Prosím o kontrolu

Zpráva

industrol · #1 Příspěvek od **industrol** » 20 bře 2015 19:37

Dobrý den,
segra má problém hlavně s chromem. Nejdou přehrávat videa na YT ani se přihlásit na e-mail. Vyhodí to okno aj chyba. Přeinstaluji chrome a uvidím. Každopádně počítač nebyl nikdy kontrolován, tak radši pro jistotu. Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by TRTÍK (administrator) on HP on 20-03-2015 19:28:21
Running from C:\Users\TRTÍK\Downloads
Loaded Profiles: TRTÍK (Available profiles: TRTÍK)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgcsrvx.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
(McAfee, Inc.) C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Hewlett-Packard) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(McAfee, Inc.) C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(Hewlett-Packard Development Company, L.P) C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
() C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
() C:\Program Files\ICQ6Toolbar\ICQ Service.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\coreshredder.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\AVG Secure Search\vprot.exe
() C:\Program Files\Guard-ICQ\GuardICQ.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe
(McAfee, Inc.) C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.0\program\soffice.bin
() C:\Program Files\SiteAdvisor\6173\SAService.exe
(ArcSoft, Inc.) C:\Windows\System32\uArcCapture.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\loggingserver.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(McAfee, Inc.) C:\Program Files\McAfee\Managed VirusScan\Agent\MyAgtTry.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [QLBController] => C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [254520 2010-01-05] (Hewlett-Packard Company)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-25] (Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-10-23] (PDF Complete Inc)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [1690680 2009-12-16] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2010-01-04] (Synaptics Incorporated)
HKLM\...\Run: [HPWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2009-12-16] (Hewlett-Packard)
HKLM\...\Run: [MVS Splash] => C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe [562496 2009-11-17] (McAfee, Inc.)
HKLM\...\Run: [McAfee Managed Services Tray] => C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe [95552 2009-11-17] (McAfee, Inc.)
HKLM\...\Run: [SiteAdvisor] => C:\Program Files\SiteAdvisor\6173\SiteAdv.exe [36640 2007-08-28] ()
HKLM\...\Run: [File Sanitizer] => C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [11265536 2009-12-12] (Hewlett-Packard)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-12-09] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [DTRun] => c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [518656 2009-11-19] (ArcSoft Inc.)
HKLM\...\Run: [NortonOnlineBackupReminder] => C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [600936 2009-06-29] (Symantec Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [AVG_TRAY] => C:\Program Files\AVG\AVG2012\avgtray.exe [2596984 2012-07-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Secure Search\vprot.exe [2503704 2015-03-05] ()
HKLM\...\Run: [Guard.Mail.ru.gui] => C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-02-01] ()
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2013-07-10] (IDT, Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-04-23] (Samsung Electronics Co., Ltd.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\DeviceNP: C:\windows\system32\DeviceNP.dll (Hewlett-Packard Limited)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [HPADVISOR] => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048 2009-09-30] (Hewlett-Packard)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-06-17] (Hewlett-Packard Company)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [ICQ] => C:\Program Files\ICQ7.7\ICQ.exe [127040 2012-02-01] (ICQ, LLC.)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-09-28] (Google Inc.)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1564992 2014-04-23] (Samsung)
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\Run: [KiesAirMessage] => C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2013-04-04] (Microsoft Corporation)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\TRTÍK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk
ShortcutTarget: OpenOffice.org 2.0.lnk -> C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\Software\Microsoft\Internet Explorer\Main,ICQ Search = http://search.icq.com/search/results.ph ... &ch_id=osd
URLSearchHook: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {6537C524-DDDB-4964-B1C7-A9C977A0B269} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> {6537C524-DDDB-4964-B1C7-A9C977A0B269} URL = http://www.bing.com/search?q={searchTer ... -SearchBox
SearchScopes: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = http://search.icq.com/search/results.ph ... &ch_id=osd
SearchScopes: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={B189 ... 2011-11-24 21:09:06&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
BHO: No Name -> {089FD14D-132B-48FC-8861-0048AE113215} -> C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28] ()
BHO: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2009-12-12] (Hewlett-Packard)
BHO: HP ProtectTools Security Manager Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02] (DigitalPersona, Inc.)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files\AVG\AVG2012\avgssie.dll [2012-06-24] (AVG Technologies CZ, s.r.o.)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: AVG Security Toolbar -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-05] (AVG Secure Search)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-28] (Sun Microsystems, Inc.)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28] ()
Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\18.3.0.885\AVG Secure Search_toolbar.dll [2015-03-05] (AVG Secure Search)
Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2011-08-17] (ICQ)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-02] (Google Inc.)
Toolbar: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002 -> No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll [2012-03-27] (AVG Technologies CZ, s.r.o.)
Handler: myrm - {4D034FC3-013F-4b95-B544-44D49ABE3E76} - C:\Program Files\McAfee\Managed VirusScan\Agent\myRmProt4.9.2.358.dll [2009-11-17] (McAfee, Inc.)
Handler: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28] ()
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.3.0\ViProtocol.dll [2015-03-05] (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.3.0\\npsitesafety.dll No File
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2010-09-28] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4
FF Extension: No Name - C:\Program Files\AVG\AVG2012\Firefox4 [2011-11-24]
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.3.0.49
FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: DigitalPersona Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2013-12-27]
FF HKU\.DEFAULT\...\Firefox\Extensions: [{1650a312-02bc-40ee-977e-83f158701739}] - C:\Program Files\SiteAdvisor\6173\FF
FF Extension: McAfee SiteAdvisor - C:\Program Files\SiteAdvisor\6173\FF [2010-02-02]
FF HKU\S-1-5-19\...\Firefox\Extensions: [{1650a312-02bc-40ee-977e-83f158701739}] - C:\Program Files\SiteAdvisor\6173\FF
FF HKU\S-1-5-20\...\Firefox\Extensions: [{1650a312-02bc-40ee-977e-83f158701739}] - C:\Program Files\SiteAdvisor\6173\FF

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/", "hxxp://google.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\22.0.1229.79\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\41.0.2272.89\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\41.0.2272.89\pdf.dll ()
CHR Plugin: (Java Deployment Toolkit 6.0.210.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U21) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.6\\npsitesafety.dll (AVG Technologies)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Profile: C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-10-07]
CHR Extension: (Google Search) - C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-10-07]
CHR Extension: (AdBlock) - C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-06]
CHR Extension: (Google Wallet) - C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR Extension: (Gmail) - C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-10-07]
CHR HKLM\...\Chrome\Extension: [jmfkcklnlgedgbglfkkgedjfmejoahla] - C:\Program Files\AVG\AVG2012\Chrome\safesearch.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\18.1.0.443\avg.crx [2014-04-28]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-09-28] (ArcSoft Inc.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-11-02] (LSI Corporation)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [5167736 2012-08-13] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [193288 2012-02-14] (AVG Technologies CZ, s.r.o.)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [300880 2010-07-16] (DigitalPersona, Inc.)
R2 EngineServer; C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe [14144 2009-06-03] (McAfee, Inc.)
S3 FLCDLOCK; c:\Windows\system32\flcdlock.exe [362040 2009-11-17] (Hewlett-Packard Ltd)
R2 Guard.Mail.ru; C:\Program Files\Guard-ICQ\GuardICQ.exe [1564368 2012-02-01] ()
R2 HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [102968 2009-12-16] (Hewlett-Packard)
R2 HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [32768 2010-10-19] (Hewlett-Packard Development Company, L.P) [File not signed]
R2 HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [102968 2009-12-16] (Hewlett-Packard)
R2 HPDayStarterService; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [81920 2010-01-08] (Hewlett-Packard Company) [File not signed]
R2 HpFkCryptService; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [281192 2009-12-16] (McAfee, Inc.)
R2 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [297984 2009-12-12] (Hewlett-Packard) [File not signed]
R2 hpHotkeyMonitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [264248 2010-01-05] (Hewlett-Packard Company)
R2 ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [247872 2011-08-17] ()
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
R2 McShield; C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe [144704 2009-06-03] (McAfee, Inc.)
R2 myAgtSvc; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [221024 2009-11-17] (McAfee, Inc.)
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-10-23] (PDF Complete Inc)
R2 SiteAdvisor Service; C:\Program Files\SiteAdvisor\6173\SAService.exe [341280 2010-02-02] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [254034 2013-07-10] (IDT, Inc.)
R2 uArcCapture; C:\windows\system32\uArcCapture.exe [506472 2009-12-04] (ArcSoft, Inc.)
S2 vcsFPService; C:\windows\system32\vcsFPService.exe [1664304 2010-02-18] (Validity Sensors, Inc.)
R2 vToolbarUpdater18.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe [1802776 2015-03-05] (AVG Secure Search)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 602SQL 8 FastCGI Client; C:\Program Files\Software602\602SQL95\602FSVC8.EXE [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 Afc; C:\windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [29824 2009-12-04] (ArcSoft, Inc.)
R3 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [139856 2011-12-23] (AVG Technologies CZ, s.r.o. )
R3 AVGIDSFilter; C:\windows\System32\DRIVERS\avgidsfilterx.sys [24144 2011-12-23] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [24896 2012-04-19] (AVG Technologies CZ, s.r.o. )
R3 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [17232 2011-12-23] (AVG Technologies CZ, s.r.o. )
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [237408 2012-07-26] (AVG Technologies CZ, s.r.o.)
R1 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [41040 2011-12-23] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [31952 2012-01-31] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [301920 2012-08-24] (AVG Technologies CZ, s.r.o.)
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv.sys [32312 2009-10-21] (Hewlett-Packard Development Company L.P.)
R3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
R3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
R1 RsvLock; C:\windows\system32\Drivers\RsvLock.sys [40088 2009-12-16] (McAfee, Inc.)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [73344 2009-12-22] (Realtek Semiconductor Corp.)
R0 SafeBoot; C:\windows\system32\Drivers\SafeBoot.sys [110520 2009-12-16] () [File not signed]
R0 SbAlg; C:\windows\system32\Drivers\SbAlg.sys [51800 2009-12-16] (McAfee, Inc.)
R0 SbFsLock; C:\windows\system32\Drivers\SbFsLock.sys [13256 2009-12-16] (McAfee, Inc.)
S3 usbrndis6; C:\windows\System32\DRIVERS\usb80236.sys [15872 2013-02-12] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-20 19:28 - 2015-03-20 19:30 - 00026644 _____ () C:\Users\TRTÍK\Desktop\FRST.txt
2015-03-20 19:27 - 2015-03-20 19:28 - 00000000 ____D () C:\FRST
2015-03-20 19:27 - 2015-03-20 19:27 - 01135104 _____ (Farbar) C:\Users\TRTÍK\Desktop\FRST.exe
2015-03-18 18:38 - 2015-03-18 18:44 - 00004100 _____ () C:\Users\TRTÍK\Downloads\software_removal_tool.log
2015-03-11 14:40 - 2015-02-26 04:11 - 02381312 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-03-11 14:40 - 2015-02-24 03:32 - 00342696 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-03-11 14:40 - 2015-02-21 01:41 - 12827648 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-03-11 14:40 - 2015-02-21 01:27 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-03-11 14:40 - 2015-02-21 01:27 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-03-11 14:40 - 2015-02-21 01:25 - 19720192 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-03-11 14:40 - 2015-02-21 00:32 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-03-11 14:40 - 2015-02-20 03:22 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-03-11 14:40 - 2015-02-20 03:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-03-11 14:40 - 2015-02-20 03:09 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-03-11 14:40 - 2015-02-20 03:08 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-03-11 14:40 - 2015-02-20 03:08 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-03-11 14:40 - 2015-02-20 03:06 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-03-11 14:40 - 2015-02-20 03:03 - 02278400 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-03-11 14:40 - 2015-02-20 03:01 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-03-11 14:40 - 2015-02-20 03:00 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-03-11 14:40 - 2015-02-20 02:58 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-03-11 14:40 - 2015-02-20 02:56 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-03-11 14:40 - 2015-02-20 02:56 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-03-11 14:40 - 2015-02-20 02:56 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-03-11 14:40 - 2015-02-20 02:50 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-11 14:40 - 2015-02-20 02:41 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 14:40 - 2015-02-20 02:37 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-03-11 14:40 - 2015-02-20 02:30 - 04300288 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-03-11 14:40 - 2015-02-20 02:24 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-03-11 14:40 - 2015-02-20 02:24 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-03-11 14:40 - 2015-02-20 02:24 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-03-11 14:40 - 2015-02-20 02:23 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-03-11 14:40 - 2015-02-20 02:01 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-03-11 14:40 - 2015-02-20 01:57 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-03-11 14:40 - 2015-02-20 01:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-03-11 14:40 - 2015-02-13 06:26 - 12875264 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-03-11 14:40 - 2015-02-03 04:12 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-03-11 14:40 - 2015-01-17 03:30 - 00828928 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2015-03-11 14:39 - 2015-03-06 06:15 - 00137656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-03-11 14:39 - 2015-03-06 06:15 - 00067512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-03-11 14:39 - 2015-03-06 06:10 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00550912 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-03-11 14:39 - 2015-03-06 06:10 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-03-11 14:39 - 2015-03-06 06:09 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-03-11 14:39 - 2015-03-06 06:09 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-03-11 14:39 - 2015-03-06 06:07 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-03-11 14:39 - 2015-03-06 06:07 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-03-11 14:39 - 2015-03-06 06:06 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-03-11 14:39 - 2015-02-20 05:13 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-03-11 14:39 - 2015-02-20 05:13 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-03-11 14:39 - 2015-02-20 05:13 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-03-11 14:39 - 2015-02-20 05:13 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-03-11 14:39 - 2015-02-20 04:09 - 00299008 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-03-11 14:39 - 2015-02-04 03:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2015-03-11 14:39 - 2015-02-03 04:16 - 03973048 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-03-11 14:39 - 2015-02-03 04:16 - 03917760 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-03-11 14:39 - 2015-02-03 04:16 - 00078784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-03-11 14:39 - 2015-02-03 04:12 - 11411968 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 03209728 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 01174528 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00475136 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00442880 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00171520 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00103936 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-03-11 14:39 - 2015-02-03 04:12 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2015-03-11 14:39 - 2015-02-03 04:12 - 00027648 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-03-11 14:39 - 2015-02-03 04:11 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-03-11 14:39 - 2015-02-03 04:11 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2015-03-11 14:39 - 2015-02-03 04:11 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-03-11 14:39 - 2015-02-03 04:11 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2015-03-11 14:39 - 2015-02-03 04:00 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2015-03-11 14:39 - 2015-02-03 03:26 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-03-11 14:39 - 2015-01-31 00:56 - 00370488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-03-11 14:39 - 2014-10-31 23:22 - 00521384 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2015-03-11 14:39 - 2014-06-28 01:21 - 00455752 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2015-03-11 14:39 - 2014-06-28 01:21 - 00409272 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2015-03-11 14:38 - 2015-02-03 04:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2015-03-11 14:38 - 2015-02-03 04:12 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2015-03-11 14:38 - 2015-02-03 04:11 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2015-03-11 14:38 - 2015-02-03 04:11 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-03-11 14:38 - 2015-02-03 04:11 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-03-11 14:38 - 2015-02-03 04:11 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2015-03-11 14:38 - 2015-02-03 04:11 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2015-03-11 14:38 - 2015-02-03 04:10 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2015-03-11 14:38 - 2015-02-03 04:09 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2015-03-11 14:38 - 2015-02-03 04:08 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-02-25 20:58 - 2015-01-09 00:44 - 00419936 _____ () C:\windows\system32\locale.nls
2015-02-25 20:42 - 2015-01-09 03:48 - 00635904 _____ (Microsoft Corporation) C:\windows\system32\perftrack.dll
2015-02-25 20:42 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\wdi.dll
2015-02-25 20:42 - 2015-01-09 03:48 - 00027136 _____ (Microsoft Corporation) C:\windows\system32\powertracker.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-20 19:23 - 2012-01-20 21:05 - 00000000 ____D () C:\Users\TRTÍK\AppData\Roaming\ICQ
2015-03-20 19:20 - 2010-09-28 14:19 - 00000940 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-20 19:03 - 2012-04-29 10:02 - 00000914 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-03-20 18:16 - 2009-07-14 05:34 - 00022688 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-20 18:16 - 2009-07-14 05:34 - 00022688 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-20 16:30 - 2010-02-02 05:41 - 00000000 ____D () C:\ProgramData\PDFC
2015-03-20 16:29 - 2011-01-06 18:11 - 00000000 ____D () C:\Users\TRTÍK\AppData\Roaming\OpenOffice.org2
2015-03-20 16:29 - 2010-02-02 05:40 - 00000000 ____D () C:\ProgramData\HPQLOG
2015-03-20 16:28 - 2013-06-03 16:03 - 00000350 _____ () C:\windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2015-03-20 16:28 - 2012-10-08 17:17 - 00080805 _____ () C:\windows\setupact.log
2015-03-20 16:28 - 2010-09-28 14:19 - 00000936 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-20 16:28 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-03-19 21:35 - 2010-03-24 14:51 - 01433778 _____ () C:\windows\WindowsUpdate.log
2015-03-18 19:19 - 2014-11-12 15:22 - 00000320 _____ () C:\windows\Tasks\HPCeeScheduleForTRTÍK.job
2015-03-18 18:43 - 2010-05-06 17:03 - 00000052 _____ () C:\windows\system32\DOErrors.log
2015-03-16 17:17 - 2012-04-29 11:39 - 00000000 ___RD () C:\Users\TRTÍK\Desktop\Film
2015-03-16 17:15 - 2014-10-18 10:31 - 00000000 ____D () C:\Users\TRTÍK\Desktop\jára cimrman
2015-03-16 17:15 - 2010-02-02 05:26 - 01584626 _____ () C:\windows\system32\PerfStringBackup.INI
2015-03-13 21:08 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\rescache
2015-03-12 18:09 - 2009-07-14 05:33 - 00420728 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-12 16:52 - 2010-02-02 05:54 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-12 16:51 - 2014-05-04 10:21 - 00000000 ____D () C:\windows\system32\MRT
2015-03-12 16:35 - 2014-05-04 10:21 - 119837696 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-03-10 16:10 - 2009-07-14 05:53 - 00032584 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2015-03-05 18:07 - 2011-11-24 21:09 - 00000000 ____D () C:\Program Files\Common Files\AVG Secure Search
2015-03-05 18:06 - 2011-11-24 21:09 - 00000000 ____D () C:\Program Files\AVG Secure Search
2015-03-03 13:36 - 2012-10-08 17:17 - 00060956 _____ () C:\windows\PFRO.log
2015-02-26 16:11 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\tracing

==================== Files in the root of some directories =======

2011-05-04 15:59 - 2011-05-04 15:59 - 0001849 _____ () C:\Users\TRTÍK\AppData\Roaming\GhostObjGAFix.xml
2011-07-27 19:30 - 2011-07-27 19:30 - 0000000 _____ () C:\Users\TRTÍK\AppData\Local\{B3415A81-A95A-499C-A9D2-AD58DD1F0A67}
2011-07-27 10:24 - 2011-07-27 10:24 - 0000000 _____ () C:\Users\TRTÍK\AppData\Local\{FB1D9927-F123-4BCC-8E1F-41EDE0FDCFC6}
2010-08-07 08:32 - 2010-08-07 08:32 - 0000056 ____H () C:\ProgramData\ezsidmv.dat

Some content of TEMP:
====================
C:\Users\TRTÍK\AppData\Local\Temp\3906~fspext.dll
C:\Users\TRTÍK\AppData\Local\Temp\8837~fspext.dll
C:\Users\TRTÍK\AppData\Local\Temp\AtpTimerInfo.dll
C:\Users\TRTÍK\AppData\Local\Temp\Extract.exe
C:\Users\TRTÍK\AppData\Local\Temp\HPHelpUpdater.exe
C:\Users\TRTÍK\AppData\Local\Temp\Resource.exe
C:\Users\TRTÍK\AppData\Local\Temp\SkypeSetup.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP47594.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP50498.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP51129.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP52131.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP54600.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP57752.exe
C:\Users\TRTÍK\AppData\Local\Temp\sp58915.exe
C:\Users\TRTÍK\AppData\Local\Temp\sp64126.exe
C:\Users\TRTÍK\AppData\Local\Temp\SP67224.exe
C:\Users\TRTÍK\AppData\Local\Temp\UninstallHPSA.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2015
Ran by TRTÍK at 2015-03-20 19:30:34
Running from C:\Users\TRTÍK\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee® Total Protection™ for Small Business (Disabled - Out of date) {86355677-4064-3EA7-ABB3-1B136EB04637}
AV: AVG Anti-Virus Free Edition 2012 (Disabled - Up to date) {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
AS: AVG Anti-Virus Free Edition 2012 (Disabled - Up to date) {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee® Total Protection™ for Small Business (Disabled - Out of date) {3D54B793-665E-3129-9103-206115370C8A}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
602Office (HKLM\...\{8E3E601F-A696-4496-BD8A-06001479DA44}) (Version: 2.0 - Software602 a. s. (http://www.602.cz/))
7-Zip 4.65 (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-041B-0000-0000000FF1CE}_PROHYBRIDR_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-041B-0000-0000000FF1CE}_PROHYBRIDR_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-041B-0000-0000000FF1CE}_PROHYBRIDR_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
ArcSoft TotalMedia (HKLM\...\ArcSoft TotalMedia) (Version: 1.0.23.17 - ArcSoft)
ArcSoft TotalMedia (Version: 1.0.33.17 - ArcSoft) Hidden
ArcSoft Webcam Sharing Manager (HKLM\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 1.0.0.26 - ArcSoft)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{3E62B27C-342F-4B44-9331-CA4BC59A586F}) (Version: 5.000.818.5 - Microsoft Corporation)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{A788EAC0-E8F6-C07E-DD10-2E86CF8229A1}) (Version: 3.0.750.0 - ATI Technologies, Inc.)
AVG 2012 (HKLM\...\AVG) (Version: 2012.0.2221 - AVG Technologies CZ, s.r.o.)
AVG 2012 (Version: 12.0.2221 - AVG Technologies CZ, s.r.o.) Hidden
AVG 2013 (Version: 13.0.2617 - AVG Technologies CZ, s.r.o.) Hidden
AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.3.0.885 - AVG Technologies)
Ažuriranje za Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-041A-0000-0000000FF1CE}_PROHYBRIDR_{BAEF930D-2299-4291-A776-76180A3A62E2}) (Version: - Microsoft)
Ažuriranje za Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-041A-0000-0000000FF1CE}_PROHYBRIDR_{AF2BE5BC-7CDA-4D93-BC81-B318E4729D7A}) (Version: - Microsoft)
Ažuriranje za Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-041A-0000-0000000FF1CE}_PROHYBRIDR_{CB1B45DE-6AAE-46FB-9FFE-B5F4F7029605}) (Version: - Microsoft)
Bing Bar (HKLM\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Camera RAW Plug-In for EPSON Creativity Suite (HKLM\...\{55D39D7E-0475-450B-A7A9-919EBCBC9F53}) (Version: 3.1.0.0 - SEIKO EPSON CORPORATION)
ccc-core-static (Version: 2009.1208.2236.40549 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 2.32 - Piriform)
Corel Home Office - CS Templates (Version: 5.4.5 - 公司名称) Hidden
Corel Home Office - CT Templates (Version: 5.4.5 - 您的公司名稱) Hidden
Corel Home Office - IPM (Version: 5.5 - Corel Corporation) Hidden
Corel Home Office - JP Templates (Version: 5.4.5 - 会社名) Hidden
Corel Home Office - KR Templates (Version: 5.4.5 - 회사명) Hidden
Corel Home Office - Launcher (Version: 5.5 - Corel Corporation) Hidden
Corel Home Office - Templates RU (Version: 5.4.5 - Название организации) Hidden
Corel Home Office - Templates1 (Version: 5.4.5 - Your Company Name) Hidden
Corel Home Office (HKLM\...\_{36C95AD3-D330-4BAA-884A-9F3EFD15A5EA}) (Version: 5.0.69.462 - Corel Corporation)
Corel Home Office (Version: 5.5 - Corel Corporation) Hidden
Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 5.0.1.5 - Hewlett-Packard)
Drive Encryption for HP ProtectTools (HKLM\...\Drive Encryption) (Version: 5.0.4.0 - Hewlett-Packard)
Drive Encryption for HP ProtectTools (Version: 5.0.4.0 - Hewlett-Packard) Hidden
EPSON Attach To Email (HKLM\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON)
EPSON Attach To Email (Version: 1.01.0000 - SEIKO EPSON) Hidden
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
EPSON File Manager (HKLM\...\{D02F30FB-0BC4-419A-9B9C-ADC610029B50}) (Version: 1.3.2.0 - )
EPSON Scan Assistant (HKLM\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - )
Face Recognition for HP ProtectTools (HKLM\...\InstallShield_{CB65A1C3-533D-4EA6-82B5-FBA926F19079}) (Version: 2.01.651 - Hewlett-Packard)
Face Recognition for HP ProtectTools (Version: 2.01.651 - Hewlett-Packard) Hidden
File Sanitizer For HP ProtectTools (HKLM\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 5.0.1.2 - Hewlett-Packard)
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.89 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Guard.ICQ (HKLM\...\Guard.Mail.ru) (Version: - Mail.ru) <==== ATTENTION
Hewlett-Packard ACLM.NET v1.2.2.3 (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{67C090D6-109A-47D7-8DED-4160C4D96F32}) (Version: 4.0.4.1 - Hewlett-Packard)
HP Advisor (HKLM\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.3.9512.3162 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM\...\{871732B3-1EE5-4C54-8462-8BFF516880B7}) (Version: 1.0.5.1 - Hewlett-Packard Company)
HP HotKey Support (HKLM\...\{0497B553-0E3F-4CCD-BE13-E28F1A54B318}) (Version: 3.5.13.1 - Hewlett-Packard Company)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)
HP Power Assistant (HKLM\...\{EEB023B5-8EBE-4BEB-90C8-BDA16ABEDBB4}) (Version: 1.0.3.2 - Hewlett-Packard)
HP Power Data (HKLM\...\{E366F338-BF6E-4165-BDDB-3DCCB3388F9F}) (Version: 1.0.7.77 - Hewlett-Packard)
HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 5.12.754 - Hewlett-Packard Company)
HP QuickLook (HKLM\...\{8B49BD5E-C896-4F65-95DC-3F84424226E8}) (Version: 3.2.0.14 - Hewlett-Packard)
HP QuickWeb (HKLM\...\{7861911B-4270-498A-8F7A-FCF0570F485D}) (Version: 1.0.1.53 - DeviceVM, Inc.)
HP Setup (HKLM\...\{1E6219D4-027E-47EE-AB83-DD2F26E31A32}) (Version: 1.2.3557.3169 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM\...\{2DA697D7-FED3-4DE2-A174-92A2A12F9688}) (Version: 3.0.5.0 - Hewlett-Packard Company)
HP Software Framework (HKLM\...\{2712DAD6-C1F7-4295-B06E-17D6DC62EC20}) (Version: 3.5.13.1 - Hewlett-Packard Company)
HP Software Setup (HKLM\...\{04801E42-B1A6-4C52-9F3D-CADB5A050433}) (Version: 7.0.1.5 - Hewlett-Packard Company)
HP Support Assistant (HKLM\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP User Guides 0189 (HKLM\...\{3BDB9B89-56B5-4953-B052-AEB75FCBFC93}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.3 - Hewlett-Packard Company)
HP Webcam Driver (HKLM\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.0024 - Realtek Semiconductor Corp.)
HP Wireless Assistant (HKLM\...\{0279C882-B150-44B6-A769-A7C8A2F31CE3}) (Version: 4.0.3.2 - Hewlett-Packard)
ICQ Toolbar (HKLM\...\ICQToolbar) (Version: 3.0.0 - ICQ)
ICQ7.7 (HKLM\...\{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}) (Version: 7.7 - ICQ)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6300.0 - IDT)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Java(TM) 6 Update 21 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216021FF}) (Version: 6.0.210 - Oracle)
Landi 2003 - jazykový kurz (HKLM\...\Landi 2003 - jazykový kurz) (Version: - )
Landi Diktáty (HKLM\...\Landi Diktáty) (Version: - )
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
McAfee Browser Protection Service (HKLM\...\McAfee SiteAdvisor) (Version: 2.5.0.6173 - McAfee, Inc.)
McAfee Virus and Spyware Protection Service (HKLM\...\MVS) (Version: 4.9.2.358 - McAfee, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office FrontPage 2003 (HKLM\...\{90170405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Thunderbird (1.0.7) (HKLM\...\Mozilla Thunderbird (1.0.7)) (Version: 1.0.7 (cs) - Mozilla)
MyFreeCodec (HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\...\MyFreeCodec) (Version: - )
Nástroj pro odesílání služby Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Norton Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)
OpenOffice.org 2.0 (HKLM\...\{F6B0E67F-598C-4318-AE93-420E93CAA47C}) (Version: 2.0.8968 - OpenOffice.org)
PDF Complete Special Edition (HKLM\...\PDF Complete) (Version: 3.5.112 - PDF Complete, Inc)
Posodobitev za Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0424-0000-0000000FF1CE}_PROHYBRIDR_{FD705E62-13B4-4BF5-A4B2-A7599309751B}) (Version: - Microsoft)
Posodobitev za Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0424-0000-0000000FF1CE}_PROHYBRIDR_{045DC059-1CCC-47B9-BA35-713E269D33B8}) (Version: - Microsoft)
Posodobitev za Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0424-0000-0000000FF1CE}_PROHYBRIDR_{AD1C31E7-4856-4887-9307-1ABDE0F2DF7C}) (Version: - Microsoft)
Pre-Boot Security for HP ProtectTools (Version: 5.0.7.1 - Hewlett-Packard) Hidden
Privacy Manager for HP ProtectTools (HKLM\...\{142D2DFA-1FB7-41B9-8509-DAB5F3978CE4}) (Version: 5.01.734 - Hewlett-Packard)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0007 - Realtek)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30109 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.1 - Synaptics Incorporated)
Theft Recovery (HKLM\...\InstallShield_{33C9F24B-1D92-4632-A915-81E3BB1D5D6B}) (Version: 5.1.0.18 - Hewlett-Packard)
Theft Recovery (Version: 5.1.0.18 - Hewlett-Packard) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Validity Fingerprint Driver (HKLM\...\{78365FC6-09CA-4AC3-BC01-70FB46596047}) (Version: 4.0.15.0 - Validity Sensors, Inc.)
VLC media player 1.0.5 (HKLM\...\VLC media player) (Version: 1.0.5 - VideoLAN Team)
Windows 7 Default Setting (HKLM\...\{5BF8E079-D6E2-4323-B794-75152371122A}) (Version: 1.0.1.4 - Hewlett-Packard Company)
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\B7541EC5F72AA713F557569278EB6273725F5607) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\A6A8668C0A13640CA28FE2A7D9654BE4AE478B13) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\BF20603967CFDCB2BBF91950E8A56DFBC5C833FE) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
WinZip 12.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}) (Version: 12.0.8252 - WinZip Computing, S.L. )
ZAV 4.48 (HKLM\...\ZAV_DOMA_is1) (Version: - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002_Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002_Classes\CLSID\{395610AE-C624-4f58-B89E-23733EA00F9A}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-2018833422-2900327754-1930971165-1002_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> No File Path

==================== Restore Points =========================

11-02-2015 19:37:45 Windows Update
12-02-2015 20:17:14 Windows Update
12-02-2015 22:03:26 Windows Update
13-02-2015 21:34:20 Windows Update
21-02-2015 17:25:07 Naplánovaný kontrolní bod
25-02-2015 20:57:32 Windows Update
05-03-2015 18:29:58 Naplánovaný kontrolní bod
12-03-2015 16:26:57 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00DFAFAB-37CA-41EA-B722-15101B2AE0F6} - System32\Tasks\{5AEEC262-A346-4688-ACEE-4C98206D4184} => pcalua.exe -a G:\AUTORUN.EXE -d G:\
Task: {140E4CC8-B264-409C-8CD6-9D1104AF9906} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {2B43842B-5096-4E20-A107-F3D65EB106C9} - System32\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv => C:\windows\TEMP\{D0EE7223-989C-4994-8990-093F7FD95565}.exe
Task: {3C92B879-E31D-4E5F-AB62-A3D3A15C5BB8} - System32\Tasks\{2A5C7660-DB4A-4213-9500-0177894DD50D} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.169/cs/a ... adyoffered
Task: {45A180F9-C73D-427F-A6CC-F9E864EE5422} - System32\Tasks\HPCeeScheduleForTRTÍK => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {4D14E0E1-D5EC-4531-837E-AC8129C954BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {7C13F03F-C7B8-46DD-BCC5-F0BC202A10EA} - System32\Tasks\{75EA8FE0-738D-46EB-8778-1AE6583F215B} => Iexplore.exe http://www.skype.com/go/downloading?sou ... tError=404
Task: {873890BB-0BDD-4988-AFA6-CA5727BE6ADE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\NetworkCheck => c:\program files\hewlett-packard\hp health check\activecheck\product_line\Detection_NetworkCheck.exe [2014-04-22] (Hewlett-Packard)
Task: {9F68D794-DF38-4C17-A12A-EC827E27C058} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: {A450DA49-CFB7-4AF1-AC1A-58499277D94A} - System32\Tasks\{E83E2380-5288-41B9-9ADC-BC08FEB5AB59} => Chrome.exe http://ui.skype.com/ui/0/6.7.0.102/cs/a ... =tsInstall
Task: {B8BCBAF6-60EC-4192-8DC5-7A420E8DDBD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {B95D7734-E069-42C5-A29A-28DF354F6455} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {C4C00EB1-ADC0-4538-82D5-1A29BEC0AB65} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {C6E6C585-39B8-44EC-94F8-BA85982F8D89} - System32\Tasks\{3FD7A9DA-FDF5-41D7-BCEC-F700D6397D80} => Chrome.exe http://ui.skype.com/ui/0/6.11.0.102/cs/ ... rogressBar
Task: {D42B317D-249A-49B7-B83C-AB0635BA5E10} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.)
Task: {DE131447-5C86-45E2-ADA5-A416A5BE0C71} - System32\Tasks\{3985A037-2145-4A88-B22D-43600BE68973} => Iexplore.exe http://www.skype.com/go/downloading?sou ... tError=404
Task: {ED6592F8-957D-4CFC-B112-FA92B8AB8439} - System32\Tasks\{C7EFDAF1-83B6-4BE6-80FF-EC712939EB9C} => Iexplore.exe http://www.skype.com/go/downloading?sou ... tError=404

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\windows\TEMP\{D0EE7223-989C-4994-8990-093F7FD95565}.exe <==== ATTENTION
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForTRTÍK.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) ==============

2009-12-11 20:20 - 2009-12-11 20:20 - 00648464 _____ () C:\windows\system32\SUPSDK.dll
2010-04-20 08:10 - 2010-04-20 08:10 - 00079360 _____ () C:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll
2009-11-17 23:39 - 2009-11-17 23:39 - 00329272 _____ () C:\windows\system32\flcdlmsg.dll
2012-02-01 13:48 - 2012-02-01 13:48 - 01564368 _____ () C:\Program Files\Guard-ICQ\GuardICQ.exe
2009-12-16 23:48 - 2009-12-16 23:48 - 00052280 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\HardwareAccess.dll
2009-12-16 23:48 - 2009-12-16 23:48 - 00267832 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\HPCommon.XmlSerializers.dll
2009-12-16 23:48 - 2009-12-16 23:48 - 00055352 _____ () C:\Program Files\Hewlett-Packard\HP Power Assistant\Graphs.dll
2010-02-02 06:15 - 2007-08-28 21:07 - 00036640 _____ () C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
2010-02-02 06:15 - 2007-08-28 21:06 - 00910624 _____ () C:\Program Files\SiteAdvisor\6173\SiteAdv.dll
2012-01-20 21:06 - 2011-08-17 11:04 - 00247872 _____ () C:\Program Files\ICQ6Toolbar\ICQ Service.exe
2011-11-24 21:09 - 2015-03-05 18:06 - 02503704 _____ () C:\Program Files\AVG Secure Search\vprot.exe
2015-03-05 18:06 - 2015-03-05 18:06 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\log4cplusU.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00061440 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00131072 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00040960 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingServer.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00005632 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingInterface.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00018944 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingMessages.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00036864 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\MessagingClients.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00007680 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\RemotingClient.dll
2009-09-30 00:25 - 2009-09-30 00:25 - 00028672 _____ () C:\Program Files\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
2009-06-17 20:40 - 2009-06-17 20:40 - 02121728 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll
2009-06-17 20:40 - 2009-06-17 20:40 - 07745536 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll
2009-06-17 20:40 - 2009-06-17 20:40 - 00135168 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2014-10-18 07:41 - 2014-10-18 07:41 - 00186368 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Kies.Commonc65c5a95#\53867c5c155da47b668e80eb4a84dc51\Kies.Common.DeviceServiceLib.Interface.ni.dll
2014-10-18 07:42 - 2014-10-18 07:42 - 14993920 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\86c7c1b7ba431a48215c8d66dfc46df0\Kies.Theme.ni.dll
2014-10-18 07:41 - 2014-10-18 07:41 - 01865728 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\8b48969de0e0c596b6c888aa31171191\Kies.UI.ni.dll
2014-10-18 07:41 - 2014-10-18 07:41 - 00081920 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\5fb0786b0ca407287c5872223009b608\Kies.MVVM.ni.dll
2014-10-18 07:41 - 2014-10-18 07:41 - 00236032 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\6815ff93472d008087880a6462931188\ASF_cSharpAPI.ni.dll
2009-09-04 20:43 - 2009-09-04 20:43 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2005-10-15 00:37 - 2005-10-15 00:37 - 00828416 _____ () C:\Program Files\OpenOffice.org 2.0\program\libxml2.dll
2010-02-02 06:15 - 2010-02-02 06:15 - 00341280 _____ () C:\Program Files\SiteAdvisor\6173\SAService.exe
2010-02-02 06:15 - 2010-02-02 06:15 - 00271648 _____ () C:\Program Files\SiteAdvisor\6173\Upsell.dll
2015-03-05 18:06 - 2015-03-05 18:06 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\loggingserver.exe
2009-06-11 00:30 - 2009-06-11 00:30 - 00098304 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-03-24 14:51 - 2010-03-24 14:51 - 00270336 _____ () C:\windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2009-12-16 23:51 - 2009-12-16 23:51 - 00030264 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_LogicLayer.dll
2009-12-16 23:51 - 2009-12-16 23:51 - 00052280 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HardwareAccess.dll
2015-03-13 17:21 - 2015-03-07 07:13 - 09279304 _____ () C:\Program Files\Google\Chrome\Application\41.0.2272.89\pdf.dll
2015-03-14 11:28 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2015-03-14 11:28 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\Software\Classes\.exe: => <===== ATTENTION!

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2018833422-2900327754-1930971165-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\TRTÍK\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== Accounts: =============================

Administrator (S-1-5-21-2018833422-2900327754-1930971165-500 - Administrator - Disabled)
Guest (S-1-5-21-2018833422-2900327754-1930971165-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2018833422-2900327754-1930971165-1004 - Limited - Enabled)
McAfeeMVSUser (S-1-5-21-2018833422-2900327754-1930971165-1000 - Limited - Enabled)
TRTÍK (S-1-5-21-2018833422-2900327754-1930971165-1002 - Administrator - Enabled) => C:\Users\TRTÍK

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (03/15/2015 09:44:22 AM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Správce oken plochy zjistil závažnou chybu (0x0).

Error: (03/03/2015 07:04:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ICQ.exe, verze: 7.7.0.6547, časové razítko: 0x4f0bf762
Název chybujícího modulu: MUIUtils.dll, verze: 7.7.0.6547, časové razítko: 0x4f0bf629
Kód výjimky: 0xc0000005
Posun chyby: 0x00131e58
ID chybujícího procesu: 0xdc0
Čas spuštění chybující aplikace: 0xICQ.exe0
Cesta k chybující aplikaci: ICQ.exe1
Cesta k chybujícímu modulu: ICQ.exe2
ID zprávy: ICQ.exe3

Error: (03/01/2015 09:53:12 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/28/2015 08:42:58 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/28/2015 07:57:52 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/26/2015 05:18:27 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/25/2015 07:31:48 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/25/2015 03:39:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Challenges1.exe, verze: 2.1.18.0, časové razítko: 0x2a425e19
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.18247, časové razítko: 0x521ea91c
Kód výjimky: 0xc0000005
Posun chyby: 0x00055f99
ID chybujícího procesu: 0x1ea8
Čas spuštění chybující aplikace: 0xChallenges1.exe0
Cesta k chybující aplikaci: Challenges1.exe1
Cesta k chybujícímu modulu: Challenges1.exe2
ID zprávy: Challenges1.exe3

Error: (02/24/2015 05:42:14 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Generování kontextu aktivace pro assemblyIdentity1 se nezdařilo. Chyba v souboru manifestu nebo zásady assemblyIdentity2 na řádku assemblyIdentity3.
Hodnota 1, 2, 0, 17 atributu version v prvku assemblyIdentity je neplatná.

Error: (02/24/2015 04:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ICQ.exe, verze: 7.7.0.6547, časové razítko: 0x4f0bf762
Název chybujícího modulu: MSVCR90.dll, verze: 9.0.30729.6161, časové razítko: 0x4dace5b9
Kód výjimky: 0xc0000005
Posun chyby: 0x0003ae7a
ID chybujícího procesu: 0xb5c
Čas spuštění chybující aplikace: 0xICQ.exe0
Cesta k chybující aplikaci: ICQ.exe1
Cesta k chybujícímu modulu: ICQ.exe2
ID zprávy: ICQ.exe3

System errors:
=============
Error: (03/20/2015 04:28:54 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVGIDSAgent ukončena s chybou %%-536753637, specifickou pro službu.

Error: (03/20/2015 04:28:50 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVG WatchDog ukončena s chybou %%-536805315, specifickou pro službu.

Error: (03/19/2015 06:06:22 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVGIDSAgent ukončena s chybou %%-536753637, specifickou pro službu.

Error: (03/19/2015 06:06:21 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVG WatchDog ukončena s chybou %%-536805315, specifickou pro službu.

Error: (03/19/2015 03:14:26 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVG WatchDog ukončena s chybou %%-536805315, specifickou pro službu.

Error: (03/19/2015 03:14:26 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVGIDSAgent ukončena s chybou %%-536753637, specifickou pro službu.

Error: (03/18/2015 07:20:11 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVG WatchDog ukončena s chybou %%-536805315, specifickou pro službu.

Error: (03/18/2015 07:20:11 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVGIDSAgent ukončena s chybou %%-536753637, specifickou pro službu.

Error: (03/18/2015 06:31:53 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVGIDSAgent ukončena s chybou %%-536753637, specifickou pro službu.

Error: (03/18/2015 06:31:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba AVG WatchDog ukončena s chybou %%-536805315, specifickou pro službu.

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Percentage of memory in use: 37%
Total physical RAM: 2991.43 MB
Available physical RAM: 1868.18 MB
Total Pagefile: 5981.15 MB
Available Pagefile: 4208.98 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:280.8 GB) (Free:70.17 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.48 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 58054A99)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=280.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End Of Log ============================

#2 Příspěvek od **Márty84** » 20 bře 2015 20:12

Zdravim

Odinstalujte vse od McAfee a AVG. Stejne tam mate stare verze.

Nainstalujte treba Avast free

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

industrol · #3 Příspěvek od **industrol** » 20 bře 2015 20:49

# AdwCleaner v4.112 - Logfile created 20/03/2015 at 20:46:13
# Updated 09/03/2015 by Xplode
# Database : 2015-03-15.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : TRTÍK - HP
# Running from : C:\Users\TRTÍK\Desktop\adwcleaner_4.112.exe
# Option : Cleaning

***** [ Services ] *****

Service Deleted : ICQ Service
Service Deleted : Guard.Mail.ru

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ICQ\ICQToolbar
Folder Deleted : C:\Program Files\AVG Security Toolbar
Folder Deleted : C:\Program Files\ICQ6Toolbar
Folder Deleted : C:\Program Files\Guard-ICQ
File Deleted : C:\Users\TRTK~1\AppData\Local\Temp\Uninstall.exe

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook
Key Deleted : HKLM\SOFTWARE\Classes\ICQToolBar.IEHook.1
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{855F3B16-6D32-4FE6-8A56-BBB695989046}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\ICQ\ICQToolbar
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\DeviceVM
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICQToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Google Chrome v41.0.2272.89

[C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
[C:\Users\TRTÍK\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxps://isearch.avg.com/search?cid={B189CE0F-2065-4B86-8CFC-203B96A1E3E5}&mid=7301797508ea47d19f7e099ac30dc132-2440f0cddcc646dc36a811b5264102a73b37c236&lang=cs&ds=AVG&pr=fr&d=2011-11-24 21:09:06&v=12.2.5.32&sap=dsp&q={searchTerms}

*************************

AdwCleaner[R0].txt - [5720 bytes] - [20/03/2015 20:44:11]
AdwCleaner[S0].txt - [5695 bytes] - [20/03/2015 20:46:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5754 bytes] ##########

#4 Příspěvek od **Márty84** » 20 bře 2015 20:55

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

industrol · #5 Příspěvek od **industrol** » 20 bře 2015 21:02

Nedoběhla instalace. Chyba
Došlo k chybě při čtení zdrojového souboru:
Přístup byl odepřen

Ani opětovná instalace problém nevyřešila

#6 Příspěvek od **Márty84** » 20 bře 2015 21:12

Zkuste starsi verzi.

Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ (musite stahnout verzi 1.75, odmitnout upgrade na novejsi verzi a aktualizovat jen virovou databazi) a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

industrol · #7 Příspěvek od **industrol** » 20 bře 2015 23:07

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2015.03.20.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.17691
TRTÍK :: HP [administrátor]

Ochrana: Zakázána

20.3.2015 21:26:55
mbam-log-2015-03-20 (21-26-55).txt

Typ: Kompletní kontrola (C:\|F:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 532130
Uplynulý čas: 1 hodin, 28 minut, 42 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#8 Příspěvek od **Márty84** » 21 bře 2015 10:05

MBAM muzete odinstalovat.

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=30&t=130787

industrol · #9 Příspěvek od **industrol** » 21 bře 2015 10:44

Přeinstaloval jsem chrome a problém trvá.

Logfile of random's system information tool 1.10 (written by random/random)
Run by TRTÍK at 2015-03-21 10:35:07
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 103 GB (36%) free of 288 GB
Total RAM: 2991 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:36:08, on 21.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\TRTÍK\Downloads\RSIT.exe
C:\Program Files\trend micro\TRTÍK.exe
C:\windows\system32\SearchProtocolHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe -update activex
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: 602SQL 8 FastCGI Client - Unknown owner - C:\Program Files\Software602\602SQL95\602FSVC8.EXE (file missing)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system32\uArcCapture.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 12405 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\windows\TEMP\{D0EE7223-989C-4994-8990-093F7FD95565}.exe --uninstall=1
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForTRTÍK.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForTRTÍK (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2009-12-12 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-28 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11 1431712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-04 1594664]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"DTRun"=c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-07-10 495708]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\windows\system32\Macromed\Flash\FlashUtil32_16_0_0_305_ActiveX.exe [2015-02-04 960688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AvgRemover]
C:\Users\TRTÍK\Downloads\avg_remover_stf_x86_2012_2125.exe /run_number=3 /avgdir=C:\Program Files\AVG\AVG2012\ /avgdatadir=C:\ProgramData\AVG2012\ /ndis_nextstep=1 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY]
C:\Program Files\AVG\AVG2012\avgtray.exe [2012-07-31 2596984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Guard.Mail.ru.gui]
C:\Program Files\Guard-ICQ\GuardICQ.exe /gui []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-30 1685048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2009-12-16 1690680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.7\ICQ.exe [2012-02-01 127040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files\Samsung\Kies\Kies.exe [2014-04-23 1564992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-04-23 311616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
C:\Program Files\PDF Complete\pdfsty.exe [2009-10-23 563736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-05 254520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-09-04 795936]

C:\Users\TRTÍK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 2.0.lnk - C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-17 75320]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-21 10:35:08 ----D---- C:\Program Files\trend micro
2015-03-21 10:35:07 ----D---- C:\rsit
2015-03-20 21:23:49 ----A---- C:\windows\system32\drivers\mbam.sys
2015-03-20 21:20:06 ----D---- C:\Users\TRTÍK\AppData\Roaming\Malwarebytes
2015-03-20 21:19:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2015-03-20 21:13:29 ----D---- C:\Users\TRTÍK\AppData\Roaming\InstallShield
2015-03-20 21:05:28 ----N---- C:\windows\system32\MpSigStub.exe
2015-03-20 20:58:40 ----D---- C:\ProgramData\Malwarebytes
2015-03-20 20:51:49 ----D---- C:\windows\pss
2015-03-20 20:43:31 ----D---- C:\AdwCleaner
2015-03-20 20:33:23 ----A---- C:\windows\myClean.bat
2015-03-20 19:27:50 ----D---- C:\FRST
2015-03-11 14:40:40 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-03-11 14:40:38 ----A---- C:\windows\system32\shell32.dll
2015-03-11 14:40:38 ----A---- C:\windows\system32\msctf.dll
2015-03-11 14:40:36 ----A---- C:\windows\system32\win32k.sys
2015-03-11 14:40:35 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 14:40:35 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-03-11 14:40:35 ----A---- C:\windows\system32\ieetwcollector.exe
2015-03-11 14:40:34 ----A---- C:\windows\system32\iernonce.dll
2015-03-11 14:40:34 ----A---- C:\windows\system32\ie4uinit.exe
2015-03-11 14:40:33 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-11 14:40:33 ----A---- C:\windows\system32\iedkcs32.dll
2015-03-11 14:40:32 ----A---- C:\windows\system32\urlmon.dll
2015-03-11 14:40:32 ----A---- C:\windows\system32\jsproxy.dll
2015-03-11 14:40:32 ----A---- C:\windows\system32\ieUnatt.exe
2015-03-11 14:40:30 ----A---- C:\windows\system32\jscript9diag.dll
2015-03-11 14:40:30 ----A---- C:\windows\system32\ieapfltr.dll
2015-03-11 14:40:30 ----A---- C:\windows\system32\dxtmsft.dll
2015-03-11 14:40:29 ----A---- C:\windows\system32\msfeeds.dll
2015-03-11 14:40:27 ----A---- C:\windows\system32\msrating.dll
2015-03-11 14:40:27 ----A---- C:\windows\system32\iesetup.dll
2015-03-11 14:40:26 ----A---- C:\windows\system32\wininet.dll
2015-03-11 14:40:26 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-03-11 14:40:25 ----A---- C:\windows\system32\dxtrans.dll
2015-03-11 14:40:24 ----A---- C:\windows\system32\ieui.dll
2015-03-11 14:40:24 ----A---- C:\windows\system32\ieframe.dll
2015-03-11 14:40:23 ----A---- C:\windows\system32\mshtmled.dll
2015-03-11 14:40:22 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-03-11 14:40:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-03-11 14:40:21 ----A---- C:\windows\system32\iertutil.dll
2015-03-11 14:40:20 ----A---- C:\windows\system32\mshtml.dll
2015-03-11 14:40:19 ----A---- C:\windows\system32\vbscript.dll
2015-03-11 14:40:19 ----A---- C:\windows\system32\jscript9.dll
2015-03-11 14:39:51 ----A---- C:\windows\system32\ubpm.dll
2015-03-11 14:39:48 ----A---- C:\windows\system32\schannel.dll
2015-03-11 14:39:48 ----A---- C:\windows\system32\lsasrv.dll
2015-03-11 14:39:48 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-03-11 14:39:48 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-03-11 14:39:47 ----A---- C:\windows\system32\TSpkg.dll
2015-03-11 14:39:47 ----A---- C:\windows\system32\ncrypt.dll
2015-03-11 14:39:47 ----A---- C:\windows\system32\msv1_0.dll
2015-03-11 14:39:47 ----A---- C:\windows\system32\kerberos.dll
2015-03-11 14:39:46 ----A---- C:\windows\system32\wdigest.dll
2015-03-11 14:39:46 ----A---- C:\windows\system32\lsass.exe
2015-03-11 14:39:46 ----A---- C:\windows\system32\auditpol.exe
2015-03-11 14:39:45 ----A---- C:\windows\system32\sspisrv.dll
2015-03-11 14:39:45 ----A---- C:\windows\system32\sspicli.dll
2015-03-11 14:39:45 ----A---- C:\windows\system32\secur32.dll
2015-03-11 14:39:45 ----A---- C:\windows\system32\credssp.dll
2015-03-11 14:39:44 ----A---- C:\windows\system32\msaudite.dll
2015-03-11 14:39:44 ----A---- C:\windows\system32\adtschema.dll
2015-03-11 14:39:43 ----A---- C:\windows\system32\msobjs.dll
2015-03-11 14:39:31 ----A---- C:\windows\system32\atmfd.dll
2015-03-11 14:39:30 ----A---- C:\windows\system32\lpk.dll
2015-03-11 14:39:30 ----A---- C:\windows\system32\fontsub.dll
2015-03-11 14:39:30 ----A---- C:\windows\system32\dciman32.dll
2015-03-11 14:39:30 ----A---- C:\windows\system32\atmlib.dll
2015-03-11 14:39:28 ----A---- C:\windows\system32\WMPhoto.dll
2015-03-11 14:39:22 ----A---- C:\windows\system32\drmv2clt.dll
2015-03-11 14:39:22 ----A---- C:\windows\system32\blackbox.dll
2015-03-11 14:39:21 ----A---- C:\windows\system32\wmp.dll
2015-03-11 14:39:21 ----A---- C:\windows\system32\wmdrmsdk.dll
2015-03-11 14:39:21 ----A---- C:\windows\system32\mf.dll
2015-03-11 14:39:20 ----A---- C:\windows\system32\drmmgrtn.dll
2015-03-11 14:39:19 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-03-11 14:39:19 ----A---- C:\windows\system32\drivers\PEAuth.sys
2015-03-11 14:39:19 ----A---- C:\windows\system32\crypt32.dll
2015-03-11 14:39:18 ----A---- C:\windows\system32\ntoskrnl.exe
2015-03-11 14:39:18 ----A---- C:\windows\system32\evr.dll
2015-03-11 14:39:17 ----A---- C:\windows\system32\quartz.dll
2015-03-11 14:39:17 ----A---- C:\windows\system32\drivers\cng.sys
2015-03-11 14:39:16 ----A---- C:\windows\system32\pcasvc.dll
2015-03-11 14:39:16 ----A---- C:\windows\system32\mfplat.dll
2015-03-11 14:39:16 ----A---- C:\windows\system32\cryptui.dll
2015-03-11 14:39:15 ----A---- C:\windows\system32\winresume.exe
2015-03-11 14:39:14 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-03-11 14:39:14 ----A---- C:\windows\system32\cryptsp.dll
2015-03-11 14:39:13 ----A---- C:\windows\system32\srcore.dll
2015-03-11 14:39:13 ----A---- C:\windows\system32\ci.dll
2015-03-11 14:39:12 ----A---- C:\windows\system32\winload.exe
2015-03-11 14:39:10 ----A---- C:\windows\system32\rstrui.exe
2015-03-11 14:39:10 ----A---- C:\windows\system32\qdvd.dll
2015-03-11 14:39:09 ----A---- C:\windows\system32\wintrust.dll
2015-03-11 14:39:09 ----A---- C:\windows\system32\msscp.dll
2015-03-11 14:39:09 ----A---- C:\windows\system32\cryptnet.dll
2015-03-11 14:39:08 ----A---- C:\windows\system32\cryptsvc.dll
2015-03-11 14:39:08 ----A---- C:\windows\system32\audiodg.exe
2015-03-11 14:39:07 ----A---- C:\windows\system32\msnetobj.dll
2015-03-11 14:39:07 ----A---- C:\windows\system32\audiosrv.dll
2015-03-11 14:39:04 ----A---- C:\windows\system32\appidsvc.dll
2015-03-11 14:39:03 ----A---- C:\windows\system32\AudioEng.dll
2015-03-11 14:39:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2015-03-11 14:39:02 ----A---- C:\windows\system32\rrinstaller.exe
2015-03-11 14:39:02 ----A---- C:\windows\system32\pcadm.dll
2015-03-11 14:39:02 ----A---- C:\windows\system32\drivers\appid.sys
2015-03-11 14:39:02 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-03-11 14:39:01 ----A---- C:\windows\system32\smss.exe
2015-03-11 14:39:01 ----A---- C:\windows\system32\mfps.dll
2015-03-11 14:39:00 ----A---- C:\windows\system32\appidapi.dll
2015-03-11 14:38:59 ----A---- C:\windows\system32\srclient.dll
2015-03-11 14:38:59 ----A---- C:\windows\system32\pcawrk.exe
2015-03-11 14:38:59 ----A---- C:\windows\system32\mfpmp.exe
2015-03-11 14:38:59 ----A---- C:\windows\system32\AudioSes.dll
2015-03-11 14:38:58 ----A---- C:\windows\system32\setbcdlocale.dll
2015-03-11 14:38:58 ----A---- C:\windows\system32\pcalua.exe
2015-03-11 14:38:58 ----A---- C:\windows\system32\EncDump.dll
2015-03-11 14:38:58 ----A---- C:\windows\system32\csrsrv.dll
2015-03-11 14:38:57 ----A---- C:\windows\system32\msmmsp.dll
2015-03-11 14:38:57 ----A---- C:\windows\system32\appidcertstorecheck.exe
2015-03-11 14:38:55 ----A---- C:\windows\system32\spwmp.dll
2015-03-11 14:38:54 ----A---- C:\windows\system32\dxmasf.dll
2015-03-11 14:38:53 ----A---- C:\windows\system32\pcaevts.dll
2015-03-11 14:38:53 ----A---- C:\windows\system32\apisetschema.dll
2015-03-11 14:38:52 ----A---- C:\windows\system32\wmploc.DLL
2015-03-11 14:38:49 ----A---- C:\windows\system32\mferror.dll
2015-02-25 20:42:48 ----A---- C:\windows\system32\wdi.dll
2015-02-25 20:42:48 ----A---- C:\windows\system32\powertracker.dll
2015-02-25 20:42:48 ----A---- C:\windows\system32\perftrack.dll

======List of files/folders modified in the last 1 month======

2015-03-21 10:35:11 ----D---- C:\windows\Temp
2015-03-21 10:35:08 ----RD---- C:\Program Files
2015-03-21 09:30:27 ----D---- C:\windows\system32\config
2015-03-21 09:22:02 ----D---- C:\Program Files\Google
2015-03-21 09:21:16 ----D---- C:\ProgramData\Google
2015-03-21 09:21:15 ----SHD---- C:\windows\Installer
2015-03-21 09:21:15 ----SHD---- C:\Config.Msi
2015-03-21 09:18:33 ----D---- C:\Users\TRTÍK\AppData\Roaming\OpenOffice.org2
2015-03-21 09:15:26 ----D---- C:\ProgramData\HPQLOG
2015-03-21 09:15:21 ----A---- C:\windows\system32\log.txt
2015-03-21 09:15:17 ----D---- C:\Windows
2015-03-20 23:08:21 ----D---- C:\windows\system32\drivers
2015-03-20 22:53:56 ----SHD---- C:\System Volume Information
2015-03-20 21:18:42 ----HD---- C:\ProgramData
2015-03-20 21:17:58 ----RSD---- C:\windows\assembly
2015-03-20 21:17:45 ----D---- C:\Program Files\Microsoft.NET
2015-03-20 21:17:45 ----D---- C:\Program Files\Microsoft Office
2015-03-20 21:17:45 ----D---- C:\Program Files\Common Files\microsoft shared
2015-03-20 21:17:31 ----D---- C:\windows\System32
2015-03-20 21:17:31 ----D---- C:\Program Files\Common Files
2015-03-20 21:17:30 ----D---- C:\windows\inf
2015-03-20 21:15:41 ----HD---- C:\Program Files\InstallShield Installation Information
2015-03-20 21:11:09 ----D---- C:\ProgramData\Microsoft Help
2015-03-20 21:10:44 ----D---- C:\windows\ShellNew
2015-03-20 21:10:35 ----RSD---- C:\windows\Fonts
2015-03-20 21:07:37 ----A---- C:\windows\win.ini
2015-03-20 20:55:01 ----D---- C:\windows\debug
2015-03-20 20:48:50 ----D---- C:\Users\TRTÍK\AppData\Roaming\ICQ
2015-03-20 20:34:23 ----D---- C:\ProgramData\MFAData
2015-03-20 20:22:25 ----D---- C:\ProgramData\AVG2012
2015-03-20 16:30:00 ----D---- C:\ProgramData\PDFC
2015-03-18 18:44:28 ----D---- C:\windows\Tasks
2015-03-18 18:44:28 ----D---- C:\windows\system32\Tasks
2015-03-16 17:15:52 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-03-16 16:34:13 ----D---- C:\windows\Prefetch
2015-03-13 21:08:35 ----D---- C:\windows\rescache
2015-03-12 18:10:44 ----D---- C:\windows\winsxs
2015-03-12 16:54:33 ----D---- C:\windows\system32\en-US
2015-03-12 16:54:27 ----D---- C:\Program Files\Internet Explorer
2015-03-12 16:54:22 ----D---- C:\windows\system32\cs-CZ
2015-03-12 16:54:15 ----D---- C:\Program Files\Windows Media Player
2015-03-12 16:54:13 ----D---- C:\windows\system32\Dism
2015-03-12 16:53:57 ----D---- C:\windows\system32\Boot
2015-03-12 16:53:56 ----D---- C:\windows\system32\CodeIntegrity
2015-03-12 16:51:29 ----D---- C:\windows\system32\MRT
2015-03-12 16:35:33 ----A---- C:\windows\system32\MRT.exe
2015-03-11 14:36:37 ----D---- C:\windows\system32\catroot2
2015-02-26 16:11:44 ----D---- C:\windows\tracing

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHX;AVGIDSHX; C:\windows\system32\DRIVERS\avgidshx.sys [2012-04-19 24896]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R1 Avgldx86;AVG AVI Loader Driver; C:\windows\system32\DRIVERS\avgldx86.sys [2012-07-26 237408]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\windows\system32\DRIVERS\avgmfx86.sys [2011-12-23 41040]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2009-12-20 249888]
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 73344]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\windows\system32\DRIVERS\stwrt.sys [2013-07-10 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-04 231600]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUSB;WinUSB Service; C:\windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AVGIDSDriver;AVGIDSDriver; C:\windows\system32\DRIVERS\avgidsdriverx.sys [2011-12-23 139856]
S3 AVGIDSFilter;AVGIDSFilter; C:\windows\system32\DRIVERS\avgidsfilterx.sys [2011-12-23 24144]
S3 AVGIDSShim;AVGIDSShim; C:\windows\system32\DRIVERS\avgidsshimx.sys [2011-12-23 17232]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-04-11 89856]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 184192]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbrndis6;Adaptér USB RNDIS6; C:\windows\system32\DRIVERS\usb80236.sys [2013-02-12 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-07-10 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 300880]
R2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25 107912]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2009-12-16 102968]
R2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-07-10 254034]
R2 uArcCapture;ArcCapture; C:\windows\system32\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R3 BBUpdate;BBUpdate; C:\Program Files\Microsoft\BingBar\7.3.132.0\SeaPort.exe [2014-03-11 247968]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 BBSvc;BingBar Service; C:\Program Files\Microsoft\BingBar\7.3.132.0\BBSvc.exe [2014-03-11 193696]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2010-02-18 1664304]
S3 602SQL 8 FastCGI Client;602SQL 8 FastCGI Client; C:\Program Files\Software602\602SQL95\602FSVC8.EXE []
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04 267440]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-06-20 1343400]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#10 Příspěvek od **Márty84** » 21 bře 2015 11:12

Stale tam bezi McAfee i AVG. Pere se to mezi sebou a dela to problemy. Odinstalujte to

Pak pouzijte http://download.mcafee.com/products/lic ... s/MCPR.exe

a taky http://download.avg.com/filedir/util/su ... 5_5501.exe

Nainstalujte jiny antivir, treba Avast free, nebo v nejhorsim treba i to AVG, ale novou verzi.

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

industrol · #11 Příspěvek od **industrol** » 21 bře 2015 11:38

Avg jsem se tímto programem pokoušel odstranit už včera a stejný neúspěšný výsledek jako dnes.

ComboFix 15-03-14.03 - TRTÍK 21.03.2015 11:27:03.1.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.2991.1351 [GMT 1:00]
Spuštěný z: c:\users\TRT=K\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\pt
c:\windows\system32\pt\DPCont32.dll.mui
c:\windows\system32\pt\DPStoreMan.dll.mui
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-02-21 do 2015-03-21 )))))))))))))))))))))))))))))))
.
.
2015-03-21 09:35 . 2015-03-21 10:01 -------- d-----w- c:\program files\trend micro
2015-03-21 09:35 . 2015-03-21 09:36 -------- d-----w- C:\rsit
2015-03-20 20:23 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-03-20 20:20 . 2015-03-20 20:20 -------- d-----w- c:\users\TRTÍK\AppData\Roaming\Malwarebytes
2015-03-20 20:19 . 2015-03-20 20:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2015-03-20 20:13 . 2015-03-20 20:13 -------- d-----w- c:\users\TRTÍK\AppData\Roaming\InstallShield
2015-03-20 20:05 . 2015-02-16 04:21 9041640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{491FF297-4D57-4B3E-BD79-67B71C4EFD53}\mpengine.dll
2015-03-20 20:05 . 2015-02-24 03:23 246920 ------w- c:\windows\system32\MpSigStub.exe
2015-03-20 19:58 . 2015-03-20 20:19 -------- d-----w- c:\programdata\Malwarebytes
2015-03-20 19:43 . 2015-03-20 19:46 -------- d-----w- C:\AdwCleaner
2015-03-20 19:40 . 2015-03-20 19:40 -------- d-----w- c:\users\TRTÍK\AppData\Local\Avg2015
2015-03-20 19:33 . 2008-05-22 09:15 434 ----a-w- c:\windows\myClean.bat
2015-03-20 19:29 . 2015-03-20 19:29 -------- d-sh--w- c:\users\TRTÍK\AppData\Local\EmieBrowserModeList
2015-03-20 18:27 . 2015-03-20 18:32 -------- d-----w- C:\FRST
2015-03-11 13:39 . 2015-02-03 03:12 171520 ----a-w- c:\windows\system32\ubpm.dll
2015-03-11 13:38 . 2015-02-03 03:12 43008 ----a-w- c:\windows\system32\srclient.dll
2015-02-25 19:42 . 2015-01-09 02:48 76800 ----a-w- c:\windows\system32\wdi.dll
2015-02-25 19:42 . 2015-01-09 02:48 635904 ----a-w- c:\windows\system32\perftrack.dll
2015-02-25 19:42 . 2015-01-09 02:48 27136 ----a-w- c:\windows\system32\powertracker.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-03-06 05:10 . 2015-03-11 13:39 248832 ----a-w- c:\windows\system32\schannel.dll
2015-02-17 15:04 . 2015-02-17 15:04 1202848 ----a-w- c:\windows\system32\FM20.DLL
2015-02-04 20:03 . 2012-04-29 09:02 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-02-04 20:03 . 2011-09-29 16:50 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-02-04 02:54 . 2015-02-11 13:45 482304 ----a-w- c:\windows\system32\generaltel.dll
2015-02-04 02:53 . 2015-02-11 13:45 621056 ----a-w- c:\windows\system32\invagent.dll
2015-02-04 02:53 . 2015-02-11 13:45 325632 ----a-w- c:\windows\system32\devinv.dll
2015-02-04 02:53 . 2015-02-11 13:45 767488 ----a-w- c:\windows\system32\appraiser.dll
2015-02-04 02:53 . 2015-02-11 13:45 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-02-04 02:53 . 2015-02-11 13:45 159744 ----a-w- c:\windows\system32\aepic.dll
2015-02-04 02:49 . 2015-02-11 13:45 886784 ----a-w- c:\windows\system32\aeinv.dll
2015-01-27 23:36 . 2015-02-11 13:45 1167520 ----a-w- c:\windows\system32\aitstatic.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-01-04 1594664]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-12-09 98304]
"DTRun"="c:\program files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2009-11-19 518656]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2013-07-10 495708]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-04-04 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-11-17 22:39 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^TRTÍK^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.0.lnk]
path=c:\users\TRTÍK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk
backup=c:\windows\pss\OpenOffice.org 2.0.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY]
2012-07-31 01:37 2596984 ----a-w- c:\program files\AVG\AVG2012\avgtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
2009-12-12 01:57 11265536 ----a-w- c:\program files\Hewlett-Packard\File Sanitizer\coreshredder.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
2009-09-29 23:26 1685048 ----a-w- c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
2009-12-16 22:48 1690680 ----a-w- c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
2009-12-16 22:51 8192 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2012-02-01 12:47 127040 ----a-w- c:\program files\ICQ7.7\ICQ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
2014-04-23 12:19 1564992 ----a-w- c:\program files\Samsung\Kies\Kies.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
2014-04-23 12:19 311616 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
2009-10-23 19:52 563736 ----a-w- c:\program files\PDF Complete\pdfsty.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
2010-01-05 03:35 254520 ----a-w- c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe
.
3;1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-02-18 1664304]
R3 602SQL 8 FastCGI Client;602SQL 8 FastCGI Client;c:\program files\Software602\602SQL95\602FSVC8.EXE [x]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [2011-12-23 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfilterx.sys [2011-12-23 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [2011-12-23 17232]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2014-04-11 89856]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2009-11-17 362040]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-11-11 181792]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 184192]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 usbrndis6;Adaptér USB RNDIS6;c:\windows\system32\DRIVERS\usb80236.sys [2013-02-12 15872]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-20 1343400]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2012-04-19 24896]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 RsvLock;RsvLock; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\aestsrv.exe [2013-07-10 81920]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-12-08 172032]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2009-12-16 102968]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
S2 uArcCapture;ArcCapture;c:\windows\system32\uArcCapture.exe [2009-12-04 506472]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-12-20 249888]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 21:37 73344]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 20:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-03-21 08:22 1061704 ----a-w- c:\program files\Google\Chrome\Application\41.0.2272.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-03-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-29 20:03]
.
2015-03-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-28 07:03]
.
2015-03-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-28 07:03]
.
2015-03-18 c:\windows\Tasks\HPCeeScheduleForTRTÍK.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 03:43]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-AvgRemover - c:\users\TRTÍK\Downloads\avg_remover_stf_x86_2012_2125.exe
MSConfigStartUp-Guard.Mail.ru - c:\program files\Guard-ICQ\GuardICQ.exe
MSConfigStartUp-KiesAirMessage - c:\program files\Samsung\Kies\KiesAirMessage.exe
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
AddRemove-{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} - c:\program files\InstallShield Installation Information\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(940)
c:\windows\system32\DPFPApi.DLL
.
Celkový čas: 2015-03-21 11:36:12
ComboFix-quarantined-files.txt 2015-03-21 10:36
.
Před spuštěním: Volných bajtů: 108 389 126 144
Po spuštění: Volných bajtů: 108 079 484 928
.
- - End Of File - - 8973C1ACD73941B26869541A0475428A
5C616939100B85E558DA92B899A0FC36

#12 Příspěvek od **Márty84** » 21 bře 2015 15:01

Vypnete trvale Windows Defender.

Presunte ComboFix primo na disk C (takze cesta k nemu bude c:\ComboFix.exe )!

Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

File::
c:\windows\system32\DRIVERS\avgldx86.sys
c:\windows\system32\DRIVERS\avgidsdriverx.sys
c:\windows\system32\DRIVERS\avgidsfilterx.sys
c:\windows\system32\DRIVERS\avgidsshimx.sys
c:\windows\system32\DRIVERS\avgidshx.sys

Folder::
c:\users\TRTÍK\AppData\Local\Avg2015
c:\program files\AVG

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

DDS::
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www

Driver::
Avgldx86
SkypeUpdate
AVGIDSDriver
AVGIDSFilter
AVGIDSShim
AVGIDSHX

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte take primo na C (takze cesta k nemu bude c:\CFScript.txt ).
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

industrol · #13 Příspěvek od **industrol** » 22 bře 2015 18:21

ComboFix 15-03-14.03 - TRTÍK 22.03.2015 18:08:30.3.4 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.2991.1680 [GMT 1:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: C:\CFScript.txt
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\DRIVERS\avgidsdriverx.sys"
"c:\windows\system32\DRIVERS\avgidsfilterx.sys"
"c:\windows\system32\DRIVERS\avgidshx.sys"
"c:\windows\system32\DRIVERS\avgidsshimx.sys"
"c:\windows\system32\DRIVERS\avgldx86.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\AVG
c:\program files\AVG\AVG2012\avgabout.dll
c:\program files\AVG\AVG2012\avgadvisorx.dll
c:\program files\AVG\AVG2012\avgamnot.dll
c:\program files\AVG\AVG2012\avgapiimplx.dll
c:\program files\AVG\AVG2012\avgapix.dll
c:\program files\AVG\AVG2012\avgapps.dll
c:\program files\AVG\AVG2012\avgatend.stp
c:\program files\AVG\AVG2012\avgatupd.stp
c:\program files\AVG\AVG2012\avgcclix.dll
c:\program files\AVG\AVG2012\avgceix.dll
c:\program files\AVG\AVG2012\avgcertx.dll
c:\program files\AVG\AVG2012\avgcfgex.exe
c:\program files\AVG\AVG2012\avgcfgx.dll
c:\program files\AVG\AVG2012\avgclitx.dll
c:\program files\AVG\AVG2012\avgcmgr.exe
c:\program files\AVG\AVG2012\avgcorex.dll
c:\program files\AVG\AVG2012\avgcorex.dll.old
c:\program files\AVG\AVG2012\avgcremx.exe
c:\program files\AVG\AVG2012\avgcslx.dll
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\AVG\AVG2012\avgdecider.dll
c:\program files\AVG\AVG2012\avgdiagex.exe
c:\program files\AVG\AVG2012\avgdtiex.dll
c:\program files\AVG\AVG2012\avgdumpx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\program files\AVG\AVG2012\avgchclx.dll
c:\program files\AVG\AVG2012\avgchjwx.dll
c:\program files\AVG\AVG2012\avgidpmx.dll
c:\program files\AVG\AVG2012\avgidpsdkx.dll
c:\program files\AVG\AVG2012\avgidsagent.exe
c:\program files\AVG\AVG2012\avglngx.dll
c:\program files\AVG\AVG2012\avglogx.dll
c:\program files\AVG\AVG2012\avglscanx.exe
c:\program files\AVG\AVG2012\avgmfapx.exe
c:\program files\AVG\AVG2012\avgmfarx.dll
c:\program files\AVG\AVG2012\avgmvflx.dll
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgntdumpx.exe
c:\program files\AVG\AVG2012\avgntopensslx.dll
c:\program files\AVG\AVG2012\avgntsqlitex.dll
c:\program files\AVG\AVG2012\avgopensslx.dll
c:\program files\AVG\AVG2012\avgoutlookx.dll
c:\program files\AVG\AVG2012\avgpostinstx.dll
c:\program files\AVG\AVG2012\avgpp.dll
c:\program files\AVG\AVG2012\avgresf.dll
c:\program files\AVG\AVG2012\avgrktx.dll
c:\program files\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgsbgx.dll
c:\program files\AVG\AVG2012\avgscanx.dll
c:\program files\AVG\AVG2012\avgscanx.exe
c:\program files\AVG\AVG2012\avgse.dll
c:\program files\AVG\AVG2012\avgsched.dll
c:\program files\AVG\AVG2012\avgsrmax.exe
c:\program files\AVG\AVG2012\avgsrmx.dll
c:\program files\AVG\AVG2012\avgssie.dll
c:\program files\AVG\AVG2012\avgsysx.dll
c:\program files\AVG\AVG2012\AVGTBInstall.exe
c:\program files\AVG\AVG2012\avgtray.exe
c:\program files\AVG\AVG2012\avgui.exe
c:\program files\AVG\AVG2012\avguiadv.dll
c:\program files\AVG\AVG2012\avguires.dll
c:\program files\AVG\AVG2012\avguirux.exe
c:\program files\AVG\AVG2012\avgupdx.dll
c:\program files\AVG\AVG2012\avgutilx.dll
c:\program files\AVG\AVG2012\avgvvx.dll
c:\program files\AVG\AVG2012\avgwd.dll
c:\program files\AVG\AVG2012\avgwdsvc.exe
c:\program files\AVG\AVG2012\avgwdwsc.dll
c:\program files\AVG\AVG2012\avgwebui.dll
c:\program files\AVG\AVG2012\avgwsc.exe
c:\program files\AVG\AVG2012\avgxpl.dll
c:\program files\AVG\AVG2012\awacs\rules.cat
c:\program files\AVG\AVG2012\awacs\rules.js
c:\program files\AVG\AVG2012\axioo.dll
c:\program files\AVG\AVG2012\compat.ini
c:\program files\AVG\AVG2012\Drivers\avgidsdriver.cat
c:\program files\AVG\AVG2012\Drivers\avgidsdriver.inf
c:\program files\AVG\AVG2012\Drivers\avgidsdrivera.sys
c:\program files\AVG\AVG2012\Drivers\avgidsdriverx.sys
c:\program files\AVG\AVG2012\Drivers\avgidsfilter.cat
c:\program files\AVG\AVG2012\Drivers\avgidsfilter.inf
c:\program files\AVG\AVG2012\Drivers\avgidsfiltera.sys
c:\program files\AVG\AVG2012\Drivers\avgidsfilterx.sys
c:\program files\AVG\AVG2012\Drivers\avgidsh.cat
c:\program files\AVG\AVG2012\Drivers\avgidsh.inf
c:\program files\AVG\AVG2012\Drivers\avgidsha.sys
c:\program files\AVG\AVG2012\Drivers\avgidshx.sys
c:\program files\AVG\AVG2012\Drivers\avgidsshim.cat
c:\program files\AVG\AVG2012\Drivers\avgidsshim.inf
c:\program files\AVG\AVG2012\Drivers\avgidsshimx.sys
c:\program files\AVG\AVG2012\Drivers\avgidsuniversalddx.sys
c:\program files\AVG\AVG2012\Drivers\avgld.cat
c:\program files\AVG\AVG2012\Drivers\avgld.inf
c:\program files\AVG\AVG2012\Drivers\avgldx64.sys
c:\program files\AVG\AVG2012\Drivers\avgldx86.sys
c:\program files\AVG\AVG2012\Drivers\avgmf.cat
c:\program files\AVG\AVG2012\Drivers\avgmf.inf
c:\program files\AVG\AVG2012\Drivers\avgmfx64.sys
c:\program files\AVG\AVG2012\Drivers\avgmfx86.sys
c:\program files\AVG\AVG2012\Drivers\avgrk.cat
c:\program files\AVG\AVG2012\Drivers\avgrk.inf
c:\program files\AVG\AVG2012\Drivers\avgrkx64.sys
c:\program files\AVG\AVG2012\Drivers\avgrkx86.sys
c:\program files\AVG\AVG2012\Drivers\avgtdi.cat
c:\program files\AVG\AVG2012\Drivers\avgtdi.inf
c:\program files\AVG\AVG2012\Drivers\avgtdia.sys
c:\program files\AVG\AVG2012\Drivers\avgtdix.sys
c:\program files\AVG\AVG2012\Firefox\DoNotTrack\components\avg-dnt-policy.js
c:\program files\AVG\AVG2012\Firefox\DoNotTrack\components\avg-dnt-protocol.js
c:\program files\AVG\AVG2012\Firefox\DoNotTrack\defaults\preferences\defaults.js
c:\program files\AVG\AVG2012\Firefox\DoNotTrack\chrome.manifest
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff10.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff11.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff12.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff13.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff5.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff6.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff7.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff8.dll
c:\program files\AVG\AVG2012\Firefox4\Components\avgssff9.dll
c:\program files\AVG\AVG2012\Firefox4\chrome.manifest
c:\program files\AVG\AVG2012\fixcfg.exe
c:\program files\AVG\AVG2012\HtmLayout.dll
c:\program files\AVG\AVG2012\idpfixx.exe
c:\program files\AVG\AVG2012\PCTuneup\AxBrowsers.dll
c:\program files\AVG\AVG2012\PCTuneup\DiskCleanerHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\DiskDefragHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\helper.dll
c:\program files\AVG\AVG2012\PCTuneup\localizer.dll
c:\program files\AVG\AVG2012\PCTuneup\MicroScanner.exe
c:\program files\AVG\AVG2012\PCTuneup\MicroScannerElevation.dll
c:\program files\AVG\AVG2012\PCTuneup\RegistryCleanerHelper.dll
c:\program files\AVG\AVG2012\PCTuneup\RescueCenterHelper.dll
c:\program files\AVG\AVG2013\3rd_party\licenses\ace.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\arabica.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\boost.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\bsdiff.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\bzip.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\carp.html
c:\program files\AVG\AVG2013\3rd_party\licenses\cryptopp.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\curl.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\dazukofs.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\expat.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\imagemagick.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\infozip.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\lua.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\md4_md5_license.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\milter.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\minizip.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\openssl_license.html
c:\program files\AVG\AVG2013\3rd_party\licenses\sasl.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\tinyxml.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\unrar.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\untar.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\xalan_xerces.txt
c:\program files\AVG\AVG2013\3rd_party\licenses\zlib.txt
c:\program files\AVG\AVG2013\3rd_party\readme.txt
c:\program files\AVG\AVG2013\avg.snu
c:\program files\AVG\AVG2013\avg_cz.lng
c:\program files\AVG\AVG2013\avg_us.lng
c:\program files\AVG\AVG2013\avgar_cz.chm
c:\program files\AVG\AVG2013\avgar_us.chm
c:\program files\AVG\AVG2013\avgcorex.dll
c:\program files\AVG\AVG2013\avgcremx.exe
c:\program files\AVG\AVG2013\avgdg_cz.chm
c:\program files\AVG\AVG2013\avgdg_us.chm
c:\program files\AVG\AVG2013\avgf_cz.chm
c:\program files\AVG\AVG2013\avgf_us.chm
c:\program files\AVG\AVG2013\avgidp_cz.chm
c:\program files\AVG\AVG2013\avgidp_us.chm
c:\program files\AVG\AVG2013\avgls_cz.chm
c:\program files\AVG\AVG2013\avgls_us.chm
c:\program files\AVG\AVG2013\avgupd.sig
c:\program files\AVG\AVG2013\awacs\dav\component\content.dat
c:\program files\AVG\AVG2013\awacs\dav\component\image.bmp
c:\program files\AVG\AVG2013\awacs\dav\sign.bin
c:\program files\AVG\AVG2013\awacs\familysafety\component\content.dat
c:\program files\AVG\AVG2013\awacs\familysafety\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\familysafety\sign.bin
c:\program files\AVG\AVG2013\awacs\fas\component\content.dat
c:\program files\AVG\AVG2013\awacs\fas\component\image.bmp
c:\program files\AVG\AVG2013\awacs\fas\sign.bin
c:\program files\AVG\AVG2013\awacs\firewall\component\content.dat
c:\program files\AVG\AVG2013\awacs\firewall\component\firewall.png
c:\program files\AVG\AVG2013\awacs\firewall\component\fwfree.html
c:\program files\AVG\AVG2013\awacs\firewall\component\style.css
c:\program files\AVG\AVG2013\awacs\firewall\sign.bin
c:\program files\AVG\AVG2013\awacs\firewallicon\component\content.dat
c:\program files\AVG\AVG2013\awacs\firewallicon\component\firewall.gif
c:\program files\AVG\AVG2013\awacs\firewallicon\component\firewall.png
c:\program files\AVG\AVG2013\awacs\firewallicon\component\fwfree.html
c:\program files\AVG\AVG2013\awacs\firewallicon\component\fwfree_us.html
c:\program files\AVG\AVG2013\awacs\firewallicon\component\style.css
c:\program files\AVG\AVG2013\awacs\firewallicon\sign.bin
c:\program files\AVG\AVG2013\awacs\livekive\component\content.dat
c:\program files\AVG\AVG2013\awacs\livekive\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\livekive\sign.bin
c:\program files\AVG\AVG2013\awacs\mobilation\component\content.dat
c:\program files\AVG\AVG2013\awacs\mobilation\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\mobilation\sign.bin
c:\program files\AVG\AVG2013\awacs\mobilation_en\component\content.dat
c:\program files\AVG\AVG2013\awacs\mobilation_en\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\mobilation_en\sign.bin
c:\program files\AVG\AVG2013\awacs\multimi\component\content.dat
c:\program files\AVG\AVG2013\awacs\multimi\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\multimi\sign.bin
c:\program files\AVG\AVG2013\awacs\obx\component\content.dat
c:\program files\AVG\AVG2013\awacs\obx\component\image.bmp
c:\program files\AVG\AVG2013\awacs\obx\sign.bin
c:\program files\AVG\AVG2013\awacs\pct.an\component\background.bmp
c:\program files\AVG\AVG2013\awacs\pct.an\component\content.dat
c:\program files\AVG\AVG2013\awacs\pct.an\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\pct.an\sign.bin
c:\program files\AVG\AVG2013\awacs\pct\component\content.dat
c:\program files\AVG\AVG2013\awacs\pct\component\image.bmp
c:\program files\AVG\AVG2013\awacs\pct\sign.bin
c:\program files\AVG\AVG2013\awacs\speedtest\component\content.dat
c:\program files\AVG\AVG2013\awacs\speedtest\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\speedtest\sign.bin
c:\program files\AVG\AVG2013\awacs\techbuddy\component\content.dat
c:\program files\AVG\AVG2013\awacs\techbuddy\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\techbuddy\sign.bin
c:\program files\AVG\AVG2013\awacs\upgrade\component\content.dat
c:\program files\AVG\AVG2013\awacs\upgrade\component\icon.bmp
c:\program files\AVG\AVG2013\awacs\upgrade\sign.bin
c:\program files\AVG\AVG2013\bnfree.mht
c:\program files\AVG\AVG2013\bnpaid.mht
c:\program files\AVG\AVG2013\bnpaidexp.mht
c:\program files\AVG\AVG2013\bnpaidnotice.mht
c:\program files\AVG\AVG2013\bnsales.mht
c:\program files\AVG\AVG2013\bntrial.mht
c:\program files\AVG\AVG2013\cf.dat
c:\program files\AVG\AVG2013\contacts_cz.html
c:\program files\AVG\AVG2013\contacts_us.html
c:\program files\AVG\AVG2013\dfncfg.dat
c:\program files\AVG\AVG2013\eus.dat
c:\program files\AVG\AVG2013\html\reportcard\avg_logo.png
c:\program files\AVG\AVG2013\html\reportcard\awards.png
c:\program files\AVG\AVG2013\html\reportcard\index.html
c:\program files\AVG\AVG2013\html\reportcard\menu-bg.png
c:\program files\AVG\AVG2013\html\reportcard\menu-content-bg.png
c:\program files\AVG\AVG2013\html\reportcard\reportcard.css
c:\program files\AVG\AVG2013\html\reportcard\table_bg.png
c:\program files\AVG\AVG2013\js.dat
c:\program files\AVG\AVG2013\license_cz.htm
c:\program files\AVG\AVG2013\license_us.htm
c:\program files\AVG\AVG2013\mfacz.lns
c:\program files\AVG\AVG2013\mfaus.lns
c:\program files\AVG\AVG2013\mfaverx.txt
c:\program files\AVG\AVG2013\personalise_cz.htm
c:\program files\AVG\AVG2013\personalise_us.htm
c:\program files\AVG\AVG2013\ph.dat
c:\program files\AVG\AVG2013\privacy_policy_cz.htm
c:\program files\AVG\AVG2013\privacy_policy_us.htm
c:\program files\AVG\AVG2013\sb.dat
c:\program files\AVG\AVG2013\sb.dat.xcd
c:\program files\AVG\AVG2013\sb2.dat
c:\program files\AVG\AVG2013\sc.dat
c:\program files\AVG\AVG2013\sc.dat.xcd
c:\program files\AVG\AVG2013\sounds\scan_finish_threat_found.wav
c:\program files\AVG\AVG2013\sounds\scan_os_alert.wav
c:\program files\AVG\AVG2013\sounds\scan_rs_alert.wav
c:\program files\AVG\AVG2013\sounds\update_end_fail.wav
c:\program files\AVG\AVG2013\srb.mht
c:\program files\AVG\AVG2013\Tuneup\TUDiskCleaner.dat
c:\program files\AVG\AVG2013\Tuneup\TUDiskCleanerLite.dat
c:\program files\AVG\AVG2013\Tuneup\TuneUpCore.bpl
c:\program files\AVG\AVG2013\updatecomps.bak
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_AVGIDSDRIVER
-------\Legacy_AVGIDSFILTER
-------\Legacy_AVGIDSHX
-------\Legacy_AVGIDSSHIM
-------\Legacy_AVGLDX86
-------\Service_AVGIDSDriver
-------\Service_AVGIDSFilter
-------\Service_AVGIDSHX
-------\Service_AVGIDSShim
-------\Service_Avgldx86
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-02-22 do 2015-03-22 )))))))))))))))))))))))))))))))
.
.
2015-03-22 17:14 . 2015-03-22 17:16 -------- d-----w- c:\users\TRTÍK\AppData\Local\temp
2015-03-22 17:14 . 2015-03-22 17:14 -------- d-----w- c:\users\TRTÖK\AppData\Local\temp
2015-03-22 17:14 . 2015-03-22 17:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-03-22 13:55 . 2015-03-22 13:55 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{491FF297-4D57-4B3E-BD79-67B71C4EFD53}\offreg.dll
2015-03-21 09:35 . 2015-03-21 10:01 -------- d-----w- c:\program files\trend micro
2015-03-21 09:35 . 2015-03-21 09:36 -------- d-----w- C:\rsit
2015-03-20 20:23 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-03-20 20:20 . 2015-03-20 20:20 -------- d-----w- c:\users\TRTÍK\AppData\Roaming\Malwarebytes
2015-03-20 20:19 . 2015-03-20 20:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2015-03-20 20:13 . 2015-03-20 20:13 -------- d-----w- c:\users\TRTÍK\AppData\Roaming\InstallShield
2015-03-20 20:05 . 2015-02-16 04:21 9041640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{491FF297-4D57-4B3E-BD79-67B71C4EFD53}\mpengine.dll
2015-03-20 20:05 . 2015-02-24 03:23 246920 ------w- c:\windows\system32\MpSigStub.exe
2015-03-20 19:58 . 2015-03-20 20:19 -------- d-----w- c:\programdata\Malwarebytes
2015-03-20 19:43 . 2015-03-20 19:46 -------- d-----w- C:\AdwCleaner
2015-03-20 19:40 . 2015-03-20 19:40 -------- d-----w- c:\users\TRTÍK\AppData\Local\Avg2015
2015-03-20 19:33 . 2008-05-22 09:15 434 ----a-w- c:\windows\myClean.bat
2015-03-20 19:29 . 2015-03-20 19:29 -------- d-sh--w- c:\users\TRTÍK\AppData\Local\EmieBrowserModeList
2015-03-20 18:27 . 2015-03-20 18:32 -------- d-----w- C:\FRST
2015-03-11 13:39 . 2015-02-03 03:12 171520 ----a-w- c:\windows\system32\ubpm.dll
2015-03-11 13:38 . 2015-02-03 03:12 43008 ----a-w- c:\windows\system32\srclient.dll
2015-02-25 19:42 . 2015-01-09 02:48 76800 ----a-w- c:\windows\system32\wdi.dll
2015-02-25 19:42 . 2015-01-09 02:48 635904 ----a-w- c:\windows\system32\perftrack.dll
2015-02-25 19:42 . 2015-01-09 02:48 27136 ----a-w- c:\windows\system32\powertracker.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-03-06 05:10 . 2015-03-11 13:39 248832 ----a-w- c:\windows\system32\schannel.dll
2015-02-17 15:04 . 2015-02-17 15:04 1202848 ----a-w- c:\windows\system32\FM20.DLL
2015-02-04 20:03 . 2012-04-29 09:02 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-02-04 20:03 . 2011-09-29 16:50 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-02-04 02:54 . 2015-02-11 13:45 482304 ----a-w- c:\windows\system32\generaltel.dll
2015-02-04 02:53 . 2015-02-11 13:45 621056 ----a-w- c:\windows\system32\invagent.dll
2015-02-04 02:53 . 2015-02-11 13:45 325632 ----a-w- c:\windows\system32\devinv.dll
2015-02-04 02:53 . 2015-02-11 13:45 767488 ----a-w- c:\windows\system32\appraiser.dll
2015-02-04 02:53 . 2015-02-11 13:45 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-02-04 02:53 . 2015-02-11 13:45 159744 ----a-w- c:\windows\system32\aepic.dll
2015-02-04 02:49 . 2015-02-11 13:45 886784 ----a-w- c:\windows\system32\aeinv.dll
2015-01-27 23:36 . 2015-02-11 13:45 1167520 ----a-w- c:\windows\system32\aitstatic.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-01-04 1594664]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-12-09 98304]
"DTRun"="c:\program files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2009-11-19 518656]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2013-07-10 495708]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-04-04 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2009-11-17 22:39 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
backup=c:\windows\pss\Bluetooth.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^TRTÍK^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.0.lnk]
path=c:\users\TRTÍK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk
backup=c:\windows\pss\OpenOffice.org 2.0.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
2009-12-12 01:57 11265536 ----a-w- c:\program files\Hewlett-Packard\File Sanitizer\coreshredder.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
2009-09-29 23:26 1685048 ----a-w- c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
2009-12-16 22:48 1690680 ----a-w- c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
2009-12-16 22:51 8192 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
2010-01-05 03:35 254520 ----a-w- c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe
.
R2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-02-18 1664304]
R3 602SQL 8 FastCGI Client;602SQL 8 FastCGI Client;c:\program files\Software602\602SQL95\602FSVC8.EXE [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2014-04-11 89856]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\system32\flcdlock.exe [2009-11-17 362040]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-11-11 181792]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 184192]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 usbrndis6;Adaptér USB RNDIS6;c:\windows\system32\DRIVERS\usb80236.sys [2013-02-12 15872]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-20 1343400]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S1 RsvLock;RsvLock; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\aestsrv.exe [2013-07-10 81920]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-12-08 172032]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2009-12-16 102968]
S2 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
S2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
S2 uArcCapture;ArcCapture;c:\windows\system32\uArcCapture.exe [2009-12-04 506472]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-12-20 249888]
S3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 21:37 73344]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 20:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-03-21 08:22 1061704 ----a-w- c:\program files\Google\Chrome\Application\41.0.2272.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-03-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-29 20:03]
.
2015-03-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-28 07:03]
.
2015-03-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-28 07:03]
.
2015-03-18 c:\windows\Tasks\HPCeeScheduleForTRTÍK.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 03:43]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-AVG_TRAY - c:\program files\AVG\AVG2012\avgtray.exe
AddRemove-AVG - c:\program files\AVG\AVG2012\avgmfapx.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(640)
c:\windows\system32\DPFPApi.DLL
.
- - - - - - - > 'Explorer.exe'(4732)
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\IDT\WDM\STacSV.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\conhost.exe
c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
c:\windows\system32\taskhost.exe
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2015-03-22 18:20:42 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-03-22 17:20
ComboFix2.txt 2015-03-21 10:36
.
Před spuštěním: Volných bajtů: 107 040 952 320
Po spuštění: Volných bajtů: 108 898 971 648
.
- - End Of File - - 0F2B081F9AF9247FAA3CC179912E538D
5C616939100B85E558DA92B899A0FC36

#14 Příspěvek od **Márty84** » 22 bře 2015 20:24

Nainstalujte ted novy antivir, treba ten Avast free, nebo aspon to nove AVG, kdyz jiny nechcete.

Pak dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=30&t=130787

industrol · #15 Příspěvek od **industrol** » 05 dub 2015 19:58

Velice se omlouvám za zpoždění. Problém je vyřešen a chtěl bych se Vás zeptat kde byl problém.

Logfile of random's system information tool 1.10 (written by random/random)
Run by TRTÍK at 2015-04-05 20:57:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 104 GB (36%) free of 288 GB
Total RAM: 2991 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:04, on 5.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\TRTÍK\Downloads\RSIT (1).exe
C:\Program Files\trend micro\TRTÍK.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: 602SQL 8 FastCGI Client - Unknown owner - C:\Program Files\Software602\602SQL95\602FSVC8.EXE (file missing)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: @%SystemRoot%\system32\stlang.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system32\uArcCapture.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 10059 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForTRTÍK.job - C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForTRTÍK (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2009-12-12 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-28 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-01-04 1594664]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"DTRun"=c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2013-07-10 495708]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-30 1685048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [2009-12-17 1690680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-01-05 254520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-09-04 795936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^TRTÍK^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.0.lnk]
C:\PROGRA~1\OPENOF~1.0\program\QUICKS~1.EXE [2005-10-15 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-18 75320]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-04-04 12:14:26 ----SD---- C:\windows\system32\GWX
2015-03-25 15:31:38 ----A---- C:\windows\system32\generaltel.dll
2015-03-25 15:31:38 ----A---- C:\windows\system32\appraiser.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\invagent.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\devinv.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\aepic.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\aepdu.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\aeinv.dll
2015-03-25 15:31:37 ----A---- C:\windows\system32\acmigration.dll
2015-03-22 19:20:44 ----D---- C:\windows\temp
2015-03-22 19:20:42 ----A---- C:\ComboFix.txt
2015-03-22 19:16:46 ----SHD---- C:\$RECYCLE.BIN
2015-03-22 19:03:52 ----R---- C:\ComboFix.exe
2015-03-21 12:24:27 ----A---- C:\windows\zip.exe
2015-03-21 12:24:27 ----A---- C:\windows\SWSC.exe
2015-03-21 12:24:27 ----A---- C:\windows\SWREG.exe
2015-03-21 12:24:27 ----A---- C:\windows\sed.exe
2015-03-21 12:24:27 ----A---- C:\windows\PEV.exe
2015-03-21 12:24:27 ----A---- C:\windows\NIRCMD.exe
2015-03-21 12:24:27 ----A---- C:\windows\MBR.exe
2015-03-21 12:24:27 ----A---- C:\windows\grep.exe
2015-03-21 12:24:06 ----D---- C:\Qoobox
2015-03-21 12:23:29 ----D---- C:\windows\erdnt
2015-03-21 11:35:08 ----D---- C:\Program Files\trend micro
2015-03-21 11:35:07 ----D---- C:\rsit
2015-03-20 22:23:49 ----A---- C:\windows\system32\drivers\mbam.sys
2015-03-20 22:20:06 ----D---- C:\Users\TRTÍK\AppData\Roaming\Malwarebytes
2015-03-20 22:19:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2015-03-20 22:13:29 ----D---- C:\Users\TRTÍK\AppData\Roaming\InstallShield
2015-03-20 22:05:28 ----N---- C:\windows\system32\MpSigStub.exe
2015-03-20 21:58:40 ----D---- C:\ProgramData\Malwarebytes
2015-03-20 21:51:49 ----D---- C:\windows\pss
2015-03-20 21:43:31 ----D---- C:\AdwCleaner
2015-03-20 21:33:23 ----A---- C:\windows\myClean.bat
2015-03-20 20:27:50 ----D---- C:\FRST
2015-03-11 15:40:40 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-03-11 15:40:38 ----A---- C:\windows\system32\shell32.dll
2015-03-11 15:40:38 ----A---- C:\windows\system32\msctf.dll
2015-03-11 15:40:36 ----A---- C:\windows\system32\win32k.sys
2015-03-11 15:40:35 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 15:40:35 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-03-11 15:40:35 ----A---- C:\windows\system32\ieetwcollector.exe
2015-03-11 15:40:34 ----A---- C:\windows\system32\iernonce.dll
2015-03-11 15:40:34 ----A---- C:\windows\system32\ie4uinit.exe
2015-03-11 15:40:33 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-11 15:40:33 ----A---- C:\windows\system32\iedkcs32.dll
2015-03-11 15:40:32 ----A---- C:\windows\system32\urlmon.dll
2015-03-11 15:40:32 ----A---- C:\windows\system32\jsproxy.dll
2015-03-11 15:40:32 ----A---- C:\windows\system32\ieUnatt.exe
2015-03-11 15:40:30 ----A---- C:\windows\system32\jscript9diag.dll
2015-03-11 15:40:30 ----A---- C:\windows\system32\ieapfltr.dll
2015-03-11 15:40:30 ----A---- C:\windows\system32\dxtmsft.dll
2015-03-11 15:40:29 ----A---- C:\windows\system32\msfeeds.dll
2015-03-11 15:40:27 ----A---- C:\windows\system32\msrating.dll
2015-03-11 15:40:27 ----A---- C:\windows\system32\iesetup.dll
2015-03-11 15:40:26 ----A---- C:\windows\system32\wininet.dll
2015-03-11 15:40:26 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-03-11 15:40:25 ----A---- C:\windows\system32\dxtrans.dll
2015-03-11 15:40:24 ----A---- C:\windows\system32\ieui.dll
2015-03-11 15:40:24 ----A---- C:\windows\system32\ieframe.dll
2015-03-11 15:40:23 ----A---- C:\windows\system32\mshtmled.dll
2015-03-11 15:40:22 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-03-11 15:40:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-03-11 15:40:21 ----A---- C:\windows\system32\iertutil.dll
2015-03-11 15:40:20 ----A---- C:\windows\system32\mshtml.dll
2015-03-11 15:40:19 ----A---- C:\windows\system32\vbscript.dll
2015-03-11 15:40:19 ----A---- C:\windows\system32\jscript9.dll
2015-03-11 15:39:51 ----A---- C:\windows\system32\ubpm.dll
2015-03-11 15:39:48 ----A---- C:\windows\system32\schannel.dll
2015-03-11 15:39:48 ----A---- C:\windows\system32\lsasrv.dll
2015-03-11 15:39:48 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-03-11 15:39:48 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-03-11 15:39:47 ----A---- C:\windows\system32\TSpkg.dll
2015-03-11 15:39:47 ----A---- C:\windows\system32\ncrypt.dll
2015-03-11 15:39:47 ----A---- C:\windows\system32\msv1_0.dll
2015-03-11 15:39:47 ----A---- C:\windows\system32\kerberos.dll
2015-03-11 15:39:46 ----A---- C:\windows\system32\wdigest.dll
2015-03-11 15:39:46 ----A---- C:\windows\system32\lsass.exe
2015-03-11 15:39:46 ----A---- C:\windows\system32\auditpol.exe
2015-03-11 15:39:45 ----A---- C:\windows\system32\sspisrv.dll
2015-03-11 15:39:45 ----A---- C:\windows\system32\sspicli.dll
2015-03-11 15:39:45 ----A---- C:\windows\system32\secur32.dll
2015-03-11 15:39:45 ----A---- C:\windows\system32\credssp.dll
2015-03-11 15:39:44 ----A---- C:\windows\system32\msaudite.dll
2015-03-11 15:39:44 ----A---- C:\windows\system32\adtschema.dll
2015-03-11 15:39:43 ----A---- C:\windows\system32\msobjs.dll
2015-03-11 15:39:31 ----A---- C:\windows\system32\atmfd.dll
2015-03-11 15:39:30 ----A---- C:\windows\system32\lpk.dll
2015-03-11 15:39:30 ----A---- C:\windows\system32\fontsub.dll
2015-03-11 15:39:30 ----A---- C:\windows\system32\dciman32.dll
2015-03-11 15:39:30 ----A---- C:\windows\system32\atmlib.dll
2015-03-11 15:39:28 ----A---- C:\windows\system32\WMPhoto.dll
2015-03-11 15:39:22 ----A---- C:\windows\system32\drmv2clt.dll
2015-03-11 15:39:22 ----A---- C:\windows\system32\blackbox.dll
2015-03-11 15:39:21 ----A---- C:\windows\system32\wmp.dll
2015-03-11 15:39:21 ----A---- C:\windows\system32\wmdrmsdk.dll
2015-03-11 15:39:21 ----A---- C:\windows\system32\mf.dll
2015-03-11 15:39:20 ----A---- C:\windows\system32\drmmgrtn.dll
2015-03-11 15:39:19 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-03-11 15:39:19 ----A---- C:\windows\system32\drivers\PEAuth.sys
2015-03-11 15:39:19 ----A---- C:\windows\system32\crypt32.dll
2015-03-11 15:39:18 ----A---- C:\windows\system32\ntoskrnl.exe
2015-03-11 15:39:18 ----A---- C:\windows\system32\evr.dll
2015-03-11 15:39:17 ----A---- C:\windows\system32\quartz.dll
2015-03-11 15:39:17 ----A---- C:\windows\system32\drivers\cng.sys
2015-03-11 15:39:16 ----A---- C:\windows\system32\pcasvc.dll
2015-03-11 15:39:16 ----A---- C:\windows\system32\mfplat.dll
2015-03-11 15:39:16 ----A---- C:\windows\system32\cryptui.dll
2015-03-11 15:39:15 ----A---- C:\windows\system32\winresume.exe
2015-03-11 15:39:14 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-03-11 15:39:14 ----A---- C:\windows\system32\cryptsp.dll
2015-03-11 15:39:13 ----A---- C:\windows\system32\srcore.dll
2015-03-11 15:39:13 ----A---- C:\windows\system32\ci.dll
2015-03-11 15:39:12 ----A---- C:\windows\system32\winload.exe
2015-03-11 15:39:10 ----A---- C:\windows\system32\rstrui.exe
2015-03-11 15:39:10 ----A---- C:\windows\system32\qdvd.dll
2015-03-11 15:39:09 ----A---- C:\windows\system32\wintrust.dll
2015-03-11 15:39:09 ----A---- C:\windows\system32\msscp.dll
2015-03-11 15:39:09 ----A---- C:\windows\system32\cryptnet.dll
2015-03-11 15:39:08 ----A---- C:\windows\system32\cryptsvc.dll
2015-03-11 15:39:08 ----A---- C:\windows\system32\audiodg.exe
2015-03-11 15:39:07 ----A---- C:\windows\system32\msnetobj.dll
2015-03-11 15:39:07 ----A---- C:\windows\system32\audiosrv.dll
2015-03-11 15:39:04 ----A---- C:\windows\system32\appidsvc.dll
2015-03-11 15:39:03 ----A---- C:\windows\system32\AudioEng.dll
2015-03-11 15:39:03 ----A---- C:\windows\system32\appidpolicyconverter.exe
2015-03-11 15:39:02 ----A---- C:\windows\system32\rrinstaller.exe
2015-03-11 15:39:02 ----A---- C:\windows\system32\pcadm.dll
2015-03-11 15:39:02 ----A---- C:\windows\system32\drivers\appid.sys
2015-03-11 15:39:02 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-03-11 15:39:01 ----A---- C:\windows\system32\smss.exe
2015-03-11 15:39:01 ----A---- C:\windows\system32\mfps.dll
2015-03-11 15:39:00 ----A---- C:\windows\system32\appidapi.dll
2015-03-11 15:38:59 ----A---- C:\windows\system32\srclient.dll
2015-03-11 15:38:59 ----A---- C:\windows\system32\pcawrk.exe
2015-03-11 15:38:59 ----A---- C:\windows\system32\mfpmp.exe
2015-03-11 15:38:59 ----A---- C:\windows\system32\AudioSes.dll
2015-03-11 15:38:58 ----A---- C:\windows\system32\setbcdlocale.dll
2015-03-11 15:38:58 ----A---- C:\windows\system32\pcalua.exe
2015-03-11 15:38:58 ----A---- C:\windows\system32\EncDump.dll
2015-03-11 15:38:58 ----A---- C:\windows\system32\csrsrv.dll
2015-03-11 15:38:57 ----A---- C:\windows\system32\msmmsp.dll
2015-03-11 15:38:57 ----A---- C:\windows\system32\appidcertstorecheck.exe
2015-03-11 15:38:55 ----A---- C:\windows\system32\spwmp.dll
2015-03-11 15:38:54 ----A---- C:\windows\system32\dxmasf.dll
2015-03-11 15:38:53 ----A---- C:\windows\system32\pcaevts.dll
2015-03-11 15:38:53 ----A---- C:\windows\system32\apisetschema.dll
2015-03-11 15:38:52 ----A---- C:\windows\system32\wmploc.DLL
2015-03-11 15:38:49 ----A---- C:\windows\system32\mferror.dll

======List of files/folders modified in the last 1 month======

2015-04-05 20:57:04 ----D---- C:\windows\Prefetch
2015-04-05 20:11:50 ----D---- C:\windows\System32
2015-04-05 20:11:50 ----D---- C:\windows\inf
2015-04-05 20:11:50 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-04-05 20:07:52 ----D---- C:\ProgramData\HPQLOG
2015-04-05 20:07:40 ----A---- C:\windows\system32\log.txt
2015-04-05 20:06:43 ----D---- C:\windows\system32\config
2015-04-04 19:01:47 ----D---- C:\windows\system32\drivers
2015-04-04 12:14:37 ----D---- C:\windows\winsxs
2015-04-04 12:14:32 ----D---- C:\windows\Logs
2015-04-04 12:14:25 ----SHD---- C:\System Volume Information
2015-04-03 09:50:32 ----D---- C:\ProgramData\PDFC
2015-04-01 14:41:23 ----D---- C:\windows\Tasks
2015-04-01 14:41:23 ----D---- C:\windows\system32\Tasks
2015-03-31 22:10:11 ----D---- C:\windows\system32\catroot2
2015-03-29 20:21:22 ----D---- C:\Users\TRTÍK\AppData\Roaming\OpenOffice.org2
2015-03-26 17:19:00 ----SD---- C:\windows\system32\CompatTel
2015-03-26 17:18:59 ----D---- C:\windows\system32\wbem
2015-03-26 17:18:59 ----D---- C:\windows\system32\appraiser
2015-03-26 17:18:59 ----D---- C:\windows\AppPatch
2015-03-24 21:14:18 ----D---- C:\Users\TRTÍK\AppData\Roaming\ICQ
2015-03-22 19:20:44 ----D---- C:\Windows
2015-03-22 19:16:49 ----A---- C:\windows\system.ini
2015-03-22 19:16:41 ----RD---- C:\Program Files
2015-03-22 19:16:41 ----D---- C:\windows\system32\drivers\etc
2015-03-22 19:11:00 ----D---- C:\Program Files\Common Files
2015-03-21 12:19:16 ----D---- C:\Program Files\Google
2015-03-21 12:19:16 ----D---- C:\Config.Msi
2015-03-21 11:55:00 ----HD---- C:\Program Files\InstallShield Installation Information
2015-03-21 11:54:13 ----SHD---- C:\windows\Installer
2015-03-21 11:54:11 ----SD---- C:\ProgramData\Microsoft
2015-03-21 11:54:11 ----D---- C:\Program Files\Microsoft
2015-03-21 11:49:34 ----D---- C:\ProgramData
2015-03-21 10:21:16 ----D---- C:\ProgramData\Google
2015-03-20 22:17:58 ----RSD---- C:\windows\assembly
2015-03-20 22:17:45 ----D---- C:\Program Files\Microsoft.NET
2015-03-20 22:17:45 ----D---- C:\Program Files\Microsoft Office
2015-03-20 22:17:45 ----D---- C:\Program Files\Common Files\microsoft shared
2015-03-20 22:11:09 ----D---- C:\ProgramData\Microsoft Help
2015-03-20 22:10:44 ----D---- C:\windows\ShellNew
2015-03-20 22:10:35 ----RSD---- C:\windows\Fonts
2015-03-20 22:07:37 ----A---- C:\windows\win.ini
2015-03-20 21:55:01 ----D---- C:\windows\debug
2015-03-20 21:46:13 ----D---- C:\ProgramData\ICQ
2015-03-20 21:34:23 ----D---- C:\ProgramData\MFAData
2015-03-20 21:22:25 ----D---- C:\ProgramData\AVG2012
2015-03-13 22:08:35 ----D---- C:\windows\rescache
2015-03-12 17:54:33 ----D---- C:\windows\system32\en-US
2015-03-12 17:54:27 ----D---- C:\Program Files\Internet Explorer
2015-03-12 17:54:22 ----D---- C:\windows\system32\cs-CZ
2015-03-12 17:54:15 ----D---- C:\Program Files\Windows Media Player
2015-03-12 17:54:13 ----D---- C:\windows\system32\Dism
2015-03-12 17:53:57 ----D---- C:\windows\system32\Boot
2015-03-12 17:53:56 ----D---- C:\windows\system32\CodeIntegrity
2015-03-12 17:51:29 ----D---- C:\windows\system32\MRT
2015-03-12 17:35:33 ----A---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\windows\system32\DRIVERS\avgmfx86.sys [2011-12-23 41040]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 29824]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2011-02-22 2184704]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-09 5092864]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2009-12-20 249888]
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 73344]
R3 STHDA;@%SystemRoot%\system32\stlang.dll,-10322; C:\windows\system32\DRIVERS\stwrt.sys [2013-07-10 431616]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-01-04 231600]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 WinUSB;WinUSB Service; C:\windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 catchme;catchme; \??\C:\Users\TRTK~1\AppData\Local\Temp\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-04-11 89856]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 184192]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbrndis6;Adaptér USB RNDIS6; C:\windows\system32\DRIVERS\usb80236.sys [2013-02-12 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\aestsrv.exe [2013-07-10 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 300880]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2009-12-17 102968]
R2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-17 102968]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-05 264248]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-10-23 635416]
R2 STacSV;@%SystemRoot%\system32\stlang.dll,-10122; C:\Program Files\IDT\WDM\STacSV.exe [2013-07-10 254034]
R2 uArcCapture;ArcCapture; C:\windows\system32\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25 107912]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2010-02-18 1664304]
S3 602SQL 8 FastCGI Client;602SQL 8 FastCGI Client; C:\Program Files\Software602\602SQL95\602FSVC8.EXE []
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-09-28 109056]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04 267440]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-18 362040]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-06-20 1343400]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

VIRY.CZ

Prosím o kontrolu

Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu

Re: Prosím o kontrolu