap\wifimansvc.exe [2012-11-10 605696]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
Bohužel je to pořád stejné,reklamy pořád naskakují
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
tady je
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 12.2.2015
Scan Time: 7:56:42
Logfile:
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.02.12.02
Rootkit Database: v2015.02.03.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Dj
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 347318
Time Elapsed: 16 min, 39 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 12.2.2015
Scan Time: 7:56:42
Logfile:
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.02.12.02
Rootkit Database: v2015.02.03.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Dj
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 347318
Time Elapsed: 16 min, 39 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
-
burnigman14
- Návštěvník
- Příspěvky: 17
- Registrován: 09 čer 2014 09:42
Re: vyskakovací reklamy v prohlížeči
Tak už vyřešeno,dík moc za rady.
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: vyskakovací reklamy v prohlížeči
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?