Zdravím. Mám problém s reklamami v prohlížeči (používám Google Chrome, ale vyskytuje se ve všech). Díval jsem se na internetu, jak to řešit, a nikde není nic kromě zablokování určitých cookies, což jsem již udělal, ale stejně se nic nestalo. Konkrétně jde o reklamy z ad.yieldmanager.com a z exoclick.com. Taktéž jsem si nainstaloval program SUPERAntiSpyware (jedná se předpokládám o spyware), ale ani ten nic neřeší. Nevěděl by, prosím, někdo, co s tím?
Zde je log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Florian at 2012-08-06 21:32:18
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 1633 GB (86%) free of 1907 GB
Total RAM: 8175 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:39, on 6.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trillian\trillian.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Florian.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O1 - Hosts: 66.232.114.203 http://www.google-analytics.com.
O1 - Hosts: 66.232.114.203 ad-emea.doubleclick.net.
O1 - Hosts: 66.232.114.203 http://www.statcounter.com.
O1 - Hosts: 108.163.215.51 http://www.google-analytics.com.
O1 - Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 - Hosts: 108.163.215.51 http://www.statcounter.com.
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Trillian.lnk = C:\Program Files (x86)\Trillian\trillian.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.line6.net
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10176 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4a7adc83-75ab-47f7-a59a-8c40c31b1295 -SystemEventPortName:HostProcess-2c3f7804-2fac-4db0-b2a1-3726c8eddce7 -IoCancelEventPortName:HostProcess-5dda4ac5-3cb2-49a5-bbd1-d3a6d9e315c1 -NonStateChangingEventPortName:HostProcess-29bfbee3-5ba9-4f85-bf18-f376d9929d5d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:830ac83f-9d89-4c2c-8aa7-e1636795c240
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Trillian\trillian.exe"
Steam.exe -silent
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd10/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3344.1.136050503\1723975621" /prefetch:3
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd10/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3344.2.2132081844\1022346237" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3344.8.333797865\792872340" --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-version=8.17.12.8026 --ignored=" --type=renderer " /prefetch:12
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3344.10.1948958941\2089341561" --lang=cs --ignored=" --type=renderer " /prefetch:13
"C:\Windows\system32\wuauclt.exe"
taskeng.exe {DB993736-54AA-4E77-ACE0-F1335D707936}
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd10/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warmest_socket/ --renderer-print-preview --channel="3344.98.338731421\1934410448" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwnd10/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warmest_socket/ --renderer-print-preview --channel="3344.99.2058932211\1610980586" /prefetch:3
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe60_ Global\UsGthrCtrlFltPipeMssGthrPipe60 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 544 548 556 65536 552
"C:\Users\Florian\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-27908995-1430856944-1559214145-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-27908995-1430856944-1559214145-1002UA.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 8a7b436b-4d03-4dc4-814e-238f897627cc.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 918435f4-be3f-4ebb-8f2f-0878b283e5d3.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 132448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-04-04 545152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-04-04 193416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-04-24 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-04-24 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-10-06 166936]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-10-06 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-10-06 416792]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 1271168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-12 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2012-08-06 1353080]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-07-10 5661056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Trillian.lnk - C:\Program Files (x86)\Trillian\trillian.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-10-01 380416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2012-08-06 21:32:18 ----D---- C:\rsit
2012-08-06 21:32:18 ----D---- C:\Program Files\trend micro
2012-08-01 23:22:58 ----D---- C:\Program Files (x86)\iSQL-Viewer
2012-07-29 20:53:57 ----D---- C:\Users\Florian\AppData\Roaming\TS3Client
2012-07-29 20:50:59 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-07-26 12:39:09 ----D---- C:\Users\Florian\AppData\Roaming\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\Program Files\SUPERAntiSpyware
2012-07-26 12:31:32 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL
2012-07-25 13:30:51 ----D---- C:\Program Files (x86)\Microsoft Security Client
2012-07-25 13:30:41 ----D---- C:\Program Files\Microsoft Security Client
2012-07-25 13:29:21 ----D---- C:\Windows\system32\appmgmt
2012-07-25 13:25:20 ----D---- C:\Program Files\Enigma Software Group
2012-07-25 13:24:16 ----D---- C:\Windows\F896D02690164122B9BD957FF092FFE9.TMP
2012-07-23 19:46:11 ----D---- C:\Users\Florian\AppData\Roaming\Audacity
2012-07-23 19:46:00 ----D---- C:\Program Files (x86)\Audacity
2012-07-22 22:37:31 ----A---- C:\Windows\system32\FntCache.dll
2012-07-22 22:37:30 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2012-07-22 22:37:30 ----A---- C:\Windows\system32\d2d1.dll
2012-07-11 08:34:32 ----A---- C:\Windows\system32\win32k.sys
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\iertutil.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\wininet.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript.dll
2012-07-11 08:33:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-07-11 08:33:03 ----A---- C:\Windows\system32\mshtml.dll
2012-07-11 08:33:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-07-11 08:33:02 ----A---- C:\Windows\system32\ieframe.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3.dll
2012-07-11 03:27:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-07-11 03:27:10 ----A---- C:\Windows\system32\shell32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\cng.sys
2012-07-11 03:27:06 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-07-11 03:27:06 ----A---- C:\Windows\system32\cdosys.dll
2012-07-10 15:02:09 ----A---- C:\prognoza.veg.bak
2012-07-06 03:00:32 ----A---- C:\Windows\system32\browserchoice.exe
2012-07-03 15:24:44 ----D---- C:\bugabuse
2012-07-03 15:23:51 ----D---- C:\Users\Florian\AppData\Roaming\IrfanView
2012-07-03 15:23:51 ----D---- C:\Program Files (x86)\IrfanView
2012-07-02 11:34:08 ----D---- C:\Users\Florian\AppData\Roaming\Mozilla
2012-07-02 11:33:19 ----D---- C:\Program Files\Tor Browser
2012-06-30 23:36:26 ----D---- C:\plochy
2012-06-30 23:36:04 ----D---- C:\Prazsky vyber, Straka v hrsti 1982, reedice 1990, 320
2012-06-30 20:37:43 ----D---- C:\Program Files (x86)\TeamViewer
2012-06-30 13:57:35 ----A---- C:\namyslenec.veg.bak
2012-06-30 13:35:42 ----D---- C:\1985 - Misplaced Childhood
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\yv12vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\i420vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\devil.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\AVSredirect.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\avisynth.dll
2012-06-30 13:29:31 ----D---- C:\Program Files (x86)\AviSynth 2.5
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\TAKDSDecoder.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\nbDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\msfDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\flvDX.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\drvc.dll
2012-06-30 13:28:01 ----D---- C:\Program Files (x86)\SUPER
2012-06-30 13:27:23 ----D---- C:\Program Files (x86)\eRightSoft
2012-06-29 16:33:17 ----D---- C:\Fraps
2012-06-29 16:25:41 ----D---- C:\Program Files (x86)\CamStudio 2.6b
2012-06-29 16:25:41 ----A---- C:\Windows\system32\CamCodec.dll
2012-06-28 19:00:04 ----D---- C:\Users\Florian\AppData\Roaming\TechSmith
2012-06-25 06:52:34 ----D---- C:\Users\Florian\AppData\Roaming\GHISLER
2012-06-25 06:52:34 ----D---- C:\totalcmd
2012-06-25 06:49:32 ----D---- C:\ProgramData\FlashFXP
2012-06-25 06:49:32 ----D---- C:\Program Files (x86)\FlashFXP 4
2012-06-24 23:24:09 ----D---- C:\Users\Florian\AppData\Roaming\Trillian
2012-06-24 23:22:08 ----D---- C:\Program Files (x86)\Trillian
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wups2.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wucltux.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuaueng.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuauclt.exe
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wups.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wudriver.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wuapi.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuwebv.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuapp.exe
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpwsx.dll
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-06-15 06:05:31 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-06-15 06:05:22 ----A---- C:\Windows\system32\profsvc.dll
2012-06-15 06:05:21 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-06-15 06:05:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-06-15 06:05:20 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-06-15 06:05:17 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-06-15 06:05:16 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-06-15 06:05:16 ----A---- C:\Windows\system32\msi.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\crypt32.dll
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Steam
2012-06-04 20:51:39 ----D---- C:\Users\Florian\AppData\Roaming\Sony Creative Software Inc
2012-06-04 19:59:56 ----D---- C:\Users\Florian\AppData\Roaming\AnvSoft
2012-06-04 19:59:22 ----D---- C:\Program Files (x86)\AnvSoft
2012-06-04 00:06:47 ----D---- C:\Temp
2012-06-04 00:06:47 ----A---- C:\test.txt
2012-05-30 08:17:46 ----A---- C:\Windows\system32\frapsv64.dll
2012-05-30 08:17:44 ----A---- C:\Windows\SYSWOW64\frapsvid.dll
2012-05-14 20:33:26 ----D---- C:\Program Files (x86)\World of Warcraft
2012-05-14 01:57:27 ----D---- C:\Windows\SYSWOW64\QuickTime
2012-05-14 01:57:16 ----D---- C:\Program Files (x86)\QuickTime
2012-05-14 01:56:56 ----D---- C:\ProgramData\TechSmith
2012-05-14 01:56:56 ----D---- C:\Program Files (x86)\TechSmith
2012-05-12 09:02:54 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-05-12 09:02:54 ----A---- C:\Windows\system32\DWrite.dll
2012-05-12 09:02:36 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-05-12 09:02:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-05-08 22:49:39 ----D---- C:\Program Files\Oracle
2012-05-08 22:48:40 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-05-08 22:48:40 ----A---- C:\Windows\system32\javaws.exe
2012-05-08 22:48:40 ----A---- C:\Windows\system32\deployJava1.dll
2012-05-08 22:48:37 ----A---- C:\Windows\system32\javaw.exe
2012-05-08 22:48:37 ----A---- C:\Windows\system32\java.exe
2012-05-08 22:47:00 ----D---- C:\Program Files\Java
2012-05-08 22:44:24 ----D---- C:\Program Files (x86)\BlueJ
2012-05-08 12:51:46 ----D---- C:\Users\Florian\AppData\Roaming\YouTube Downloader
2012-05-08 12:48:46 ----D---- C:\Program Files (x86)\YTD
2012-05-07 18:27:01 ----A---- C:\Untitled.veg.bak
2012-05-07 17:50:37 ----AD---- C:\ProgramData\TEMP
2012-05-07 17:33:39 ----D---- C:\Program Files (x86)\Joboshare
======List of files/folders modified in the last 3 months======
2012-08-06 21:32:31 ----D---- C:\Windows\Prefetch
2012-08-06 21:32:18 ----RD---- C:\Program Files
2012-08-06 21:32:15 ----D---- C:\Users\Florian\AppData\Roaming\Skype
2012-08-06 21:32:09 ----D---- C:\Windows\Temp
2012-08-06 18:21:11 ----D---- C:\Windows\system32\config
2012-08-06 18:14:27 ----SHD---- C:\System Volume Information
2012-08-06 13:31:21 ----D---- C:\Windows\SysWOW64
2012-08-06 13:31:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-06 12:19:25 ----D---- C:\Windows\System32
2012-08-06 12:19:25 ----D---- C:\Windows\inf
2012-08-06 12:19:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-06 12:13:09 ----D---- C:\ProgramData\NVIDIA
2012-08-02 11:54:24 ----D---- C:\Windows\system32\catroot
2012-08-02 11:54:08 ----D---- C:\Users\Florian\AppData\Roaming\uTorrent
2012-08-02 11:54:07 ----D---- C:\Users\Florian\AppData\Roaming\esmska
2012-08-01 23:22:58 ----RD---- C:\Program Files (x86)
2012-08-01 23:21:56 ----SHD---- C:\Windows\Installer
2012-08-01 22:47:25 ----D---- C:\Users\Florian\AppData\Roaming\vlc
2012-07-27 03:01:38 ----D---- C:\Windows
2012-07-27 03:01:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-07-27 03:01:35 ----D---- C:\Windows\system32\drivers
2012-07-26 12:39:19 ----D---- C:\Windows\Tasks
2012-07-26 12:39:19 ----D---- C:\Windows\system32\Tasks
2012-07-26 12:39:09 ----HD---- C:\ProgramData
2012-07-25 13:30:51 ----SD---- C:\ProgramData\Microsoft
2012-07-23 03:17:17 ----D---- C:\Windows\winsxs
2012-07-22 15:42:30 ----D---- C:\ProgramData\Skype
2012-07-22 15:42:29 ----RD---- C:\Program Files (x86)\Skype
2012-07-21 21:26:16 ----D---- C:\Windows\system32\drivers\etc
2012-07-21 17:41:32 ----D---- C:\Windows\SYSWOW64\migration
2012-07-21 17:41:32 ----D---- C:\Program Files (x86)\Internet Explorer
2012-07-21 17:41:29 ----D---- C:\Windows\system32\migration
2012-07-21 17:41:27 ----D---- C:\Program Files\Internet Explorer
2012-07-11 08:34:03 ----D---- C:\ProgramData\Microsoft Help
2012-07-11 08:33:22 ----D---- C:\Windows\system32\catroot2
2012-07-11 02:51:54 ----D---- C:\Program Files (x86)\uTorrent
2012-06-30 20:41:02 ----D---- C:\Users\Florian\AppData\Roaming\TeamViewer
2012-06-30 13:28:12 ----RSD---- C:\Windows\Fonts
2012-06-28 18:06:39 ----D---- C:\Windows\system32\wfp
2012-06-28 18:06:37 ----D---- C:\Windows\system32\wbem
2012-06-28 18:05:36 ----D---- C:\Windows\system32\DriverStore
2012-06-28 18:05:36 ----D---- C:\Windows\system32\CodeIntegrity
2012-06-28 18:05:34 ----D---- C:\Windows\registration
2012-06-27 13:16:02 ----D---- C:\Windows\system32\LogFiles
2012-06-21 17:12:02 ----D---- C:\Windows\rescache
2012-06-21 15:13:53 ----D---- C:\Windows\system32\cs-CZ
2012-06-16 03:31:24 ----D---- C:\Windows\Microsoft.NET
2012-06-16 03:31:14 ----RSD---- C:\Windows\assembly
2012-06-16 03:20:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-06-07 00:20:41 ----D---- C:\Windows\system32\FxsTmp
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Common Files
2012-06-05 01:24:50 ----SD---- C:\Users\Florian\AppData\Roaming\Microsoft
2012-05-13 18:18:39 ----D---- C:\Program Files (x86)\Opera
2012-05-13 03:23:08 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-05-13 03:00:28 ----D---- C:\Program Files\Windows Journal
2012-05-07 15:31:58 ----D---- C:\Program Files (x86)\SnadBoy's Revelation v2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 203888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-04-13 560184]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-04-11 1579520]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-02-08 39936]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-02-08 64512]
R3 L6UX2;Service - Line 6 UX2; C:\Windows\System32\Drivers\L6UX264.sys [2011-06-23 768000]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2010-09-21 56344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 amp7vbgh;amp7vbgh; C:\Windows\system32\drivers\amp7vbgh.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-05 61280]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-10-01 12157792]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys [2011-07-22 277096]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 12600]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 980072]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-04-13 1255736]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Reklamy v browseru, blokace cookies nic neřeší.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Reklamy v browseru, blokace cookies nic neřeší.
Také zdravím!
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!< Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\Microsoft\BingBar
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-27908995-1430856944-1559214145-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-27908995-1430856944-1559214145-1002UA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
[Resethosts]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Reklamy v browseru, blokace cookies nic neřeší.
Děkuji za radu. Zde je tedy nový log RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Florian at 2012-08-06 22:23:43
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 1646 GB (86%) free of 1907 GB
Total RAM: 8175 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:23:47, on 6.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal
Running processes:
C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Trillian\trillian.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Florian.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Trillian.lnk = C:\Program Files (x86)\Trillian\trillian.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.line6.net
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (file missing)
O23 - Service: BBUpdate - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9953 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6965cd57-0a8e-465e-9c4b-5ea3743e5c0b -SystemEventPortName:HostProcess-0134cd8b-53aa-4174-a368-e6a7c785b99a -IoCancelEventPortName:HostProcess-e8e5dbed-538a-4095-8ca1-87c12f0074d6 -NonStateChangingEventPortName:HostProcess-3ad6c4b1-9a2b-468a-9e64-17fddd58fff9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:96be93e1-0b8f-4465-b8e6-c1383c42bba8
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\08062012_221903.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Trillian\trillian.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="4632.1.1434326355\1538512436" /prefetch:3
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="4632.2.872597438\1980346540" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="4632.3.1023470979\1134469064" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4632.6.1971053793\1444858504" --lang=cs --ignored=" --type=renderer " /prefetch:13
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4632.7.823502378\1333554994" --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-version=8.17.12.8026 --ignored=" --type=renderer " /prefetch:12
C:\Windows\system32\sppsvc.exe
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="4632.8.837915766\1152250451" /prefetch:3
"C:\Users\Florian\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 8a7b436b-4d03-4dc4-814e-238f897627cc.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 918435f4-be3f-4ebb-8f2f-0878b283e5d3.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 132448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-04-04 545152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-04-04 193416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-04-24 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-04-24 42272]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-10-06 166936]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-10-06 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-10-06 416792]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 1271168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-12 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2012-08-06 1353080]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-07-10 5661056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Trillian.lnk - C:\Program Files (x86)\Trillian\trillian.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-10-01 380416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2012-08-06 22:19:03 ----D---- C:\_OTM
2012-08-06 21:32:18 ----D---- C:\rsit
2012-08-06 21:32:18 ----D---- C:\Program Files\trend micro
2012-08-01 23:22:58 ----D---- C:\Program Files (x86)\iSQL-Viewer
2012-07-29 20:53:57 ----D---- C:\Users\Florian\AppData\Roaming\TS3Client
2012-07-29 20:50:59 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-07-26 12:39:09 ----D---- C:\Users\Florian\AppData\Roaming\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\Program Files\SUPERAntiSpyware
2012-07-26 12:31:32 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL
2012-07-25 13:30:51 ----D---- C:\Program Files (x86)\Microsoft Security Client
2012-07-25 13:30:41 ----D---- C:\Program Files\Microsoft Security Client
2012-07-25 13:29:21 ----D---- C:\Windows\system32\appmgmt
2012-07-25 13:25:20 ----D---- C:\Program Files\Enigma Software Group
2012-07-23 19:46:11 ----D---- C:\Users\Florian\AppData\Roaming\Audacity
2012-07-23 19:46:00 ----D---- C:\Program Files (x86)\Audacity
2012-07-22 22:37:31 ----A---- C:\Windows\system32\FntCache.dll
2012-07-22 22:37:30 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2012-07-22 22:37:30 ----A---- C:\Windows\system32\d2d1.dll
2012-07-11 08:34:32 ----A---- C:\Windows\system32\win32k.sys
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\iertutil.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\wininet.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript.dll
2012-07-11 08:33:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-07-11 08:33:03 ----A---- C:\Windows\system32\mshtml.dll
2012-07-11 08:33:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-07-11 08:33:02 ----A---- C:\Windows\system32\ieframe.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3.dll
2012-07-11 03:27:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-07-11 03:27:10 ----A---- C:\Windows\system32\shell32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\cng.sys
2012-07-11 03:27:06 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-07-11 03:27:06 ----A---- C:\Windows\system32\cdosys.dll
2012-07-10 15:02:09 ----A---- C:\prognoza.veg.bak
2012-07-06 03:00:32 ----A---- C:\Windows\system32\browserchoice.exe
2012-07-03 15:24:44 ----D---- C:\bugabuse
2012-07-03 15:23:51 ----D---- C:\Users\Florian\AppData\Roaming\IrfanView
2012-07-03 15:23:51 ----D---- C:\Program Files (x86)\IrfanView
2012-07-02 11:34:08 ----D---- C:\Users\Florian\AppData\Roaming\Mozilla
2012-07-02 11:33:19 ----D---- C:\Program Files\Tor Browser
2012-06-30 23:36:26 ----D---- C:\plochy
2012-06-30 23:36:04 ----D---- C:\Prazsky vyber, Straka v hrsti 1982, reedice 1990, 320
2012-06-30 20:37:43 ----D---- C:\Program Files (x86)\TeamViewer
2012-06-30 13:57:35 ----A---- C:\namyslenec.veg.bak
2012-06-30 13:35:42 ----D---- C:\1985 - Misplaced Childhood
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\yv12vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\i420vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\devil.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\AVSredirect.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\avisynth.dll
2012-06-30 13:29:31 ----D---- C:\Program Files (x86)\AviSynth 2.5
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\TAKDSDecoder.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\nbDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\msfDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\flvDX.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\drvc.dll
2012-06-30 13:28:01 ----D---- C:\Program Files (x86)\SUPER
2012-06-30 13:27:23 ----D---- C:\Program Files (x86)\eRightSoft
2012-06-29 16:33:17 ----D---- C:\Fraps
2012-06-29 16:25:41 ----D---- C:\Program Files (x86)\CamStudio 2.6b
2012-06-29 16:25:41 ----A---- C:\Windows\system32\CamCodec.dll
2012-06-28 19:00:04 ----D---- C:\Users\Florian\AppData\Roaming\TechSmith
2012-06-25 06:52:34 ----D---- C:\Users\Florian\AppData\Roaming\GHISLER
2012-06-25 06:52:34 ----D---- C:\totalcmd
2012-06-25 06:49:32 ----D---- C:\ProgramData\FlashFXP
2012-06-25 06:49:32 ----D---- C:\Program Files (x86)\FlashFXP 4
2012-06-24 23:24:09 ----D---- C:\Users\Florian\AppData\Roaming\Trillian
2012-06-24 23:22:08 ----D---- C:\Program Files (x86)\Trillian
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wups2.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wucltux.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuaueng.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuauclt.exe
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wups.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wudriver.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wuapi.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuwebv.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuapp.exe
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpwsx.dll
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-06-15 06:05:31 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-06-15 06:05:22 ----A---- C:\Windows\system32\profsvc.dll
2012-06-15 06:05:21 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-06-15 06:05:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-06-15 06:05:20 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-06-15 06:05:17 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-06-15 06:05:16 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-06-15 06:05:16 ----A---- C:\Windows\system32\msi.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\crypt32.dll
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Steam
2012-06-04 20:51:39 ----D---- C:\Users\Florian\AppData\Roaming\Sony Creative Software Inc
2012-06-04 19:59:56 ----D---- C:\Users\Florian\AppData\Roaming\AnvSoft
2012-06-04 19:59:22 ----D---- C:\Program Files (x86)\AnvSoft
2012-06-04 00:06:47 ----D---- C:\Temp
2012-06-04 00:06:47 ----A---- C:\test.txt
2012-05-30 08:17:46 ----A---- C:\Windows\system32\frapsv64.dll
2012-05-30 08:17:44 ----A---- C:\Windows\SYSWOW64\frapsvid.dll
2012-05-14 20:33:26 ----D---- C:\Program Files (x86)\World of Warcraft
2012-05-14 01:57:27 ----D---- C:\Windows\SYSWOW64\QuickTime
2012-05-14 01:57:16 ----D---- C:\Program Files (x86)\QuickTime
2012-05-14 01:56:56 ----D---- C:\ProgramData\TechSmith
2012-05-14 01:56:56 ----D---- C:\Program Files (x86)\TechSmith
2012-05-12 09:02:54 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-05-12 09:02:54 ----A---- C:\Windows\system32\DWrite.dll
2012-05-12 09:02:36 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-05-12 09:02:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-05-08 22:49:39 ----D---- C:\Program Files\Oracle
2012-05-08 22:48:40 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-05-08 22:48:40 ----A---- C:\Windows\system32\javaws.exe
2012-05-08 22:48:40 ----A---- C:\Windows\system32\deployJava1.dll
2012-05-08 22:48:37 ----A---- C:\Windows\system32\javaw.exe
2012-05-08 22:48:37 ----A---- C:\Windows\system32\java.exe
2012-05-08 22:47:00 ----D---- C:\Program Files\Java
2012-05-08 22:44:24 ----D---- C:\Program Files (x86)\BlueJ
2012-05-08 12:51:46 ----D---- C:\Users\Florian\AppData\Roaming\YouTube Downloader
2012-05-08 12:48:46 ----D---- C:\Program Files (x86)\YTD
2012-05-07 18:27:01 ----A---- C:\Untitled.veg.bak
2012-05-07 17:50:37 ----AD---- C:\ProgramData\TEMP
2012-05-07 17:33:39 ----D---- C:\Program Files (x86)\Joboshare
======List of files/folders modified in the last 3 months======
2012-08-06 22:23:25 ----D---- C:\Windows\Temp
2012-08-06 22:22:35 ----D---- C:\Users\Florian\AppData\Roaming\Skype
2012-08-06 22:21:03 ----D---- C:\ProgramData\NVIDIA
2012-08-06 22:19:56 ----D---- C:\Windows\system32\drivers\etc
2012-08-06 22:19:54 ----D---- C:\Windows
2012-08-06 22:19:22 ----D---- C:\Windows\Tasks
2012-08-06 22:19:20 ----D---- C:\Program Files (x86)\Microsoft
2012-08-06 22:17:55 ----D---- C:\Windows\Prefetch
2012-08-06 21:32:18 ----RD---- C:\Program Files
2012-08-06 18:21:11 ----D---- C:\Windows\system32\config
2012-08-06 18:14:27 ----SHD---- C:\System Volume Information
2012-08-06 13:31:21 ----D---- C:\Windows\SysWOW64
2012-08-06 13:31:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-06 12:19:25 ----D---- C:\Windows\System32
2012-08-06 12:19:25 ----D---- C:\Windows\inf
2012-08-06 12:19:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-02 11:54:24 ----D---- C:\Windows\system32\catroot
2012-08-02 11:54:08 ----D---- C:\Users\Florian\AppData\Roaming\uTorrent
2012-08-02 11:54:07 ----D---- C:\Users\Florian\AppData\Roaming\esmska
2012-08-01 23:22:58 ----RD---- C:\Program Files (x86)
2012-08-01 23:21:56 ----SHD---- C:\Windows\Installer
2012-08-01 22:47:25 ----D---- C:\Users\Florian\AppData\Roaming\vlc
2012-07-27 03:01:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-07-27 03:01:35 ----D---- C:\Windows\system32\drivers
2012-07-26 12:39:19 ----D---- C:\Windows\system32\Tasks
2012-07-26 12:39:09 ----HD---- C:\ProgramData
2012-07-25 13:30:51 ----SD---- C:\ProgramData\Microsoft
2012-07-23 03:17:17 ----D---- C:\Windows\winsxs
2012-07-22 15:42:30 ----D---- C:\ProgramData\Skype
2012-07-22 15:42:29 ----RD---- C:\Program Files (x86)\Skype
2012-07-21 17:41:32 ----D---- C:\Windows\SYSWOW64\migration
2012-07-21 17:41:32 ----D---- C:\Program Files (x86)\Internet Explorer
2012-07-21 17:41:29 ----D---- C:\Windows\system32\migration
2012-07-21 17:41:27 ----D---- C:\Program Files\Internet Explorer
2012-07-11 08:34:03 ----D---- C:\ProgramData\Microsoft Help
2012-07-11 08:33:22 ----D---- C:\Windows\system32\catroot2
2012-07-11 02:51:54 ----D---- C:\Program Files (x86)\uTorrent
2012-06-30 20:41:02 ----D---- C:\Users\Florian\AppData\Roaming\TeamViewer
2012-06-30 13:28:12 ----RSD---- C:\Windows\Fonts
2012-06-28 18:06:39 ----D---- C:\Windows\system32\wfp
2012-06-28 18:06:37 ----D---- C:\Windows\system32\wbem
2012-06-28 18:05:36 ----D---- C:\Windows\system32\DriverStore
2012-06-28 18:05:36 ----D---- C:\Windows\system32\CodeIntegrity
2012-06-28 18:05:34 ----D---- C:\Windows\registration
2012-06-27 13:16:02 ----D---- C:\Windows\system32\LogFiles
2012-06-21 17:12:02 ----D---- C:\Windows\rescache
2012-06-21 15:13:53 ----D---- C:\Windows\system32\cs-CZ
2012-06-16 03:31:24 ----D---- C:\Windows\Microsoft.NET
2012-06-16 03:31:14 ----RSD---- C:\Windows\assembly
2012-06-16 03:20:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-06-07 00:20:41 ----D---- C:\Windows\system32\FxsTmp
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Common Files
2012-06-05 01:24:50 ----SD---- C:\Users\Florian\AppData\Roaming\Microsoft
2012-05-13 18:18:39 ----D---- C:\Program Files (x86)\Opera
2012-05-13 03:23:08 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-05-13 03:00:28 ----D---- C:\Program Files\Windows Journal
2012-05-07 15:31:58 ----D---- C:\Program Files (x86)\SnadBoy's Revelation v2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 203888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-04-13 560184]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-04-11 1579520]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-02-08 39936]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-02-08 64512]
R3 L6UX2;Service - Line 6 UX2; C:\Windows\System32\Drivers\L6UX264.sys [2011-06-23 768000]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2010-09-21 56344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 acvjg1fq;acvjg1fq; C:\Windows\system32\drivers\acvjg1fq.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-05 61280]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-10-01 12157792]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys [2011-07-22 277096]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 12600]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 980072]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE []
S2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-04-13 1255736]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Florian at 2012-08-06 22:23:43
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 1646 GB (86%) free of 1907 GB
Total RAM: 8175 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:23:47, on 6.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal
Running processes:
C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Trillian\trillian.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Florian.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Trillian.lnk = C:\Program Files (x86)\Trillian\trillian.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.line6.net
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bing Bar Update Service (BBSvc) - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (file missing)
O23 - Service: BBUpdate - Unknown owner - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9953 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6965cd57-0a8e-465e-9c4b-5ea3743e5c0b -SystemEventPortName:HostProcess-0134cd8b-53aa-4174-a368-e6a7c785b99a -IoCancelEventPortName:HostProcess-e8e5dbed-538a-4095-8ca1-87c12f0074d6 -NonStateChangingEventPortName:HostProcess-3ad6c4b1-9a2b-468a-9e64-17fddd58fff9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:96be93e1-0b8f-4465-b8e6-c1383c42bba8
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\08062012_221903.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Trillian\trillian.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="4632.1.1434326355\1538512436" /prefetch:3
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="4632.2.872597438\1980346540" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="4632.3.1023470979\1134469064" /prefetch:3
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4632.6.1971053793\1444858504" --lang=cs --ignored=" --type=renderer " /prefetch:13
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4632.7.823502378\1333554994" --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-version=8.17.12.8026 --ignored=" --type=renderer " /prefetch:12
C:\Windows\system32\sppsvc.exe
"C:\Users\Florian\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/10/Prerender/ContentPrefetchPrerender2/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_09/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="4632.8.837915766\1152250451" /prefetch:3
"C:\Users\Florian\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 8a7b436b-4d03-4dc4-814e-238f897627cc.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 918435f4-be3f-4ebb-8f2f-0878b283e5d3.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-05 132448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-04-04 545152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-04-04 193416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-04-24 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-04-24 42272]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-10-06 166936]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-10-06 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-10-06 416792]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 1271168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Florian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-12 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Steam"=C:\Program Files (x86)\Steam\Steam.exe [2012-08-06 1353080]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-07-10 5661056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Trillian.lnk - C:\Program Files (x86)\Trillian\trillian.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-10-01 380416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2012-08-06 22:19:03 ----D---- C:\_OTM
2012-08-06 21:32:18 ----D---- C:\rsit
2012-08-06 21:32:18 ----D---- C:\Program Files\trend micro
2012-08-01 23:22:58 ----D---- C:\Program Files (x86)\iSQL-Viewer
2012-07-29 20:53:57 ----D---- C:\Users\Florian\AppData\Roaming\TS3Client
2012-07-29 20:50:59 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-07-26 12:39:09 ----D---- C:\Users\Florian\AppData\Roaming\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-07-26 12:39:02 ----D---- C:\Program Files\SUPERAntiSpyware
2012-07-26 12:31:32 ----A---- C:\Windows\SYSWOW64\MSSTDFMT.DLL
2012-07-25 13:30:51 ----D---- C:\Program Files (x86)\Microsoft Security Client
2012-07-25 13:30:41 ----D---- C:\Program Files\Microsoft Security Client
2012-07-25 13:29:21 ----D---- C:\Windows\system32\appmgmt
2012-07-25 13:25:20 ----D---- C:\Program Files\Enigma Software Group
2012-07-23 19:46:11 ----D---- C:\Users\Florian\AppData\Roaming\Audacity
2012-07-23 19:46:00 ----D---- C:\Program Files (x86)\Audacity
2012-07-22 22:37:31 ----A---- C:\Windows\system32\FntCache.dll
2012-07-22 22:37:30 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2012-07-22 22:37:30 ----A---- C:\Windows\system32\d2d1.dll
2012-07-11 08:34:32 ----A---- C:\Windows\system32\win32k.sys
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\url.dll
2012-07-11 08:33:06 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\urlmon.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-11 08:33:05 ----A---- C:\Windows\system32\ieui.dll
2012-07-11 08:33:05 ----A---- C:\Windows\system32\iertutil.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\wininet.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript9.dll
2012-07-11 08:33:04 ----A---- C:\Windows\system32\jscript.dll
2012-07-11 08:33:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-07-11 08:33:03 ----A---- C:\Windows\system32\mshtml.dll
2012-07-11 08:33:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-07-11 08:33:02 ----A---- C:\Windows\system32\ieframe.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml6.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3r.dll
2012-07-11 03:27:17 ----A---- C:\Windows\system32\msxml3.dll
2012-07-11 03:27:10 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-07-11 03:27:10 ----A---- C:\Windows\system32\shell32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-07-11 03:27:08 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\schannel.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-11 03:27:08 ----A---- C:\Windows\system32\drivers\cng.sys
2012-07-11 03:27:06 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-07-11 03:27:06 ----A---- C:\Windows\system32\cdosys.dll
2012-07-10 15:02:09 ----A---- C:\prognoza.veg.bak
2012-07-06 03:00:32 ----A---- C:\Windows\system32\browserchoice.exe
2012-07-03 15:24:44 ----D---- C:\bugabuse
2012-07-03 15:23:51 ----D---- C:\Users\Florian\AppData\Roaming\IrfanView
2012-07-03 15:23:51 ----D---- C:\Program Files (x86)\IrfanView
2012-07-02 11:34:08 ----D---- C:\Users\Florian\AppData\Roaming\Mozilla
2012-07-02 11:33:19 ----D---- C:\Program Files\Tor Browser
2012-06-30 23:36:26 ----D---- C:\plochy
2012-06-30 23:36:04 ----D---- C:\Prazsky vyber, Straka v hrsti 1982, reedice 1990, 320
2012-06-30 20:37:43 ----D---- C:\Program Files (x86)\TeamViewer
2012-06-30 13:57:35 ----A---- C:\namyslenec.veg.bak
2012-06-30 13:35:42 ----D---- C:\1985 - Misplaced Childhood
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\yv12vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\i420vfw.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\devil.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\AVSredirect.dll
2012-06-30 13:29:33 ----A---- C:\Windows\SYSWOW64\avisynth.dll
2012-06-30 13:29:31 ----D---- C:\Program Files (x86)\AviSynth 2.5
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\TAKDSDecoder.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\nbDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\msfDX.dll
2012-06-30 13:28:02 ----RASH---- C:\Windows\SYSWOW64\flvDX.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2012-06-30 13:28:02 ----A---- C:\Windows\SYSWOW64\drvc.dll
2012-06-30 13:28:01 ----D---- C:\Program Files (x86)\SUPER
2012-06-30 13:27:23 ----D---- C:\Program Files (x86)\eRightSoft
2012-06-29 16:33:17 ----D---- C:\Fraps
2012-06-29 16:25:41 ----D---- C:\Program Files (x86)\CamStudio 2.6b
2012-06-29 16:25:41 ----A---- C:\Windows\system32\CamCodec.dll
2012-06-28 19:00:04 ----D---- C:\Users\Florian\AppData\Roaming\TechSmith
2012-06-25 06:52:34 ----D---- C:\Users\Florian\AppData\Roaming\GHISLER
2012-06-25 06:52:34 ----D---- C:\totalcmd
2012-06-25 06:49:32 ----D---- C:\ProgramData\FlashFXP
2012-06-25 06:49:32 ----D---- C:\Program Files (x86)\FlashFXP 4
2012-06-24 23:24:09 ----D---- C:\Users\Florian\AppData\Roaming\Trillian
2012-06-24 23:22:08 ----D---- C:\Program Files (x86)\Trillian
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wups2.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wucltux.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuaueng.dll
2012-06-19 17:09:26 ----A---- C:\Windows\system32\wuauclt.exe
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wups.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wudriver.dll
2012-06-19 17:08:20 ----A---- C:\Windows\system32\wuapi.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuwebv.dll
2012-06-19 17:08:03 ----A---- C:\Windows\system32\wuapp.exe
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpwsx.dll
2012-06-15 06:05:32 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-06-15 06:05:31 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-06-15 06:05:22 ----A---- C:\Windows\system32\profsvc.dll
2012-06-15 06:05:21 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-06-15 06:05:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-06-15 06:05:20 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-06-15 06:05:17 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-06-15 06:05:16 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-06-15 06:05:16 ----A---- C:\Windows\system32\msi.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptsvc.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\cryptnet.dll
2012-06-15 06:05:13 ----A---- C:\Windows\system32\crypt32.dll
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Steam
2012-06-04 20:51:39 ----D---- C:\Users\Florian\AppData\Roaming\Sony Creative Software Inc
2012-06-04 19:59:56 ----D---- C:\Users\Florian\AppData\Roaming\AnvSoft
2012-06-04 19:59:22 ----D---- C:\Program Files (x86)\AnvSoft
2012-06-04 00:06:47 ----D---- C:\Temp
2012-06-04 00:06:47 ----A---- C:\test.txt
2012-05-30 08:17:46 ----A---- C:\Windows\system32\frapsv64.dll
2012-05-30 08:17:44 ----A---- C:\Windows\SYSWOW64\frapsvid.dll
2012-05-14 20:33:26 ----D---- C:\Program Files (x86)\World of Warcraft
2012-05-14 01:57:27 ----D---- C:\Windows\SYSWOW64\QuickTime
2012-05-14 01:57:16 ----D---- C:\Program Files (x86)\QuickTime
2012-05-14 01:56:56 ----D---- C:\ProgramData\TechSmith
2012-05-14 01:56:56 ----D---- C:\Program Files (x86)\TechSmith
2012-05-12 09:02:54 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-05-12 09:02:54 ----A---- C:\Windows\system32\DWrite.dll
2012-05-12 09:02:36 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-05-12 09:02:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-05-08 22:49:39 ----D---- C:\Program Files\Oracle
2012-05-08 22:48:40 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-05-08 22:48:40 ----A---- C:\Windows\system32\javaws.exe
2012-05-08 22:48:40 ----A---- C:\Windows\system32\deployJava1.dll
2012-05-08 22:48:37 ----A---- C:\Windows\system32\javaw.exe
2012-05-08 22:48:37 ----A---- C:\Windows\system32\java.exe
2012-05-08 22:47:00 ----D---- C:\Program Files\Java
2012-05-08 22:44:24 ----D---- C:\Program Files (x86)\BlueJ
2012-05-08 12:51:46 ----D---- C:\Users\Florian\AppData\Roaming\YouTube Downloader
2012-05-08 12:48:46 ----D---- C:\Program Files (x86)\YTD
2012-05-07 18:27:01 ----A---- C:\Untitled.veg.bak
2012-05-07 17:50:37 ----AD---- C:\ProgramData\TEMP
2012-05-07 17:33:39 ----D---- C:\Program Files (x86)\Joboshare
======List of files/folders modified in the last 3 months======
2012-08-06 22:23:25 ----D---- C:\Windows\Temp
2012-08-06 22:22:35 ----D---- C:\Users\Florian\AppData\Roaming\Skype
2012-08-06 22:21:03 ----D---- C:\ProgramData\NVIDIA
2012-08-06 22:19:56 ----D---- C:\Windows\system32\drivers\etc
2012-08-06 22:19:54 ----D---- C:\Windows
2012-08-06 22:19:22 ----D---- C:\Windows\Tasks
2012-08-06 22:19:20 ----D---- C:\Program Files (x86)\Microsoft
2012-08-06 22:17:55 ----D---- C:\Windows\Prefetch
2012-08-06 21:32:18 ----RD---- C:\Program Files
2012-08-06 18:21:11 ----D---- C:\Windows\system32\config
2012-08-06 18:14:27 ----SHD---- C:\System Volume Information
2012-08-06 13:31:21 ----D---- C:\Windows\SysWOW64
2012-08-06 13:31:19 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-06 12:19:25 ----D---- C:\Windows\System32
2012-08-06 12:19:25 ----D---- C:\Windows\inf
2012-08-06 12:19:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-02 11:54:24 ----D---- C:\Windows\system32\catroot
2012-08-02 11:54:08 ----D---- C:\Users\Florian\AppData\Roaming\uTorrent
2012-08-02 11:54:07 ----D---- C:\Users\Florian\AppData\Roaming\esmska
2012-08-01 23:22:58 ----RD---- C:\Program Files (x86)
2012-08-01 23:21:56 ----SHD---- C:\Windows\Installer
2012-08-01 22:47:25 ----D---- C:\Users\Florian\AppData\Roaming\vlc
2012-07-27 03:01:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-07-27 03:01:35 ----D---- C:\Windows\system32\drivers
2012-07-26 12:39:19 ----D---- C:\Windows\system32\Tasks
2012-07-26 12:39:09 ----HD---- C:\ProgramData
2012-07-25 13:30:51 ----SD---- C:\ProgramData\Microsoft
2012-07-23 03:17:17 ----D---- C:\Windows\winsxs
2012-07-22 15:42:30 ----D---- C:\ProgramData\Skype
2012-07-22 15:42:29 ----RD---- C:\Program Files (x86)\Skype
2012-07-21 17:41:32 ----D---- C:\Windows\SYSWOW64\migration
2012-07-21 17:41:32 ----D---- C:\Program Files (x86)\Internet Explorer
2012-07-21 17:41:29 ----D---- C:\Windows\system32\migration
2012-07-21 17:41:27 ----D---- C:\Program Files\Internet Explorer
2012-07-11 08:34:03 ----D---- C:\ProgramData\Microsoft Help
2012-07-11 08:33:22 ----D---- C:\Windows\system32\catroot2
2012-07-11 02:51:54 ----D---- C:\Program Files (x86)\uTorrent
2012-06-30 20:41:02 ----D---- C:\Users\Florian\AppData\Roaming\TeamViewer
2012-06-30 13:28:12 ----RSD---- C:\Windows\Fonts
2012-06-28 18:06:39 ----D---- C:\Windows\system32\wfp
2012-06-28 18:06:37 ----D---- C:\Windows\system32\wbem
2012-06-28 18:05:36 ----D---- C:\Windows\system32\DriverStore
2012-06-28 18:05:36 ----D---- C:\Windows\system32\CodeIntegrity
2012-06-28 18:05:34 ----D---- C:\Windows\registration
2012-06-27 13:16:02 ----D---- C:\Windows\system32\LogFiles
2012-06-21 17:12:02 ----D---- C:\Windows\rescache
2012-06-21 15:13:53 ----D---- C:\Windows\system32\cs-CZ
2012-06-16 03:31:24 ----D---- C:\Windows\Microsoft.NET
2012-06-16 03:31:14 ----RSD---- C:\Windows\assembly
2012-06-16 03:20:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-06-07 00:20:41 ----D---- C:\Windows\system32\FxsTmp
2012-06-05 15:35:07 ----D---- C:\Program Files (x86)\Common Files
2012-06-05 01:24:50 ----SD---- C:\Users\Florian\AppData\Roaming\Microsoft
2012-05-13 18:18:39 ----D---- C:\Program Files (x86)\Opera
2012-05-13 03:23:08 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-05-13 03:00:28 ----D---- C:\Program Files\Windows Journal
2012-05-07 15:31:58 ----D---- C:\Program Files (x86)\SnadBoy's Revelation v2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 203888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-04-13 560184]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 athr;Wireless PCI Adapter Driver Service; C:\Windows\system32\DRIVERS\athrx.sys [2011-04-11 1579520]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-02-08 39936]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-02-08 64512]
R3 L6UX2;Service - Line 6 UX2; C:\Windows\System32\Drivers\L6UX264.sys [2011-06-23 768000]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2010-09-21 56344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 acvjg1fq;acvjg1fq; C:\Windows\system32\drivers\acvjg1fq.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-05 61280]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-10-01 12157792]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\Windows\system32\drivers\nvstusb.sys [2011-07-22 277096]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 12600]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-03 980072]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-03 379496]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-03-19 2666880]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE []
S2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-04-13 1255736]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Reklamy v browseru, blokace cookies nic neřeší.
Dvouklikem na soubor C:\Program Files\trend micro\Florian.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp<. OTM po sobě uklidí. Nakonec restartujte PC.R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
O15 - Trusted Zone: *.line6.net
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Reklamy v browseru, blokace cookies nic neřeší.
Mnohokrát děkuji. 
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Reklamy v browseru, blokace cookies nic neřeší.
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?