Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Windows update viry

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#16 Příspěvek od Rudy »

Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
doomguy
Návštěvník
Návštěvník
Příspěvky: 86
Registrován: 07 srp 2011 18:24
Bydliště: Řevnice

Re: Windows update viry

#17 Příspěvek od doomguy »

# AdwCleaner v2.200 - Logfile created 04/11/2013 at 20:35:16
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : Karel - KAREL-PC
# Boot Mode : Normal
# Running from : C:\Users\Karel\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : BrowserProtect

***** [Files / Folders] *****

Deleted on reboot : C:\ProgramData\BrowserProtect
File Deleted : C:\Users\Karel\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Karel\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Folder Deleted : C:\Program Files\WebSearch
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Users\Karel\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Karel\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserProtect

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~1\websea~1\sprote~1.dll
Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
Key Deleted : HKCU\Software\52558bdbb03db940
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\PIP
Key Deleted : HKLM\SOFTWARE\52558bdbb03db940
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKU\S-1-5-21-324310082-3725013577-1941015229-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{0F827075-B026-42F3-885D-98981EE7B1AE}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16521

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.delta-search.com/?affID=119816&tt=1 ... FF11A221D8 --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.helpmefindyour.info/?pid=499&r=2013/03/28&hid=1114527299&lg=EN&cc=CZ --> hxxp://www.google.com

-\\ Google Chrome v26.0.1410.64

File : C:\Users\Karel\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [4107 octets] - [11/04/2013 19:28:41]
AdwCleaner[R2].txt - [4167 octets] - [11/04/2013 20:34:58]
AdwCleaner[S1].txt - [3944 octets] - [11/04/2013 20:35:16]

########## EOF - C:\AdwCleaner[S1].txt - [4004 octets] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#18 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
doomguy
Návštěvník
Návštěvník
Příspěvky: 86
Registrován: 07 srp 2011 18:24
Bydliště: Řevnice

Re: Windows update viry

#19 Příspěvek od doomguy »

Logfile of random's system information tool 1.09 (written by random/random)
Run by Karel at 2013-04-11 20:52:11
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 259 GB (54%) free of 477 GB
Total RAM: 3327 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:52:39, on 11.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe
C:\Windows\system32\taskeng.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\Users\Karel\Desktop\PCMeterV0.3.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\BOINC\boincmgr.exe
C:\Program Files\BOINC\boinctray.exe
C:\Program Files\BOINC\boinc.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\No-IP\DUC40.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Karel\Desktop\RSIT.exe
C:\Program Files\trend micro\Karel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 37.44.19.145:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 79.98.77.250 everythingforsam.sytes.net
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s
O4 - HKLM\..\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vmware-tray.exe] "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [NoIPDUCv4] "C:\Program Files\No-IP\DUC40.exe" /minimize
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AODService - Unknown owner - C:\Program Files\AMD\OverDrive\AODAssist.exe
O23 - Service: ASDR - Unknown owner - C:\Windows\System32\ASDR.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - ASUSTeK COMPUTER INC. - C:\Windows\system32\ATKFUSService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NO-IP DUC v4 (NoIPDUCService4) - Unknown owner - C:\Program Files\No-IP\ducservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe

--
End of file - 9773 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-06 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-06 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-08-18 7711264]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2012-09-13 1009288]
"ASUSGamerOSD"=C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"boincmgr"=C:\Program Files\BOINC\boincmgr.exe [2012-05-15 3663024]
"boinctray"=C:\Program Files\BOINC\boinctray.exe [2012-05-15 70832]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-12-14 2255360]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"vmware-tray.exe"=C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [2013-02-26 104528]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-19 642656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-02-28 18642024]
"Steam"=C:\Program Files\Steam\steam.exe [2013-03-29 1631144]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2013-01-17 3093624]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2013-03-07 19357112]
"uTorrent"=C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe [2013-04-06 801112]
"RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
"NoIPDUCv4"=C:\Program Files\No-IP\DUC40.exe [2013-01-24 270336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.HFYU"=huffyuv.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.IV41"=ir41_32.dll
"VIDC.VMnc"=vmnc.dll
"msacm.vorbis"=vorbis.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-04-11 20:35:16 ----A---- C:\AdwCleaner[S1].txt
2013-04-11 20:34:58 ----A---- C:\AdwCleaner[R2].txt
2013-04-11 19:28:41 ----A---- C:\AdwCleaner[R1].txt
2013-04-11 15:27:56 ----A---- C:\Windows\system32\jscript.dll
2013-04-11 15:27:55 ----A---- C:\Windows\system32\jscript9.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\ieui.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\iesetup.dll
2013-04-11 15:27:53 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-11 15:27:53 ----A---- C:\Windows\system32\ie4uinit.exe
2013-04-11 15:27:52 ----A---- C:\Windows\system32\urlmon.dll
2013-04-11 15:27:52 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-04-11 15:27:52 ----A---- C:\Windows\system32\iesysprep.dll
2013-04-11 15:27:52 ----A---- C:\Windows\system32\iernonce.dll
2013-04-11 15:27:51 ----A---- C:\Windows\system32\iertutil.dll
2013-04-11 15:27:49 ----A---- C:\Windows\system32\wininet.dll
2013-04-11 15:27:47 ----A---- C:\Windows\system32\ieframe.dll
2013-04-11 15:27:45 ----A---- C:\Windows\system32\mshtml.dll
2013-04-11 15:24:23 ----D---- C:\Program Files\Common Files\Skype
2013-04-10 22:55:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-04-10 22:55:35 ----A---- C:\Windows\system32\smss.exe
2013-04-10 22:55:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 22:55:34 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-10 20:16:46 ----D---- C:\Users\Karel\AppData\Roaming\Malwarebytes
2013-04-10 20:16:39 ----D---- C:\ProgramData\Malwarebytes
2013-04-10 20:16:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-10 20:16:37 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-04-10 19:10:06 ----A---- C:\Windows\ntbtlog.txt
2013-04-10 17:24:05 ----D---- C:\Program Files\trend micro
2013-04-10 17:24:04 ----D---- C:\rsit
2013-04-10 17:05:06 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-04-10 00:40:04 ----A---- C:\Windows\system32\win32k.sys
2013-04-10 00:39:23 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-07 17:22:53 ----D---- C:\ProgramData\SystemExplorer
2013-04-07 17:22:50 ----D---- C:\Program Files\System Explorer
2013-04-07 01:20:57 ----D---- C:\Users\Karel\AppData\Roaming\SDR-RADIO.com (V2)
2013-04-07 01:20:57 ----D---- C:\Users\Karel\AppData\Roaming\SDR-RADIO.com
2013-04-07 01:20:57 ----D---- C:\ProgramData\SDR-RADIO.com
2013-04-07 01:20:56 ----D---- C:\Users\Karel\AppData\Roaming\SDRConsole
2013-04-07 01:20:45 ----D---- C:\Program Files\SDR-RADIO-PRO.com
2013-04-06 16:27:55 ----D---- C:\Users\Karel\AppData\Roaming\Code Force Limited
2013-04-06 10:35:52 ----D---- C:\Program Files\Cities in Motion 2
2013-04-05 21:51:07 ----D---- C:\Users\Karel\AppData\Roaming\Media Player Classic
2013-04-04 15:23:22 ----D---- C:\Program Files\SecurityXploded
2013-04-03 22:21:54 ----D---- C:\Program Files\Super Hexagon
2013-04-02 16:56:29 ----D---- C:\Users\Karel\AppData\Roaming\Canneverbe Limited
2013-04-02 16:56:29 ----D---- C:\ProgramData\Canneverbe Limited
2013-04-02 16:56:15 ----D---- C:\Program Files\CDBurnerXP
2013-04-02 16:50:10 ----D---- C:\Program Files\Advanced Port Scanner
2013-04-02 11:44:25 ----A---- C:\Users\Karel\AppData\Roaming\BabMaint.exe
2013-03-31 00:31:54 ----D---- C:\Program Files\Apache Group
2013-03-31 00:01:49 ----D---- C:\Program Files\Common Files\reFX
2013-03-31 00:01:49 ----D---- C:\Program Files\Common Files\Digidesign
2013-03-30 17:05:47 ----D---- C:\ProgramData\Vitalwerks
2013-03-30 13:43:05 ----D---- C:\Users\Karel\AppData\Roaming\Red Alert 3
2013-03-30 13:34:03 ----D---- C:\Program Files\SQUARE ENIX
2013-03-30 13:11:58 ----D---- C:\Program Files\Electronic Arts
2013-03-30 12:44:23 ----D---- C:\Windows\system32\searchplugins
2013-03-30 12:44:23 ----D---- C:\Windows\system32\Extensions
2013-03-30 12:41:20 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-03-30 12:41:15 ----D---- C:\Program Files\DAEMON Tools Lite
2013-03-30 03:36:17 ----D---- C:\UDK
2013-03-29 22:29:45 ----D---- C:\Program Files\Binding Maker
2013-03-28 17:01:37 ----D---- C:\Program Files\FreeTime
2013-03-26 19:13:06 ----D---- C:\acarsd
2013-03-26 18:46:10 ----A---- C:\Windows\wacars.ini
2013-03-25 22:15:33 ----A---- C:\Windows\system32\Access.dat
2013-03-25 22:07:34 ----D---- C:\Users\Karel\AppData\Roaming\Tunngle
2013-03-25 22:07:34 ----D---- C:\ProgramData\Tunngle
2013-03-25 22:07:32 ----A---- C:\Windows\system32\drivers\tap0901t.sys
2013-03-25 22:07:31 ----D---- C:\Program Files\Tunngle
2013-03-25 19:36:55 ----D---- C:\Program Files\CCleaner
2013-03-24 17:02:32 ----D---- C:\Program Files\No-IP
2013-03-24 12:21:28 ----D---- C:\ProgramData\Media Center Programs
2013-03-24 12:21:24 ----D---- C:\Program Files\Common Files\BioWare
2013-03-24 02:12:03 ----D---- C:\Users\Karel\AppData\Roaming\ftblauncher
2013-03-23 20:30:56 ----A---- C:\Program Files\unins000.exe
2013-03-23 20:30:56 ----A---- C:\Program Files\unins000.dat
2013-03-23 01:27:35 ----D---- C:\ProgramData\ATI
2013-03-23 01:27:33 ----D---- C:\Program Files\AMD AVT
2013-03-22 19:37:09 ----D---- C:\Users\Karel\AppData\Roaming\PrivateTunnel
2013-03-22 19:36:46 ----D---- C:\Program Files\OpenVPN Technologies
2013-03-21 21:46:32 ----D---- C:\Program Files\HDSDR
2013-03-21 21:10:13 ----D---- C:\Program Files\ASIO4ALL v2
2013-03-21 21:09:44 ----D---- C:\Program Files\Vstplugins
2013-03-21 21:09:44 ----A---- C:\Windows\system32\rewire.dll
2013-03-21 21:08:46 ----D---- C:\Program Files\Outsim
2013-03-21 21:05:26 ----D---- C:\Program Files\Image-Line
2013-03-21 18:43:07 ----A---- C:\Windows\system32\drivers\AmdLLD.sys
2013-03-19 20:46:44 ----D---- C:\Users\Karel\AppData\Roaming\TeamViewer
2013-03-19 08:10:56 ----A---- C:\Windows\system32\atimpc32.dll
2013-03-19 08:10:56 ----A---- C:\Windows\system32\amdpcom32.dll
2013-03-19 08:10:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-03-19 08:09:54 ----A---- C:\Windows\system32\atidxx32.dll
2013-03-19 07:58:40 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-03-19 04:20:12 ----A---- C:\Windows\system32\atiapfxx.exe
2013-03-19 04:17:42 ----A---- C:\Windows\system32\aticalrt.dll
2013-03-19 04:17:34 ----A---- C:\Windows\system32\aticalcl.dll
2013-03-19 04:13:02 ----A---- C:\Windows\system32\aticaldd.dll
2013-03-19 03:56:24 ----A---- C:\Windows\system32\atidemgy.dll
2013-03-19 03:55:50 ----A---- C:\Windows\system32\atieclxx.exe
2013-03-19 03:55:10 ----A---- C:\Windows\system32\atiesrxx.exe
2013-03-19 03:53:52 ----A---- C:\Windows\system32\atitmmxx.dll
2013-03-19 03:53:42 ----A---- C:\Windows\system32\atimuixx.dll
2013-03-19 03:53:34 ----A---- C:\Windows\system32\ati2edxx.dll
2013-03-19 03:28:36 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-03-19 03:27:20 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-03-18 22:53:50 ----D---- C:\Users\Karel\AppData\Roaming\TortoiseSVN
2013-03-18 19:13:58 ----D---- C:\Users\Karel\AppData\Roaming\Subversion
2013-03-18 19:13:18 ----D---- C:\Program Files\TortoiseSVN
2013-03-18 19:13:18 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2013-03-17 13:34:16 ----A---- C:\Windows\system32\CmdLineExt.dll
2013-03-17 13:15:25 ----D---- C:\Program Files\Rockstar Games
2013-03-17 12:58:09 ----D---- C:\Program Files\Ubisoft
2013-03-17 12:47:46 ----RHD---- C:\Users\Karel\AppData\Roaming\SecuROM
2013-03-17 12:38:10 ----A---- C:\Users\Karel\AppData\Roaming\All CPU MeterV3_Settings.ini
2013-03-17 12:11:05 ----D---- C:\WPDSidebarGadget
2013-03-17 00:08:38 ----D---- C:\Program Files\THQ
2013-03-16 18:28:05 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2013-03-16 18:27:57 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2013-03-16 18:27:56 ----DC---- C:\Windows\system32\DRVSTORE
2013-03-16 18:27:48 ----D---- C:\Program Files\Oracle
2013-03-16 14:30:31 ----D---- C:\Program Files\Workshell
2013-03-15 20:30:06 ----A---- C:\Windows\system32\drivers\VBoxNetAdp.sys
2013-03-15 20:29:12 ----A---- C:\Windows\system32\drivers\VBoxUSB.sys
2013-03-15 20:29:12 ----A---- C:\Windows\system32\drivers\VBoxNetFlt.sys
2013-03-15 20:29:10 ----A---- C:\Windows\system32\VBoxNetFltNobj.dll
2013-03-14 23:40:35 ----A---- C:\Windows\system32\vsocklib.dll
2013-03-14 23:40:34 ----A---- C:\Windows\system32\drivers\vsock.sys
2013-03-14 23:40:31 ----A---- C:\Windows\system32\drivers\VMkbd.sys
2013-03-14 23:40:00 ----A---- C:\Windows\system32\vmnetdhcp.exe
2013-03-14 23:39:58 ----A---- C:\Windows\system32\vmnat.exe
2013-03-14 23:39:57 ----A---- C:\Windows\system32\drivers\vmnetuserif.sys
2013-03-14 23:39:53 ----A---- C:\Windows\system32\vnetlib.dll
2013-03-14 23:39:50 ----A---- C:\Windows\system32\drivers\hcmon.sys
2013-03-14 23:39:17 ----D---- C:\Program Files\Common Files\VMware
2013-03-14 23:00:54 ----D---- C:\Users\Karel\AppData\Roaming\VMware
2013-03-14 22:52:01 ----D---- C:\ProgramData\VMware
2013-03-14 22:52:01 ----D---- C:\Program Files\VMware
2013-03-14 22:31:50 ----A---- C:\Windows\system32\atioglxx.dll
2013-03-14 21:56:34 ----A---- C:\Windows\system32\atiadlxx.dll
2013-03-14 21:56:18 ----A---- C:\Windows\system32\atiglpxx.dll
2013-03-14 21:56:06 ----A---- C:\Windows\system32\atigktxx.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\wextract.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\vbscript.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\msrating.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\msls31.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\inseng.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\iexpress.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\elshyph.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\webcheck.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\url.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\occache.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshta.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\imgutil.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\iepeers.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-14 16:17:38 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\icardie.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-14 16:15:46 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-12 20:37:35 ----D---- C:\Program Files\Eagle Dynamics

======List of files/folders modified in the last 1 month======

2013-04-11 20:52:34 ----D---- C:\Windows\Temp
2013-04-11 20:52:03 ----D---- C:\Users\Karel\AppData\Roaming\Skype
2013-04-11 20:47:12 ----D---- C:\Windows\System32
2013-04-11 20:47:12 ----D---- C:\Windows\inf
2013-04-11 20:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-11 20:42:02 ----D---- C:\ProgramData\BOINC
2013-04-11 20:41:43 ----D---- C:\Program Files\Steam
2013-04-11 20:41:42 ----D---- C:\Users\Karel\AppData\Roaming\uTorrent
2013-04-11 20:41:09 ----HD---- C:\ProgramData
2013-04-11 20:41:09 ----D---- C:\Windows
2013-04-11 20:41:06 ----D---- C:\Windows\Prefetch
2013-04-11 20:39:53 ----D---- C:\Windows\system32\drivers
2013-04-11 20:39:14 ----D---- C:\Windows\winsxs
2013-04-11 20:38:09 ----D---- C:\Windows\system32\config
2013-04-11 20:36:21 ----D---- C:\Program Files\Internet Explorer
2013-04-11 20:35:34 ----D---- C:\Program Files
2013-04-11 18:59:30 ----D---- C:\ProgramData\PMB Files
2013-04-11 18:22:48 ----SHD---- C:\Windows\Installer
2013-04-11 18:21:48 ----SHD---- C:\System Volume Information
2013-04-11 15:24:27 ----D---- C:\ProgramData\Skype
2013-04-11 15:24:23 ----RD---- C:\Program Files\Skype
2013-04-11 15:24:23 ----D---- C:\Program Files\Common Files
2013-04-11 15:22:03 ----D---- C:\Windows\system32\Tasks
2013-04-11 15:21:50 ----D---- C:\Windows\Downloaded Program Files
2013-04-11 15:20:13 ----D---- C:\Program Files\BOINC
2013-04-10 19:16:16 ----D---- C:\Windows\Panther
2013-04-10 17:09:03 ----D---- C:\Windows\system32\catroot
2013-04-10 17:09:02 ----D---- C:\Windows\system32\catroot2
2013-04-10 17:05:59 ----D---- C:\Windows\debug
2013-04-10 17:05:55 ----A---- C:\Windows\system32\MRT.exe
2013-04-10 15:45:26 ----RSD---- C:\Windows\assembly
2013-04-07 17:18:46 ----D---- C:\Program Files\War Thunder
2013-04-07 11:47:45 ----D---- C:\Users\Karel\AppData\Roaming\.techniclauncher
2013-04-07 11:43:52 ----D---- C:\Users\Karel\AppData\Roaming\logs
2013-04-05 18:24:48 ----D---- C:\Users\Karel\AppData\Roaming\.minecraft
2013-04-01 18:35:44 ----D---- C:\Program Files\Eidos
2013-03-30 13:03:56 ----D---- C:\ProgramData\Codemasters
2013-03-30 12:51:59 ----D---- C:\Program Files\Codemasters
2013-03-30 12:41:35 ----D---- C:\Windows\system32\DriverStore
2013-03-30 12:39:35 ----D---- C:\Users\Karel\AppData\Roaming\DAEMON Tools Lite
2013-03-30 03:43:11 ----D---- C:\Program Files\Common Files\Steam
2013-03-29 19:07:20 ----D---- C:\Windows\Logs
2013-03-28 17:50:28 ----D---- C:\Users\Karel\AppData\Roaming\Seznam.cz
2013-03-25 22:07:33 ----RSD---- C:\Windows\Fonts
2013-03-25 19:58:51 ----D---- C:\Windows\Minidump
2013-03-24 12:12:44 ----D---- C:\Games
2013-03-23 01:27:33 ----D---- C:\ProgramData\AMD
2013-03-23 01:27:13 ----D---- C:\Program Files\ATI Technologies
2013-03-23 01:19:28 ----D---- C:\AMD
2013-03-22 19:13:14 ----SD---- C:\ProgramData\Microsoft
2013-03-22 00:04:09 ----D---- C:\Windows\system32\NDF
2013-03-21 18:43:12 ----SD---- C:\Users\Karel\AppData\Roaming\Microsoft
2013-03-21 18:43:04 ----D---- C:\Program Files\AMD
2013-03-19 08:10:26 ----A---- C:\Windows\system32\atiu9pag.dll
2013-03-19 08:10:18 ----A---- C:\Windows\system32\aticfx32.dll
2013-03-19 08:09:42 ----A---- C:\Windows\system32\atiumdva.dll
2013-03-19 08:09:30 ----A---- C:\Windows\system32\atiumdag.dll
2013-03-19 04:17:20 ----A---- C:\Windows\system32\coinst_12.10.17.dll
2013-03-17 15:14:13 ----D---- C:\Program Files\Pingus
2013-03-17 13:17:34 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-17 12:37:26 ----D---- C:\Windows\system32\wbem
2013-03-15 16:14:24 ----D---- C:\Windows\Tasks
2013-03-15 16:14:20 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-03-15 07:13:55 ----D---- C:\Windows\rescache
2013-03-14 17:40:17 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-14 17:39:41 ----D---- C:\Windows\system32\cs-CZ
2013-03-14 17:39:41 ----D---- C:\Windows\AppPatch
2013-03-14 17:39:40 ----D---- C:\Windows\system32\migration
2013-03-14 17:39:40 ----D---- C:\Windows\system32\en-US
2013-03-14 17:39:40 ----D---- C:\Windows\PolicyDefinitions
2013-03-13 21:56:46 ----D---- C:\Program Files\Brutal Legend
2013-03-12 01:10:56 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-03-07 164736]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-02-18 466008]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2012-10-24 71152]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2012-10-24 61464]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-03-07 60656]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-30 242240]
R1 EIO;EIO Driver; C:\Windows\system32\DRIVERS\EIO.sys [2013-01-17 14336]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2013-03-15 188176]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2013-03-15 94480]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\AMD\OverDrive\i386\AODDriver2.sys [2013-02-06 49248]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2012-04-09 48256]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-03-07 66336]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2012-10-11 41496]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2013-02-26 37016]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2013-02-26 26192]
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\Drivers\VMparport.sys [2013-02-26 24272]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\Drivers\vmx86.sys [2013-02-26 62416]
R2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared); C:\Windows\system32\drivers\vstor2-mntapi10-shared.sys [2011-07-12 22768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-19 9951744]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-19 460288]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 15232]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2013-01-15 80384]
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\system32\drivers\ATKDispLowFilter.sys [2009-02-17 30976]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-08-18 2752352]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 Point32;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2013-01-29 44144]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-30 187392]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2013-03-15 104720]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2013-03-15 115984]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2013-02-26 26064]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2013-02-26 16664]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Karel\AppData\Local\Temp\tmpD87.tmp []
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 bmdrvr;Modified Clusters Tracking Driver; C:\Windows\system32\drivers\bmdrvr.sys [2011-03-15 54384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-03-06 32768]
S3 tapoas;TAP-Win32 Adapter OAS; C:\Windows\system32\DRIVERS\tapoas.sys [2012-07-15 26112]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 24064]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 27136]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2013-03-15 84752]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vmusb;VMware USB Client Driver; C:\Windows\System32\Drivers\vmusb.sys [2012-10-11 31280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-19 219136]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-18 291840]
R2 ASDR;ASDR; C:\Windows\System32\ASDR.exe [2009-07-27 61440]
R2 ATKFUSService;ATK Fast User Switch Service; C:\Windows\system32\ATKFUSService.exe [2009-12-01 61952]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-14 1436160]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 NoIPDUCService4;NO-IP DUC v4; C:\Program Files\No-IP\ducservice.exe [2013-01-24 11264]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [2013-02-26 87120]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\system32\vmnetdhcp.exe [2013-02-26 357456]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [2012-10-11 721048]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\system32\vmnat.exe [2013-02-26 436304]
R2 vmware-converter-agent;VMware vCenter Converter Standalone Agent; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [2011-08-19 423536]
R2 vmware-converter-server;VMware vCenter Converter Standalone Server; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-19 423536]
R2 vmware-converter-worker;VMware vCenter Converter Standalone Worker; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-19 423536]
R2 VMwareHostd;VMware Workstation Server; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [2013-02-26 13242960]
S2 AODService;AODService; C:\Program Files\AMD\OverDrive\AODAssist.exe [2013-02-06 137096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-03-26 543656]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2013-03-20 746392]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-17 1343400]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#20 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll
C:\Users\Karel\AppData\Local\Temp\tmpD87.tmp

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

:services
WinRing0_1_2_0

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
doomguy
Návštěvník
Návštěvník
Příspěvky: 86
Registrován: 07 srp 2011 18:24
Bydliště: Řevnice

Re: Windows update viry

#21 Příspěvek od doomguy »

OTM:
All processes killed
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder c:\progra~2\browse~1\261125~1.80\{c16c1~1\browse~1.dll not found.
File/Folder C:\Users\Karel\AppData\Local\Temp\tmpD87.tmp not found.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\"AppInit_DLLs"|"" /E : value set successfully!
========== SERVICES/DRIVERS ==========
Service WinRing0_1_2_0 stopped successfully!
Service WinRing0_1_2_0 deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Karel
->Temp folder emptied: 224964243 bytes
->Temporary Internet Files folder emptied: 53255958 bytes
->Java cache emptied: 518837 bytes
->Google Chrome cache emptied: 238766792 bytes
->Flash cache emptied: 9933 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 1618992 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 71749 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50461 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 495,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Karel
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 04112013_210314

Files moved on Reboot...
File move failed. C:\Windows\temp\vmware-SYSTEM\vmauthd.log scheduled to be moved on reboot.
C:\Windows\temp\vmware-SYSTEM\vmware-usbarb-2332.log moved successfully.
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...

RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Karel at 2013-04-11 21:08:00
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 260 GB (55%) free of 477 GB
Total RAM: 3327 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:08:57, on 11.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Users\Karel\Desktop\PCMeterV0.3.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\notepad.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\BOINC\boincmgr.exe
C:\Program Files\BOINC\boinctray.exe
C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\No-IP\DUC40.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\BOINC\boinc.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Windows\system32\conhost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Karel\Desktop\RSIT.exe
C:\Program Files\trend micro\Karel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 37.44.19.145:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 79.98.77.250 everythingforsam.sytes.net
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s
O4 - HKLM\..\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [vmware-tray.exe] "C:\Program Files\VMware\VMware Workstation\vmware-tray.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [NoIPDUCv4] "C:\Program Files\No-IP\DUC40.exe" /minimize
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AODService - Unknown owner - C:\Program Files\AMD\OverDrive\AODAssist.exe
O23 - Service: ASDR - Unknown owner - C:\Windows\System32\ASDR.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - ASUSTeK COMPUTER INC. - C:\Windows\system32\ATKFUSService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NO-IP DUC v4 (NoIPDUCService4) - Unknown owner - C:\Program Files\No-IP\ducservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) - VMware, Inc. - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe

--
End of file - 9408 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-03-06 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-03-06 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-08-18 7711264]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2012-09-13 1009288]
"ASUSGamerOSD"=C:\Program Files\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"boincmgr"=C:\Program Files\BOINC\boincmgr.exe [2012-05-15 3663024]
"boinctray"=C:\Program Files\BOINC\boinctray.exe [2012-05-15 70832]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-12-14 2255360]
"vmware-tray.exe"=C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [2013-02-26 104528]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-19 642656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2013-02-28 18642024]
"Steam"=C:\Program Files\Steam\steam.exe [2013-03-29 1631144]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2013-01-17 3093624]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2013-03-07 19357112]
"uTorrent"=C:\Users\Karel\AppData\Roaming\uTorrent\uTorrent.exe [2013-04-06 801112]
"RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-11-14 305064]
"NoIPDUCv4"=C:\Program Files\No-IP\DUC40.exe [2013-01-24 270336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.HFYU"=huffyuv.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.IV41"=ir41_32.dll
"VIDC.VMnc"=vmnc.dll
"msacm.vorbis"=vorbis.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-04-11 21:03:14 ----D---- C:\_OTM
2013-04-11 20:35:16 ----A---- C:\AdwCleaner[S1].txt
2013-04-11 20:34:58 ----A---- C:\AdwCleaner[R2].txt
2013-04-11 19:28:41 ----A---- C:\AdwCleaner[R1].txt
2013-04-11 15:27:56 ----A---- C:\Windows\system32\jscript.dll
2013-04-11 15:27:55 ----A---- C:\Windows\system32\jscript9.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\ieui.dll
2013-04-11 15:27:54 ----A---- C:\Windows\system32\iesetup.dll
2013-04-11 15:27:53 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-11 15:27:53 ----A---- C:\Windows\system32\ie4uinit.exe
2013-04-11 15:27:52 ----A---- C:\Windows\system32\urlmon.dll
2013-04-11 15:27:52 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-04-11 15:27:52 ----A---- C:\Windows\system32\iesysprep.dll
2013-04-11 15:27:52 ----A---- C:\Windows\system32\iernonce.dll
2013-04-11 15:27:51 ----A---- C:\Windows\system32\iertutil.dll
2013-04-11 15:27:49 ----A---- C:\Windows\system32\wininet.dll
2013-04-11 15:27:47 ----A---- C:\Windows\system32\ieframe.dll
2013-04-11 15:27:45 ----A---- C:\Windows\system32\mshtml.dll
2013-04-11 15:24:23 ----D---- C:\Program Files\Common Files\Skype
2013-04-10 22:55:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-04-10 22:55:35 ----A---- C:\Windows\system32\smss.exe
2013-04-10 22:55:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 22:55:34 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-10 20:16:46 ----D---- C:\Users\Karel\AppData\Roaming\Malwarebytes
2013-04-10 20:16:39 ----D---- C:\ProgramData\Malwarebytes
2013-04-10 20:16:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-04-10 20:16:37 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-04-10 19:10:06 ----A---- C:\Windows\ntbtlog.txt
2013-04-10 17:24:05 ----D---- C:\Program Files\trend micro
2013-04-10 17:24:04 ----D---- C:\rsit
2013-04-10 17:05:06 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-04-10 00:40:04 ----A---- C:\Windows\system32\win32k.sys
2013-04-10 00:39:23 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-07 17:22:53 ----D---- C:\ProgramData\SystemExplorer
2013-04-07 17:22:50 ----D---- C:\Program Files\System Explorer
2013-04-07 01:20:57 ----D---- C:\Users\Karel\AppData\Roaming\SDR-RADIO.com (V2)
2013-04-07 01:20:57 ----D---- C:\Users\Karel\AppData\Roaming\SDR-RADIO.com
2013-04-07 01:20:57 ----D---- C:\ProgramData\SDR-RADIO.com
2013-04-07 01:20:56 ----D---- C:\Users\Karel\AppData\Roaming\SDRConsole
2013-04-07 01:20:45 ----D---- C:\Program Files\SDR-RADIO-PRO.com
2013-04-06 16:27:55 ----D---- C:\Users\Karel\AppData\Roaming\Code Force Limited
2013-04-06 10:35:52 ----D---- C:\Program Files\Cities in Motion 2
2013-04-05 21:51:07 ----D---- C:\Users\Karel\AppData\Roaming\Media Player Classic
2013-04-04 15:23:22 ----D---- C:\Program Files\SecurityXploded
2013-04-03 22:21:54 ----D---- C:\Program Files\Super Hexagon
2013-04-02 16:56:29 ----D---- C:\Users\Karel\AppData\Roaming\Canneverbe Limited
2013-04-02 16:56:29 ----D---- C:\ProgramData\Canneverbe Limited
2013-04-02 16:56:15 ----D---- C:\Program Files\CDBurnerXP
2013-04-02 16:50:10 ----D---- C:\Program Files\Advanced Port Scanner
2013-04-02 11:44:25 ----A---- C:\Users\Karel\AppData\Roaming\BabMaint.exe
2013-03-31 00:31:54 ----D---- C:\Program Files\Apache Group
2013-03-31 00:01:49 ----D---- C:\Program Files\Common Files\reFX
2013-03-31 00:01:49 ----D---- C:\Program Files\Common Files\Digidesign
2013-03-30 17:05:47 ----D---- C:\ProgramData\Vitalwerks
2013-03-30 13:43:05 ----D---- C:\Users\Karel\AppData\Roaming\Red Alert 3
2013-03-30 13:34:03 ----D---- C:\Program Files\SQUARE ENIX
2013-03-30 13:11:58 ----D---- C:\Program Files\Electronic Arts
2013-03-30 12:44:23 ----D---- C:\Windows\system32\searchplugins
2013-03-30 12:44:23 ----D---- C:\Windows\system32\Extensions
2013-03-30 12:41:20 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-03-30 12:41:15 ----D---- C:\Program Files\DAEMON Tools Lite
2013-03-30 03:36:17 ----D---- C:\UDK
2013-03-29 22:29:45 ----D---- C:\Program Files\Binding Maker
2013-03-28 17:01:37 ----D---- C:\Program Files\FreeTime
2013-03-26 19:13:06 ----D---- C:\acarsd
2013-03-26 18:46:10 ----A---- C:\Windows\wacars.ini
2013-03-25 22:15:33 ----A---- C:\Windows\system32\Access.dat
2013-03-25 22:07:34 ----D---- C:\Users\Karel\AppData\Roaming\Tunngle
2013-03-25 22:07:34 ----D---- C:\ProgramData\Tunngle
2013-03-25 22:07:32 ----A---- C:\Windows\system32\drivers\tap0901t.sys
2013-03-25 22:07:31 ----D---- C:\Program Files\Tunngle
2013-03-25 19:36:55 ----D---- C:\Program Files\CCleaner
2013-03-24 17:02:32 ----D---- C:\Program Files\No-IP
2013-03-24 12:21:28 ----D---- C:\ProgramData\Media Center Programs
2013-03-24 12:21:24 ----D---- C:\Program Files\Common Files\BioWare
2013-03-24 02:12:03 ----D---- C:\Users\Karel\AppData\Roaming\ftblauncher
2013-03-23 20:30:56 ----A---- C:\Program Files\unins000.exe
2013-03-23 20:30:56 ----A---- C:\Program Files\unins000.dat
2013-03-23 01:27:35 ----D---- C:\ProgramData\ATI
2013-03-23 01:27:33 ----D---- C:\Program Files\AMD AVT
2013-03-22 19:37:09 ----D---- C:\Users\Karel\AppData\Roaming\PrivateTunnel
2013-03-22 19:36:46 ----D---- C:\Program Files\OpenVPN Technologies
2013-03-21 21:46:32 ----D---- C:\Program Files\HDSDR
2013-03-21 21:10:13 ----D---- C:\Program Files\ASIO4ALL v2
2013-03-21 21:09:44 ----D---- C:\Program Files\Vstplugins
2013-03-21 21:09:44 ----A---- C:\Windows\system32\rewire.dll
2013-03-21 21:08:46 ----D---- C:\Program Files\Outsim
2013-03-21 21:05:26 ----D---- C:\Program Files\Image-Line
2013-03-21 18:43:07 ----A---- C:\Windows\system32\drivers\AmdLLD.sys
2013-03-19 20:46:44 ----D---- C:\Users\Karel\AppData\Roaming\TeamViewer
2013-03-19 08:10:56 ----A---- C:\Windows\system32\atimpc32.dll
2013-03-19 08:10:56 ----A---- C:\Windows\system32\amdpcom32.dll
2013-03-19 08:10:34 ----A---- C:\Windows\system32\atiuxpag.dll
2013-03-19 08:09:54 ----A---- C:\Windows\system32\atidxx32.dll
2013-03-19 07:58:40 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-03-19 04:20:12 ----A---- C:\Windows\system32\atiapfxx.exe
2013-03-19 04:17:42 ----A---- C:\Windows\system32\aticalrt.dll
2013-03-19 04:17:34 ----A---- C:\Windows\system32\aticalcl.dll
2013-03-19 04:13:02 ----A---- C:\Windows\system32\aticaldd.dll
2013-03-19 03:56:24 ----A---- C:\Windows\system32\atidemgy.dll
2013-03-19 03:55:50 ----A---- C:\Windows\system32\atieclxx.exe
2013-03-19 03:55:10 ----A---- C:\Windows\system32\atiesrxx.exe
2013-03-19 03:53:52 ----A---- C:\Windows\system32\atitmmxx.dll
2013-03-19 03:53:42 ----A---- C:\Windows\system32\atimuixx.dll
2013-03-19 03:53:34 ----A---- C:\Windows\system32\ati2edxx.dll
2013-03-19 03:28:36 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-03-19 03:27:20 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-03-18 22:53:50 ----D---- C:\Users\Karel\AppData\Roaming\TortoiseSVN
2013-03-18 19:13:58 ----D---- C:\Users\Karel\AppData\Roaming\Subversion
2013-03-18 19:13:18 ----D---- C:\Program Files\TortoiseSVN
2013-03-18 19:13:18 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2013-03-17 13:34:16 ----A---- C:\Windows\system32\CmdLineExt.dll
2013-03-17 13:15:25 ----D---- C:\Program Files\Rockstar Games
2013-03-17 12:58:09 ----D---- C:\Program Files\Ubisoft
2013-03-17 12:47:46 ----RHD---- C:\Users\Karel\AppData\Roaming\SecuROM
2013-03-17 12:38:10 ----A---- C:\Users\Karel\AppData\Roaming\All CPU MeterV3_Settings.ini
2013-03-17 12:11:05 ----D---- C:\WPDSidebarGadget
2013-03-17 00:08:38 ----D---- C:\Program Files\THQ
2013-03-16 18:28:05 ----A---- C:\Windows\system32\drivers\VBoxDrv.sys
2013-03-16 18:27:57 ----A---- C:\Windows\system32\drivers\VBoxUSBMon.sys
2013-03-16 18:27:56 ----DC---- C:\Windows\system32\DRVSTORE
2013-03-16 18:27:48 ----D---- C:\Program Files\Oracle
2013-03-16 14:30:31 ----D---- C:\Program Files\Workshell
2013-03-15 20:30:06 ----A---- C:\Windows\system32\drivers\VBoxNetAdp.sys
2013-03-15 20:29:12 ----A---- C:\Windows\system32\drivers\VBoxUSB.sys
2013-03-15 20:29:12 ----A---- C:\Windows\system32\drivers\VBoxNetFlt.sys
2013-03-15 20:29:10 ----A---- C:\Windows\system32\VBoxNetFltNobj.dll
2013-03-14 23:40:35 ----A---- C:\Windows\system32\vsocklib.dll
2013-03-14 23:40:34 ----A---- C:\Windows\system32\drivers\vsock.sys
2013-03-14 23:40:31 ----A---- C:\Windows\system32\drivers\VMkbd.sys
2013-03-14 23:40:00 ----A---- C:\Windows\system32\vmnetdhcp.exe
2013-03-14 23:39:58 ----A---- C:\Windows\system32\vmnat.exe
2013-03-14 23:39:57 ----A---- C:\Windows\system32\drivers\vmnetuserif.sys
2013-03-14 23:39:53 ----A---- C:\Windows\system32\vnetlib.dll
2013-03-14 23:39:50 ----A---- C:\Windows\system32\drivers\hcmon.sys
2013-03-14 23:39:17 ----D---- C:\Program Files\Common Files\VMware
2013-03-14 23:00:54 ----D---- C:\Users\Karel\AppData\Roaming\VMware
2013-03-14 22:52:01 ----D---- C:\ProgramData\VMware
2013-03-14 22:52:01 ----D---- C:\Program Files\VMware
2013-03-14 22:31:50 ----A---- C:\Windows\system32\atioglxx.dll
2013-03-14 21:56:34 ----A---- C:\Windows\system32\atiadlxx.dll
2013-03-14 21:56:18 ----A---- C:\Windows\system32\atiglpxx.dll
2013-03-14 21:56:06 ----A---- C:\Windows\system32\atigktxx.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\wextract.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\vbscript.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\msrating.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\msls31.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\mshtmled.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\inseng.dll
2013-03-14 16:17:39 ----A---- C:\Windows\system32\iexpress.exe
2013-03-14 16:17:39 ----A---- C:\Windows\system32\elshyph.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\webcheck.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\url.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\pngfilt.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\occache.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshtmler.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\mshta.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\msfeedssync.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\licmgr10.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\imgutil.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieUnatt.exe
2013-03-14 16:17:38 ----A---- C:\Windows\system32\iepeers.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\iedkcs32.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieapfltr.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\ieapfltr.dat
2013-03-14 16:17:38 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\icardie.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\dxtrans.dll
2013-03-14 16:17:38 ----A---- C:\Windows\system32\dxtmsft.dll
2013-03-14 16:15:46 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-03-12 20:37:35 ----D---- C:\Program Files\Eagle Dynamics

======List of files/folders modified in the last 1 month======

2013-04-11 21:08:56 ----D---- C:\Users\Karel\AppData\Roaming\Skype
2013-04-11 21:08:42 ----D---- C:\Windows\Temp
2013-04-11 21:07:34 ----D---- C:\ProgramData\BOINC
2013-04-11 21:06:52 ----D---- C:\Users\Karel\AppData\Roaming\uTorrent
2013-04-11 21:06:49 ----D---- C:\Program Files\Steam
2013-04-11 21:05:58 ----D---- C:\Windows\system32\drivers
2013-04-11 21:04:10 ----D---- C:\Windows\system32\config
2013-04-11 21:03:41 ----D---- C:\Windows\System32
2013-04-11 21:03:41 ----D---- C:\Windows
2013-04-11 21:03:15 ----D---- C:\Windows\Tasks
2013-04-11 20:47:12 ----D---- C:\Windows\inf
2013-04-11 20:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-11 20:41:09 ----HD---- C:\ProgramData
2013-04-11 20:41:06 ----D---- C:\Windows\Prefetch
2013-04-11 20:39:14 ----D---- C:\Windows\winsxs
2013-04-11 20:36:21 ----D---- C:\Program Files\Internet Explorer
2013-04-11 20:35:34 ----D---- C:\Program Files
2013-04-11 18:59:30 ----D---- C:\ProgramData\PMB Files
2013-04-11 18:22:48 ----SHD---- C:\Windows\Installer
2013-04-11 18:21:48 ----SHD---- C:\System Volume Information
2013-04-11 15:24:27 ----D---- C:\ProgramData\Skype
2013-04-11 15:24:23 ----RD---- C:\Program Files\Skype
2013-04-11 15:24:23 ----D---- C:\Program Files\Common Files
2013-04-11 15:22:03 ----D---- C:\Windows\system32\Tasks
2013-04-11 15:21:50 ----D---- C:\Windows\Downloaded Program Files
2013-04-11 15:20:13 ----D---- C:\Program Files\BOINC
2013-04-10 19:16:16 ----D---- C:\Windows\Panther
2013-04-10 17:09:03 ----D---- C:\Windows\system32\catroot
2013-04-10 17:09:02 ----D---- C:\Windows\system32\catroot2
2013-04-10 17:05:59 ----D---- C:\Windows\debug
2013-04-10 17:05:55 ----A---- C:\Windows\system32\MRT.exe
2013-04-10 15:45:26 ----RSD---- C:\Windows\assembly
2013-04-07 17:18:46 ----D---- C:\Program Files\War Thunder
2013-04-07 11:47:45 ----D---- C:\Users\Karel\AppData\Roaming\.techniclauncher
2013-04-07 11:43:52 ----D---- C:\Users\Karel\AppData\Roaming\logs
2013-04-05 18:24:48 ----D---- C:\Users\Karel\AppData\Roaming\.minecraft
2013-04-01 18:35:44 ----D---- C:\Program Files\Eidos
2013-03-30 13:03:56 ----D---- C:\ProgramData\Codemasters
2013-03-30 12:51:59 ----D---- C:\Program Files\Codemasters
2013-03-30 12:41:35 ----D---- C:\Windows\system32\DriverStore
2013-03-30 12:39:35 ----D---- C:\Users\Karel\AppData\Roaming\DAEMON Tools Lite
2013-03-30 03:43:11 ----D---- C:\Program Files\Common Files\Steam
2013-03-29 19:07:20 ----D---- C:\Windows\Logs
2013-03-28 17:50:28 ----D---- C:\Users\Karel\AppData\Roaming\Seznam.cz
2013-03-25 22:07:33 ----RSD---- C:\Windows\Fonts
2013-03-25 19:58:51 ----D---- C:\Windows\Minidump
2013-03-24 12:12:44 ----D---- C:\Games
2013-03-23 01:27:33 ----D---- C:\ProgramData\AMD
2013-03-23 01:27:13 ----D---- C:\Program Files\ATI Technologies
2013-03-23 01:19:28 ----D---- C:\AMD
2013-03-22 19:13:14 ----SD---- C:\ProgramData\Microsoft
2013-03-22 00:04:09 ----D---- C:\Windows\system32\NDF
2013-03-21 18:43:12 ----SD---- C:\Users\Karel\AppData\Roaming\Microsoft
2013-03-21 18:43:04 ----D---- C:\Program Files\AMD
2013-03-19 08:10:26 ----A---- C:\Windows\system32\atiu9pag.dll
2013-03-19 08:10:18 ----A---- C:\Windows\system32\aticfx32.dll
2013-03-19 08:09:42 ----A---- C:\Windows\system32\atiumdva.dll
2013-03-19 08:09:30 ----A---- C:\Windows\system32\atiumdag.dll
2013-03-19 04:17:20 ----A---- C:\Windows\system32\coinst_12.10.17.dll
2013-03-17 15:14:13 ----D---- C:\Program Files\Pingus
2013-03-17 13:17:34 ----HD---- C:\Program Files\InstallShield Installation Information
2013-03-17 12:37:26 ----D---- C:\Windows\system32\wbem
2013-03-15 16:14:20 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-03-15 07:13:55 ----D---- C:\Windows\rescache
2013-03-14 17:40:17 ----D---- C:\Program Files\Microsoft Silverlight
2013-03-14 17:39:41 ----D---- C:\Windows\system32\cs-CZ
2013-03-14 17:39:41 ----D---- C:\Windows\AppPatch
2013-03-14 17:39:40 ----D---- C:\Windows\system32\migration
2013-03-14 17:39:40 ----D---- C:\Windows\system32\en-US
2013-03-14 17:39:40 ----D---- C:\Windows\PolicyDefinitions
2013-03-13 21:56:46 ----D---- C:\Program Files\Brutal Legend
2013-03-12 01:10:56 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-03-07 49248]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-03-07 164736]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-02-18 466008]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2012-10-24 71152]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2012-10-24 61464]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-03-07 60656]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-03-07 765736]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-03-07 368176]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-03-07 62376]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-30 242240]
R1 EIO;EIO Driver; C:\Windows\system32\DRIVERS\EIO.sys [2013-01-17 14336]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2013-03-15 188176]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2013-03-15 94480]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\AMD\OverDrive\i386\AODDriver2.sys [2013-02-06 49248]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2012-04-09 48256]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-03-07 29816]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-03-07 66336]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2012-10-11 41496]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2013-02-26 37016]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2013-02-26 26192]
R2 VMparport;VMware VMparport; \??\C:\Windows\system32\Drivers\VMparport.sys [2013-02-26 24272]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\Drivers\vmx86.sys [2013-02-26 62416]
R2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared); C:\Windows\system32\drivers\vstor2-mntapi10-shared.sys [2011-07-12 22768]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-19 9951744]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-19 460288]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 15232]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2013-01-15 80384]
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\system32\drivers\ATKDispLowFilter.sys [2009-02-17 30976]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-08-18 2752352]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 Point32;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2013-01-29 44144]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-30 187392]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2013-03-15 104720]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2013-03-15 115984]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2013-02-26 26064]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2013-02-26 16664]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Karel\AppData\Local\Temp\tmpB347.tmp []
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 bmdrvr;Modified Clusters Tracking Driver; C:\Windows\system32\drivers\bmdrvr.sys [2011-03-15 54384]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-03-06 32768]
S3 tapoas;TAP-Win32 Adapter OAS; C:\Windows\system32\DRIVERS\tapoas.sys [2012-07-15 26112]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 24064]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 27136]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2013-03-15 84752]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vmusb;VMware USB Client Driver; C:\Windows\System32\Drivers\vmusb.sys [2012-10-11 31280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-19 219136]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-18 291840]
R2 ASDR;ASDR; C:\Windows\System32\ASDR.exe [2009-07-27 61440]
R2 ATKFUSService;ATK Fast User Switch Service; C:\Windows\system32\ATKFUSService.exe [2009-12-01 61952]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-14 1436160]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 NoIPDUCService4;NO-IP DUC v4; C:\Program Files\No-IP\ducservice.exe [2013-01-24 11264]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]
R2 VMAuthdService;VMware Authorization Service; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [2013-02-26 87120]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\system32\vmnetdhcp.exe [2013-02-26 357456]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [2012-10-11 721048]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\system32\vmnat.exe [2013-02-26 436304]
R2 vmware-converter-agent;VMware vCenter Converter Standalone Agent; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [2011-08-19 423536]
R2 vmware-converter-server;VMware vCenter Converter Standalone Server; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-19 423536]
R2 vmware-converter-worker;VMware vCenter Converter Standalone Worker; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [2011-08-19 423536]
R2 VMwareHostd;VMware Workstation Server; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [2013-02-26 13242960]
S2 AODService;AODService; C:\Program Files\AMD\OverDrive\AODAssist.exe [2013-02-06 137096]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-03-26 543656]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2012-11-25 567256]
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2013-03-20 746392]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-17 1343400]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#22 Příspěvek od Rudy »

Log je OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
doomguy
Návštěvník
Návštěvník
Příspěvky: 86
Registrován: 07 srp 2011 18:24
Bydliště: Řevnice

Re: Windows update viry

#23 Příspěvek od doomguy »

Provedeno.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#24 Příspěvek od Rudy »

Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
doomguy
Návštěvník
Návštěvník
Příspěvky: 86
Registrován: 07 srp 2011 18:24
Bydliště: Řevnice

Re: Windows update viry

#25 Příspěvek od doomguy »

Delta search je pryč, zda se mi ze i je o trochu rychlejsi start pocitace, zatim se nedeji zadne spatne veci. :) Dekuji moc ze ste pomohl.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119525
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Windows update viry

#26 Příspěvek od Rudy »

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“