VIRY.CZ

Dobrý den,
nedávno mi uplně spadl PC a po restartu sotva naskočila modrá obrazovka a počítač se hned restartoval. Bootoval se uplně neznámý smyšlený disk X: zprva se nešlo dostat v recovery programu přes příkazový řádek ani na disk C:, který jsem postupem času rozchodil a po dalších hodinách vztekání jsem se dostal do win7. Jenže při spouštění ruzných aplikací se vše nechová jak má např. aplikace mozilla, chrome jenom dělá, že se spouští a potom zase zmizí. Vysledoval jsem, že když je spouštím naskočí servisní služba werfault.exe ve správci a zase zmizí. A ta služba se nedá ani vypnout, protože tam není. Přikládám log z HJT a další log z Advance system care. Díky předem za pomoc nebo nějaké řešení.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:05:05, on 5.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe
C:\ProgramData\Boxtools\Boxofttoolbox.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Asc.exe
C:\Users\WulF\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Sus11_ProcessManager.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Sus10_SysExplorer.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files (x86)\SimilarSites\similarsites.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [Google Update] "C:\Users\WulF\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D05064F0FBD3FC53C613CDB72DFD478F] "C:\Users\WulF\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Boxoft Tools] "C:\ProgramData\Boxtools\Boxofttoolbox.exe" -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\WulF\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\WulF\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files (x86)\SimilarSites\similarsites.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: InterCasino EUR - {9536DF30-CF04-4A89-B26B-4781E242230C} - http://www.intercasino.com/?utm_source= ... d-casino-l (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: InterCasino EUR - {9536DF30-CF04-4A89-B26B-4781E242230C} - http://www.intercasino.com/?utm_source= ... d-casino-l (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: c:\progra~2\sprotector\sprotector.dll
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: mental ray 3.7 Satellite for Autodesk 3ds Max 2010 64-bit 64-bit (mi-raysat_3dsmax2010_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11754 bytes





Advanced SystemCare Diagnostická zpráva v1.0
Datum: 2013.01.05 12:53:21

----------------------------------
01 - Operační systém
----------------------------------

0101 - Operační systém : Windows 7 Ultimate 64-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_gdr.120830-0333)
0102 - Jazyk : Czech (Regional Setting: Czech)
0103 - BIOS : BIOS Date: 02/05/10 19:13:52 Ver: 08.00.10
0104 - Procesor : Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz (4 CPUs), ~3.3GHz
0105 - Paměť : 8192MB RAM
0106 - Dostupná paměť : 8168MB RAM
0107 - Stránkovací soubor : 2396MB used, 13939MB available
0108 - Složka Windows : C:\Windows
0109 - Verze DirectX : DirectX 11
0110 - Nastavovací parametry DX : Not found
0111 - Uživatelské nastavení DPI: Using System DPI
0112 - Systémové nastavení DPI : 96 DPI (100 percent)
0113 - Rozsah DWM DPI : Disabled
0114 - Verze DxDiag : 6.01.7601.17514

----------------------------------
02 - Procesor
----------------------------------

0201 - Název : Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz x4 ~3301MHz
0202 - Aktuální taktování : 3301MHz
0203 - L1-Cache : 256,00 KB
0204 - L2-Cache : 1,00 MB
0205 - L3-Cache : 6,00 MB

----------------------------------
03 - Zobrazovací zařízení
----------------------------------

0301 - Název karty : AMD Radeon HD 6900 Series
0302 - Výrobce : Advanced Micro Devices, Inc.
0303 - Chipset : AMD Radeon Graphics Processor (0x6719)
0304 - DAC Typ : Internal DAC(400MHz)
0305 - Klíč zařízení : Enum\PCI\VEN_1002&DEV_6719&SUBSYS_03BE1043&REV_00
0306 - Zobrazovací paměť : 1763 MB
0307 - AdapterRAM : N/A
0308 - Aktuální režim : 1920 x 1080 (32 bit) (60Hz)
0309 - Název monitoru : SyncMaster B2230H /B2230HF (Digital)
0310 - Název ovladače : aticfx64.dll,aticfx64.dll,aticfx64.dll,aticfx32,aticfx32,aticfx32,atiumd64.dll,atidxx64.dll,atidxx64.dll,atiumdag,atidxx32,atidxx32,atiumdva,atiumd6a.cap,atitmm64.dll
0311 - Verze ovladače : 8.17.0010.1151
0312 - Jazyk ovladače : English
0313 - Verze DDI : 11
0314 - Model ovladače : WDDM 1.1
0315 - Beta ovladač : False
0316 - Ladění ovladače : False
0317 - Datum ovladače : 9/28/2012 02:41:40
0318 - Velikost ovladače : 1120768
0319 - VDD : Není k dispozici
0320 - Mini VDD : Není k dispozici
0321 - Datum mini VDD : n/a
0322 - Velikost mini VDD : 0
0323 - Identifikátor zařízení : {D7B71EE2-2459-11CF-8C77-B423BEC2C535}
0324 - ID prodejce : 0x1002
0325 - ID zařízení : 0x6719
0326 - ID subsystému : 0x03BE1043
0327 - ID revize : 0x0000
0328 - Pojmenování ovladače : oem96.inf:ATI.Mfg.NTamd64.6.1:ati2mtag_NICayman:9.2.0.0:pci\ven_1002&dev_6719
0329 - Hodnocení ovladače : 00E62001
0330 - Akcelerátory : ModeMPEG2_A ModeMPEG2_C
0331 - Filtry : {6E8329FF-B642-418B-BCF0-BCB6591E255F}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{6E8329FF-B642-418B-BCF0-BCB6591E255F}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{3C5323C1-6FB7-44F5-9081-056BF2EE449D}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,2) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{552C0DAD-CCBC-420B-83C8-74943CF9F1A6}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,2) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{6E8329FF-B642-418B-BCF0-BCB6591E255F}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,1) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
0332 - Vrstvení D3D9 : Not Supported
0333 - DXVA-HD : Not Supported
0334 - Stav DDraw : Enabled
0335 - Stav D3D : Enabled
0336 - Stav AGP : Enabled
0337 - Poznámka : No problems found.

0338 - Verze OpenGL : 6.1.7600.16385 (win7_rtm.090713-1255)

----------------------------------
04 - Paměť
----------------------------------

0401 - Celkem paměť : 7,98 GB
0402 - Volná paměť : 5,98 GB
0403 - Celkem stránkovací soubor: 15,95 GB
0404 - Volné místo stránk. souboru: 13,53 GB

0405 - BankLabel : BANK0
0406 - Rychlost : 1600 MHz
0407 - Pásmo : 64 Bits
0408 - Kapacita : 4,00 GB

0405 - BankLabel : BANK2
0406 - Rychlost : 1600 MHz
0407 - Pásmo : 64 Bits
0408 - Kapacita : 4,00 GB

----------------------------------
05 - Síťové připojení
----------------------------------

0501 - Popis : Realtek PCIe GBE Family Controller
0502 - Datum ovladače : 9-27-2011
0503 - Verze ovladače : 7.49.927.2011

----------------------------------
06 - Základní deska
----------------------------------

0601 - Produkt : P8P67 REV 3.1
0602 - Výrobce : ASUSTeK Computer INC.

----------------------------------
07 - Zvukové zařízení
----------------------------------

0701 - Popis : Reproduktory (USB PnP Sound Device)
0702 - Výchozí přehrávač zvuku : True
0703 - Výchozí přehrávač hlasu : True
0704 - ID hardware : USB\VID_0D8C&PID_013C&REV_0100&MI_00
0705 - ID výrobce : 1
0706 - ID produktu : 100
0707 - Typ : WDM
0708 - Název ovladače : CM10864.sys
0709 - Verze ovladače : 7.12.0008.2142
0710 - Vlastnosti ovladače : Final Retail
0711 - Datum a velikost : 12/22/2009 00:54:00
0713 - Výrobce ovladače : C-Media Inc.
0714 - Min/Max poměr : 4314154, 4314154
0715 - Static/Strm HW Mix Bufs : 4314154, 4314154
0716 - Static/Strm HW 3D Bufs : 4314154, 4314154
0717 - Paměť HW : 4314162
0718 - Správa zvuku : False
0719 - EAX(tm) 2.0 Listen/Src : False, False
0720 - I3DL2(tm) Listen/Src : False, False
0721 - Poznámka : No problems found.

0701 - Popis : Digitální výstup (USB PnP Sound Device)
0702 - Výchozí přehrávač zvuku : False
0703 - Výchozí přehrávač hlasu : False
0704 - ID hardware : USB\VID_0D8C&PID_013C&REV_0100&MI_00
0705 - ID výrobce : 1
0706 - ID produktu : 100
0707 - Typ : WDM
0708 - Název ovladače : CM10864.sys
0709 - Verze ovladače : 7.12.0008.2142
0710 - Vlastnosti ovladače : Final Retail
0711 - Datum a velikost : 12/22/2009 00:54:00
0713 - Výrobce ovladače : C-Media Inc.
0714 - Min/Max poměr : 4314154, 4314154
0715 - Static/Strm HW Mix Bufs : 4314154, 4314154
0716 - Static/Strm HW 3D Bufs : 4314154, 4314154
0717 - Paměť HW : 4314162
0718 - Správa zvuku : False
0719 - EAX(tm) 2.0 Listen/Src : False, False
0720 - I3DL2(tm) Listen/Src : False, False
0721 - Poznámka : No problems found.


----------------------------------
08 - Hard disky
----------------------------------

0801 - Model : WDC WD5002AALX-00J37A0 ATA Device(Western Digital)
0802 - Typ média : Fixed hard disk media
0803 - Velikost : 465,76 GB
0805 - Datum ovladače : 6-21-2006
0806 - Verze ovladače : 6.1.7600.16385

0807 - Název : C:\
0808 - Kapacita : 292,97 GB
0809 - Volné místo : 51,60 GB
0810 - Typ disku : 3-Pevný
0811 - Systém souborů : NTFS

0807 - Název : D:\
0808 - Kapacita : 172,78 GB
0809 - Volné místo : 51,43 GB
0810 - Typ disku : 3-Pevný
0811 - Systém souborů : NTFS

----------------------------------
09 - Procesy
----------------------------------

0901 - 0000 Idle 0 0 0
0901 - 0004 System 0 0 0
0901 - 01bc smss.exe 0 0 0 normal
0901 - 028c csrss.exe 0 0 0 normal
0901 - 02d0 wininit.exe 0 0 0 high
0901 - 02e4 csrss.exe 1 174 78 normal
0901 - 0318 winlogon.exe 1 6 0 high
0901 - 0340 services.exe 0 0 0 normal
0901 - 0348 lsass.exe 0 0 0 normal
0901 - 0350 lsm.exe 0 0 0 normal
0901 - 03bc svchost.exe 0 0 0 normal
0901 - 03f4 ASCService.exe 0 0 0 high C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 0290 svchost.exe 0 0 0 normal
0901 - 01ec atiesrxx.exe 0 0 0 normal
0901 - 0440 svchost.exe 0 0 0 normal
0901 - 0464 svchost.exe 0 0 0 normal
0901 - 0498 svchost.exe 0 0 0 normal
0901 - 04f8 svchost.exe 0 0 0 normal
0901 - 0518 svchost.exe 0 0 0 normal
0901 - 0578 svchost.exe 0 0 0 normal
0901 - 05b4 AvastSvc.exe 0 0 0 normal C:\Program Files\AVAST Software\Avast
0901 - 05dc atieclxx.exe 1 9 5 normal
0901 - 06a4 dwm.exe 1 18 2 high
0901 - 06bc explorer.exe 1 501 256 normal
0901 - 06d8 afwServ.exe 0 0 0 normal C:\Program Files\AVAST Software\Avast
0901 - 0414 spoolsv.exe 0 0 0 normal
0901 - 04d0 taskhost.exe 1 23 22 normal
0901 - 068c svchost.exe 0 0 0 normal
0901 - 088c NetworkLicenseServer.exe 0 0 0 normal C:\Program Files (x86)\ABBYY FineReader 11
0901 - 093c taskeng.exe 1 9 3 normal
0901 - 0990 Monitor.exe 1 213 39 below normal C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 0a38 AdminService.exe 0 0 0 normal
0901 - 0b08 RAVCpl64.exe 1 54 19 normal
0901 - 0b14 ekrn.exe 0 0 0 normal C:\Program Files\ESET\ESET NOD32 Antivirus\x86
0901 - 0b88 BtvStack.exe 1 16 50 normal
0901 - 080c raysat_3dsmax2010_64server.exe 0 0 0 normal C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite
0901 - 0480 sqlservr.exe 0 0 0 normal
0901 - 04bc PnkBstrA.exe 0 0 0 normal C:\Windows\SysWOW64
0901 - 0b7c sqlwriter.exe 0 0 0 normal
0901 - 09ac AthBtTray.exe 1 198 131 normal
0901 - 0c4c svchost.exe 0 0 0 normal
0901 - 0ca8 egui.exe 1 343 89 normal
0901 - 0d10 TeamViewer_Service.exe 0 0 0 normal C:\Program Files (x86)\TeamViewer\Version7
0901 - 0d34 WLIDSVC.EXE 0 0 0 normal
0901 - 0da4 OscarEditor.exe 1 31 17 normal C:\Program Files (x86)\OSCAR Editor
0901 - 0e00 WLIDSVCM.EXE 0 0 0 normal
0901 - 0f00 SearchIndexer.exe 0 0 0 normal
0901 - 0da0 svchost.exe 0 0 0 normal
0901 - 0dec Boxofttoolbox.exe 1 110 40 normal C:\ProgramData\Boxtools
0901 - 10f4 ASCTray.exe 1 59 27 normal C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 1130 taskhost.exe 1 9 4 normal
0901 - 12d4 jusched.exe 1 11 2 normal C:\Program Files (x86)\Common Files\Java\Java Update
0901 - 1300 AvastUI.exe 1 400 49 normal C:\Program Files\AVAST Software\Avast
0901 - 1378 MOM.exe 1 10 9 normal
0901 - 13e4 CCC.exe 1 50 44 normal
0901 - 122c svchost.exe 0 0 0 normal
0901 - 134c sppsvc.exe 0 0 0 normal
0901 - 1050 svchost.exe 0 0 0 normal
0901 - 12a0 explorer.exe 1 236 131 normal
0901 - 0d0c speedfan.exe 1 204 96 normal C:\Program Files (x86)\SpeedFan
0901 - 0e0c AAM Updates Notifier.exe 1 13 7 below normal C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA
0901 - 0648 Asc.exe 1 2371 132 normal C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 0a98 FacebookMessenger.exe 1 125 80 normal C:\Users\WulF\AppData\Local\Facebook\Messenger\2.1.4651.0
0901 - 03ac WmiPrvSE.exe 0 0 0 normal
0901 - 0f64 Sus11_ProcessManager.exe 1 261 133 normal C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 104c svchost.exe 0 0 0 normal
0901 - 0998 Sus10_SysExplorer.exe 1 98 47 normal C:\Program Files (x86)\IObit\Advanced SystemCare 6
0901 - 0f54 opera.exe 1 73 54 normal C:\Program Files (x86)\Opera
0901 - 08e4 audiodg.exe 0 0 0


----------------------------------
10 - Služby
----------------------------------

1001 - ABBYY FineReader 11 PE Licensing Service - ["C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service]
1001 - Advanced SystemCare Service 6 - [C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe]
1001 - Funkčnost aplikací - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - AMD External Events Utility - [C:\Windows\system32\atiesrxx.exe]
1001 - AtherosSvc - [C:\Program Files (x86)\Bluetooth Suite\adminservice.exe]
1001 - Koncové vytváření služby Windows Audio - [C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Zvuk systému Windows - [C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted]
1001 - avast! Antivirus - ["C:\Program Files\AVAST Software\Avast\AvastSvc.exe"]
1001 - avast! Firewall - ["C:\Program Files\AVAST Software\Avast\afwServ.exe"]
1001 - Služba BFE (Base Filtering Engine) - [C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork]
1001 - Služba inteligentního přenosu na pozadí - [C:\Windows\System32\svchost.exe -k netsvcs]
1001 - Služba pro podporu technologie Bluetooth - [C:\Windows\system32\svchost.exe -k bthsvcs]
1001 - Šifrování - [C:\Windows\system32\svchost.exe -k NetworkService]
1001 - Klient DHCP - [C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted]
1001 - Klient DNS - [C:\Windows\system32\svchost.exe -k NetworkService]
1001 - ESET Service - ["C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"]
1001 - Protokol událostí systému Windows - [C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted]
1001 - Systém událostí COM+ - [C:\Windows\system32\svchost.exe -k LocalService]
1001 - Mezipaměť písem Windows - [C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation]
1001 - Přístup k zařízením standardu HID - [C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Služba IKE and AuthIP IPsec Keying Modules - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Server - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Pracovní stanice - [C:\Windows\System32\svchost.exe -k NetworkService]
1001 - Podpora rozhraní NetBIOS nad protokolem TCP/IP - [C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted]
1001 - mental ray 3.7 Satellite for Autodesk 3ds Max 2010 64-bit 64-bit - ["C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe"]
1001 - Brána Windows Firewall - [C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork]
1001 - SQL Server (SQLEXPRESS) - ["c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS]
1001 - Síťová připojení - [C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Služba seznamu sítí - [C:\Windows\System32\svchost.exe -k LocalService]
1001 - Sledování umístění v síti (NLA) - [C:\Windows\System32\svchost.exe -k NetworkService]
1001 - Služba rozhraní síťového úložiště - [C:\Windows\system32\svchost.exe -k LocalService]
1001 - Program Compatibility Assistant Service - [C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Plug and Play - [C:\Windows\system32\svchost.exe -k DcomLaunch]
1001 - PnkBstrA - [C:\Windows\system32\PnkBstrA.exe]
1001 - Napájení - [C:\Windows\system32\svchost.exe -k DcomLaunch]
1001 - Služba Profil uživatele - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Správce zabezpečení účtů - [C:\Windows\system32\lsass.exe]
1001 - Služba oznamování událostí systému - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Rozpoznávání hardwaru - [C:\Windows\System32\svchost.exe -k netsvcs]
1001 - Služba zařazování tisku - [C:\Windows\System32\spoolsv.exe]
1001 - Ochrana softwaru - [C:\Windows\system32\sppsvc.exe]
1001 - SQL Server VSS Writer - ["c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"]
1001 - SSDP Discovery - [C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation]
1001 - Načítání obrázků (WIA) - [C:\Windows\system32\svchost.exe -k imgsvc]
1001 - Superfetch - [C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - TeamViewer 7 - [C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe]
1001 - Motivy - [C:\Windows\System32\svchost.exe -k netsvcs]
1001 - Klient služby Sledování distribuovaných odkazů - [C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Správce relací správce oken plochy - [C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted]
1001 - Služba Zasílání zpráv o chybách systému Windows - [C:\Windows\System32\svchost.exe -k WerSvcGroup]
1001 - Windows Defender - [C:\Windows\System32\svchost.exe -k secsvcs]
1001 - Služba WinHTTP WPAD - [C:\Windows\system32\svchost.exe -k LocalService]
1001 - Služba WMI - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Windows Live ID Sign-in Assistant - ["C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"]
1001 - Centrum zabezpečení - [C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted]
1001 - Windows Search - [C:\Windows\system32\SearchIndexer.exe /Embedding]
1001 - Windows Update - [C:\Windows\system32\svchost.exe -k netsvcs]
1001 - Platforma WDF (Windows Driver Foundation) – platforma ovladače v uživatelském režimu - [C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted]

----------------------------------
11 - Windows Expres
----------------------------------


----------------------------------
12 - Zprávy událostí
----------------------------------

1201 - Datum a čas : 5.1.2013 19:53:10
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x000658cf ID chybujícího procesu: 0x6d0 Čas spuštění chybující aplikace: 0x01cdeb3b359ffdd8 Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 795526d1-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:53:10
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x000658cf ID chybujícího procesu: 0x1220 Čas spuštění chybující aplikace: 0x01cdeb3b35c3165b Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 7954d8b1-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:53:10
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x000658cf ID chybujícího procesu: 0x124c Čas spuštění chybující aplikace: 0x01cdeb3b34ff63ee Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 7954ffc1-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:53:02
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x197aff64 ID chybujícího procesu: 0x124c Čas spuštění chybující aplikace: 0x01cdeb3b34ff63ee Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: unknown ID zprávy: 7498ab6c-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:53:02
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x197aff64 ID chybujícího procesu: 0x1220 Čas spuštění chybující aplikace: 0x01cdeb3b35c3165b Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: unknown ID zprávy: 7498845c-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:53:00
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x197aff64 ID chybujícího procesu: 0x6d0 Čas spuštění chybující aplikace: 0x01cdeb3b359ffdd8 Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: unknown ID zprávy: 73bdee78-572e-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:22:23
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: chrome.exe, verze: 23.0.1271.97, časové razítko: 0x50be88d8 Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x000658cf ID chybujícího procesu: 0xe08 Čas spuštění chybující aplikace: 0x01cdeb36e719e5b5 Cesta k chybující aplikaci: C:\Users\WulF\AppData\Local\Google\Chrome\Application\chrome.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 2cbc46b5-572a-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:22:15
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: rundll32.exe, verze: 6.1.7600.16385, časové razítko: 0x4a5bc637 Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x00079aed ID chybujícího procesu: 0xa90 Čas spuštění chybující aplikace: 0x01cdeb36e18cc3d6 Cesta k chybující aplikaci: C:\Windows\SysWOW64\rundll32.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 27bf8013-572a-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 19:22:15
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: chrome.exe, verze: 23.0.1271.97, časové razítko: 0x50be88d8 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x2546cb70 ID chybujícího procesu: 0xe08 Čas spuštění chybující aplikace: 0x01cdeb36e719e5b5 Cesta k chybující aplikaci: C:\Users\WulF\AppData\Local\Google\Chrome\Application\chrome.exe Cesta k chybujícímu modulu: unknown ID zprávy: 27bf5902-572a-11e2-b690-0026831636e3

1201 - Datum a čas : 5.1.2013 3:30:53
1202 - Zdroj : Application Error
1203 - Popis : Název chybující aplikace: firefox.exe, verze: 17.0.1.4715, časové razítko: 0x50b71a4b Název chybujícího modulu: sprotector.dll, verze: 0.0.0.0, časové razítko: 0x50212e17 Kód výjimky: 0xc0000005 Posun chyby: 0x000658cf ID chybujícího procesu: 0x16b0 Čas spuštění chybující aplikace: 0x01cdeab2010cbd16 Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Cesta k chybujícímu modulu: c:\progra~2\sprotector\sprotector.dll ID zprávy: 409bda50-56a5-11e2-81fb-f46d045076fe

1201 - Datum a čas : 5.1.2013 19:21:51
1202 - Zdroj : Service Control Manager
1203 - Popis : Služba atksgt neuspěla při spuštění v důsledku následující chyby: Načtení tohoto ovladače je blokováno.

1201 - Datum a čas : 5.1.2013 19:21:51
1202 - Zdroj : Application Popup
1203 - Popis : Načtení ovladače atksgt.sys je blokováno.

1201 - Datum a čas : 5.1.2013 2:45:08
1202 - Zdroj : Service Control Manager
1203 - Popis : Služba atksgt neuspěla při spuštění v důsledku následující chyby: Načtení tohoto ovladače je blokováno.

1201 - Datum a čas : 5.1.2013 2:45:08
1202 - Zdroj : Application Popup
1203 - Popis : Načtení ovladače atksgt.sys je blokováno.

1201 - Datum a čas : 3.1.2013 15:39:16
1202 - Zdroj : Service Control Manager
1203 - Popis : Služba atksgt neuspěla při spuštění v důsledku následující chyby: Načtení tohoto ovladače je blokováno.

1201 - Datum a čas : 3.1.2013 15:39:16
1202 - Zdroj : Application Popup
1203 - Popis : Načtení ovladače atksgt.sys je blokováno.

1201 - Datum a čas : 3.1.2013 15:38:27
1202 - Zdroj : volmgr
1203 - Popis : Inicializace výpisu stavu systému se nezdařila.

----------------------------------
Konec souboru - 30192 bajtů


Běží hloubková kontrola na dvouch antivirech zatím bez problému.

Zdravim

Odinstalujte Advanced SystemCare a nasledne i vse od IOBit - jsou to cinske smejdy a spise jen skodi nez jsou uzitkem. Hledaji nesmyslne a neexistujici problemy, databazi haveti ukradli jine renomovane spolecnosti

To vam bezi dva antivirove testy zaroven? Jake?

Dobře odinstaluju a beželi mi najednou nod32 můj, který používám a ktomu jsem od avastu stahnul tu free verzi a projel to a nic

Predpokladam, ze na NOD mate zakoupenou licenci

Dva antiviry v jednom systemu jsou totalni blbost a koledovani si o problemy - dochazi ke kolizim, antiviry se o havet perou..

Dejte log z RSIT jak hovori podminky pomoci

Zajisté. A který mi více doporučujete? Viry se neukazali ani při testu avastem mimo windows .


RSIT log ----------------------------------------


Logfile of random's system information tool 1.09 (written by random/random)
Run by WulF at 2013-01-05 23:51:26
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 53 GB (18%) free of 300 GB
Total RAM: 8169 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:51:30, on 5.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe
C:\ProgramData\Boxtools\Boxofttoolbox.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\WulF.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files (x86)\SimilarSites\similarsites.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [Google Update] "C:\Users\WulF\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D05064F0FBD3FC53C613CDB72DFD478F] "C:\Users\WulF\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Boxoft Tools] "C:\ProgramData\Boxtools\Boxofttoolbox.exe" -autorun
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\WulF\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\WulF\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files (x86)\SimilarSites\similarsites.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: InterCasino EUR - {9536DF30-CF04-4A89-B26B-4781E242230C} - http://www.intercasino.com/?utm_source= ... d-casino-l (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: InterCasino EUR - {9536DF30-CF04-4A89-B26B-4781E242230C} - http://www.intercasino.com/?utm_source= ... d-casino-l (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O20 - AppInit_DLLs: c:\progra~2\sprotector\sprotector.dll
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: mental ray 3.7 Satellite for Autodesk 3ds Max 2010 64-bit 64-bit (mi-raysat_3dsmax2010_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11488 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service
"C:\Windows\system32\Dwm.exe"
taskeng.exe {BB44A3E3-CD52-4685-8F0C-D7D26B5FD617}
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe"
"c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe" Minimum
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\ProgramData\Boxtools\Boxofttoolbox.exe" -autorun
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
WLIDSvcM.exe 3280
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"taskhost.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:66440 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Opera\opera.exe"
C:\Windows\system32\wbem\wmiprvse.exe
taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\WulF\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-696496387-2281360345-2749245108-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-696496387-2281360345-2749245108-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-696496387-2281360345-2749245108-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-696496387-2281360345-2749245108-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.searchonme.com/?l=1&q="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.110.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.122.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.138.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.1.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npNxGameeu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\extensions\
5061b241e68a6@5061b241e68e0.com
battlefieldheroespatcher@ea.com
{E71B541F-5E72-5555-A47C-E47863195841}

C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\searchplugins\
Funmoods.xml
SearchOnMe.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-10-21 537576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-10-21 193512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-19 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-19 155384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-10-30 1502288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{FE69C007-C452-4d3e-86D2-1730DF8BC871} - SimilarSites - C:\Program Files (x86)\SimilarSites\similarsites.dll [2012-02-01 316928]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-02 11545192]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-10-27 613536]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-10-27 379040]
"Cm108Sound"=C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 4035152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe [2009-11-24 2642432]
"Google Update"=C:\Users\WulF\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-18 116648]
"GoogleChromeAutoLaunch_D05064F0FBD3FC53C613CDB72DFD478F"=C:\Users\WulF\AppData\Local\Google\Chrome\Application\chrome.exe [2012-12-05 1242728]
"Boxoft Tools"=C:\ProgramData\Boxtools\Boxofttoolbox.exe [2010-11-19 2590208]
"Advanced SystemCare 6"=C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [2012-09-24 490880]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-10-16 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-15 35736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR11]
C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2011-08-18 925960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boxoft Tools]
C:\Program Files (x86)\Boxoft PDF to JPG (freeware)\Boxofttoolbox.exe [2010-11-19 2590208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe [2012-10-25 1226488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eType Setup403515.exe]
C:\Users\WulF\AppData\Local\Temp\eType Setup403515.exe /XML=C:\Users\WulF\AppData\Local\Temp\F8A.tmp /STP=0:1 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Livestation]
C:\Program Files (x86)\Livestation\Livestation.exe [2010-06-24 4657152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OscarEditor]
C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe [2009-11-24 2642432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2012-04-19 336952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2011-12-07 433872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\MAFIA\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2011-03-07 89456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamePark klient 2.lnk]
C:\PROGRA~1\GAMEPA~1\gpcl.exe [2011-07-29 442880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^WulF^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^VDownloader.lnk]
C:\PROGRA~2\VDownloader\VDownloader.exe /silent []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"VIDC.HFYU"=huffyuv.dll
"VIDC.FPS1"=frapsv64.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-01-05 23:47:30 ----D---- C:\rsit
2013-01-02 12:00:05 ----A---- C:\Windows\system32\WUDFx.dll
2013-01-02 12:00:05 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-01-02 12:00:05 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-01-02 12:00:05 ----A---- C:\Windows\system32\WUDFHost.exe
2013-01-02 12:00:05 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-01-02 12:00:05 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-01-02 12:00:05 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-01-02 11:59:47 ----A---- C:\Windows\system32\Wdfres.dll
2013-01-02 11:59:47 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-01-02 11:59:47 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-01-02 11:59:16 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-01-02 11:59:16 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-01-02 11:59:16 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-01-02 11:59:16 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-01-02 11:58:53 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-01-02 11:58:53 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-01-02 11:58:53 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-01-02 11:58:53 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\nlasvc.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\nlaapi.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\netevent.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\netcorehc.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\ncsi.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-01-02 11:58:53 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-01-02 11:58:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-01-02 11:58:28 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-01-02 11:58:28 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-01-02 11:58:28 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-01-02 11:58:28 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-01-02 11:58:28 ----A---- C:\Windows\system32\rdpudd.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\rdpcorets.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\mstsc.exe
2013-01-02 11:58:28 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-01-02 11:58:28 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-01-02 11:58:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-01-02 11:58:27 ----A---- C:\Windows\system32\wksprt.exe
2013-01-02 11:58:27 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-01-02 11:58:27 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-01-02 11:58:27 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-01-02 11:58:27 ----A---- C:\Windows\system32\tsgqec.dll
2013-01-02 11:58:27 ----A---- C:\Windows\system32\mstscax.dll
2013-01-02 11:58:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-01-02 11:58:27 ----A---- C:\Windows\system32\aaclient.dll
2013-01-02 11:58:26 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-01-02 11:58:26 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-01-02 11:58:26 ----A---- C:\Windows\system32\wksprtPS.dll
2013-01-02 11:58:00 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-01-02 11:58:00 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-01-02 11:58:00 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-02 11:58:00 ----A---- C:\Windows\system32\lsasrv.dll
2013-01-02 11:57:59 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-01-02 11:57:59 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-02 11:57:59 ----A---- C:\Windows\system32\schannel.dll
2013-01-02 11:57:59 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-01-02 11:57:59 ----A---- C:\Windows\system32\drivers\cng.sys
2013-01-02 11:57:47 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-01-02 11:57:47 ----A---- C:\Windows\system32\srcore.dll
2013-01-02 11:57:38 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-02 11:57:38 ----A---- C:\Windows\system32\win32spl.dll
2013-01-02 11:57:38 ----A---- C:\Windows\system32\spoolsv.exe
2013-01-02 11:57:38 ----A---- C:\Windows\splwow64.exe
2013-01-02 11:57:19 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-01-02 11:57:09 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-01-02 11:56:59 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-01-02 11:56:59 ----A---- C:\Windows\system32\d3d10level9.dll
2013-01-02 11:56:51 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-01-02 11:56:51 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-01-02 11:56:43 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-01-02 11:56:43 ----A---- C:\Windows\system32\qdvd.dll
2013-01-02 11:56:36 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-01-02 11:56:35 ----A---- C:\Windows\system32\msi.dll
2013-01-02 11:53:55 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-01-02 11:53:55 ----A---- C:\Windows\system32\ntshrui.dll
2013-01-02 11:48:14 ----SHD---- C:\Config.Msi
2013-01-02 11:44:27 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2013-01-02 11:38:37 ----D---- C:\ProgramData\ESET
2013-01-02 11:38:37 ----D---- C:\Program Files\ESET
2013-01-02 02:39:11 ----D---- C:\Program Files\IObit
2013-01-02 02:37:33 ----D---- C:\ProgramData\IObit
2013-01-02 02:37:31 ----D---- C:\Users\WulF\AppData\Roaming\IObit
2013-01-02 02:37:28 ----D---- C:\Program Files (x86)\IObit
2013-01-01 19:03:09 ----D---- C:\Users\WulF\AppData\Roaming\ParetoLogic
2013-01-01 19:02:53 ----D---- C:\ProgramData\ParetoLogic
2013-01-01 16:40:50 ----A---- C:\Windows\system32\drivers\aswFW.sys
2013-01-01 16:40:43 ----A---- C:\Windows\system32\drivers\aswNdis2.sys
2013-01-01 16:40:42 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2013-01-01 16:40:40 ----A---- C:\Windows\system32\drivers\aswNdis.sys
2013-01-01 13:00:59 ----D---- C:\Users\WulF\AppData\Roaming\SpeedyPC Software
2013-01-01 13:00:59 ----D---- C:\Users\WulF\AppData\Roaming\DriverCure
2013-01-01 13:00:44 ----D---- C:\ProgramData\SpeedyPC Software
2012-12-31 20:31:30 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2012-12-31 20:31:28 ----A---- C:\Windows\system32\drivers\aswSP.sys
2012-12-31 20:31:26 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2012-12-31 20:31:25 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2012-12-31 20:31:25 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2012-12-31 20:31:22 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2012-12-31 20:31:22 ----A---- C:\Windows\system32\aswBoot.exe
2012-12-31 20:31:13 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2012-12-31 20:31:13 ----A---- C:\Windows\avastSS.scr
2012-12-31 20:31:07 ----D---- C:\ProgramData\AVAST Software
2012-12-31 20:31:07 ----D---- C:\Program Files\AVAST Software
2012-12-31 19:00:06 ----A---- C:\win32ui.dll
2012-12-26 13:59:33 ----A---- C:\Windows\SYSWOW64\vp6vfw.dll
2012-12-26 11:36:45 ----D---- C:\Users\WulF\AppData\Roaming\Ashampoo
2012-12-26 11:36:40 ----D---- C:\ProgramData\ashampoo
2012-12-26 11:36:38 ----D---- C:\Program Files (x86)\Ashampoo
2012-12-22 23:44:08 ----D---- C:\ProgramData\GRETECH
2012-12-22 21:26:00 ----D---- C:\Users\WulF\AppData\Roaming\VDownloader
2012-12-22 21:25:51 ----A---- C:\Program Files\Common Files\WinPcapNmap.exe
2012-12-22 21:25:49 ----D---- C:\Program Files\VDownloader
2012-12-22 21:15:41 ----D---- C:\Program Files (x86)\SimilarSites
2012-12-22 21:15:40 ----D---- C:\Users\WulF\AppData\Roaming\SimilarSites
2012-12-22 14:51:31 ----D---- C:\Program Files (x86)\JPEG to PDF
2012-12-22 03:00:47 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-22 03:00:47 ----A---- C:\Windows\system32\atmlib.dll
2012-12-22 03:00:47 ----A---- C:\Windows\system32\atmfd.dll
2012-12-22 03:00:46 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-20 21:04:06 ----D---- C:\Program Files\Recuva
2012-12-19 14:15:18 ----D---- C:\ProgramData\Orbit
2012-12-14 00:16:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-12-14 00:16:51 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-14 00:16:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-12-14 00:16:50 ----A---- C:\Windows\SYSWOW64\url.dll
2012-12-14 00:16:50 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-12-14 00:16:50 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-12-14 00:16:50 ----A---- C:\Windows\system32\url.dll
2012-12-14 00:16:50 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-14 00:16:50 ----A---- C:\Windows\system32\ieui.dll
2012-12-14 00:16:49 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-12-14 00:16:49 ----A---- C:\Windows\system32\urlmon.dll
2012-12-14 00:16:49 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-14 00:16:49 ----A---- C:\Windows\system32\jscript9.dll
2012-12-14 00:16:48 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-12-14 00:16:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-12-14 00:16:48 ----A---- C:\Windows\system32\wininet.dll
2012-12-14 00:16:48 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-14 00:16:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-12-14 00:16:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-12-14 00:16:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-12-14 00:16:47 ----A---- C:\Windows\system32\vbscript.dll
2012-12-14 00:16:47 ----A---- C:\Windows\system32\jscript.dll
2012-12-14 00:16:47 ----A---- C:\Windows\system32\iertutil.dll
2012-12-14 00:16:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-12-14 00:16:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-12-14 00:16:43 ----A---- C:\Windows\system32\mshtml.dll
2012-12-14 00:16:42 ----A---- C:\Windows\system32\ieframe.dll
2012-12-14 00:16:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-12-13 18:18:27 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-13 18:18:27 ----A---- C:\Windows\system32\tzres.dll
2012-12-13 18:18:23 ----A---- C:\Windows\system32\win32k.sys
2012-12-13 18:18:13 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-13 18:18:13 ----A---- C:\Windows\system32\kernel32.dll
2012-12-13 18:18:12 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-12-13 18:18:12 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-12-13 18:18:12 ----A---- C:\Windows\system32\winsrv.dll
2012-12-13 18:18:12 ----A---- C:\Windows\system32\conhost.exe
2012-12-13 18:18:11 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-12-13 18:18:11 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-12-13 18:18:11 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-12-13 18:18:11 ----A---- C:\Windows\system32\wow64win.dll
2012-12-13 18:18:11 ----A---- C:\Windows\system32\wow64cpu.dll
2012-12-13 18:18:11 ----A---- C:\Windows\system32\wow64.dll
2012-12-13 18:18:11 ----A---- C:\Windows\system32\ntvdm64.dll
2012-12-13 18:18:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-13 18:18:10 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-13 18:18:10 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-13 18:18:09 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-13 18:18:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-13 18:18:08 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-13 18:18:07 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-13 18:18:07 ----A---- C:\Windows\SYSWOW64\user.exe
2012-12-13 18:18:02 ----A---- C:\Windows\system32\dpnet.dll
2012-12-13 18:18:01 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-10 21:00:41 ----D---- C:\Users\WulF\AppData\Roaming\fizzy
2012-12-10 01:36:57 ----A---- C:\scu.dat
2012-12-09 23:30:46 ----D---- C:\Program Files (x86)\ESET
2012-12-09 17:56:17 ----D---- C:\Program Files (x86)\NirSoft
2012-12-07 21:40:40 ----A---- C:\Windows\SYSWOW64\xfcodec.dll
2012-12-07 21:40:38 ----A---- C:\Windows\system32\xfcodec64.dll
2012-12-06 22:36:22 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2013-01-05 23:51:30 ----D---- C:\Windows\Temp
2013-01-05 23:51:30 ----D---- C:\Program Files\trend micro
2013-01-05 23:42:11 ----D---- C:\Windows\System32
2013-01-05 23:42:11 ----D---- C:\Windows\inf
2013-01-05 23:42:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-05 23:39:39 ----D---- C:\ProgramData\Boxtools
2013-01-05 23:39:15 ----D---- C:\Windows\system32\config
2013-01-05 21:00:58 ----D---- C:\Users\WulF\AppData\Roaming\Skype
2013-01-05 20:59:58 ----D---- C:\Windows\system32\NDF
2013-01-05 20:39:16 ----D---- C:\Windows\SysWOW64
2013-01-05 20:39:14 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-01-05 16:18:00 ----D---- C:\Users\WulF\AppData\Roaming\HLSW
2013-01-05 15:06:09 ----SHD---- C:\System Volume Information
2013-01-05 12:29:54 ----D---- C:\Program Files (x86)\SpeedFan
2013-01-04 23:25:12 ----D---- C:\Users\WulF\AppData\Roaming\TS3Client
2013-01-04 22:43:25 ----SHD---- C:\Boot
2013-01-04 19:47:38 ----D---- C:\ProgramData\Xfire
2013-01-03 10:09:27 ----D---- C:\Windows\Prefetch
2013-01-03 10:08:14 ----D---- C:\ProgramData\IBUpdaterService
2013-01-03 08:40:01 ----D---- C:\Windows\winsxs
2013-01-03 08:38:28 ----D---- C:\Windows
2013-01-02 23:20:06 ----RSD---- C:\Windows\Fonts
2013-01-02 23:20:06 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-01-02 23:20:06 ----D---- C:\Windows\system32\wbem
2013-01-02 23:20:06 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-01-02 23:20:06 ----D---- C:\Windows\system32\drivers
2013-01-02 23:20:06 ----D---- C:\Windows\system32\cs-CZ
2013-01-02 23:20:06 ----D---- C:\Windows\AppPatch
2013-01-02 23:20:05 ----D---- C:\Windows\SYSWOW64\wbem
2013-01-02 23:20:05 ----D---- C:\Windows\SYSWOW64\migration
2013-01-02 23:20:05 ----D---- C:\Windows\SYSWOW64\en-US
2013-01-02 23:20:05 ----D---- C:\Windows\system32\migration
2013-01-02 23:20:05 ----D---- C:\Windows\system32\en-US
2013-01-02 23:20:05 ----D---- C:\Windows\system32\drivers\en-US
2013-01-02 23:20:05 ----D---- C:\Windows\PolicyDefinitions
2013-01-02 23:20:04 ----D---- C:\Windows\system32\DriverStore
2013-01-02 15:20:09 ----RSD---- C:\Windows\assembly
2013-01-02 15:20:09 ----D---- C:\Windows\Microsoft.NET
2013-01-02 12:00:21 ----D---- C:\Windows\system32\catroot
2013-01-02 11:59:32 ----D---- C:\Windows\system32\catroot2
2013-01-02 11:56:28 ----SHD---- C:\Windows\Installer
2013-01-02 11:56:21 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-01-02 11:38:37 ----RD---- C:\Program Files
2013-01-02 11:38:37 ----HD---- C:\ProgramData
2013-01-02 02:37:42 ----D---- C:\Windows\system32\Tasks
2013-01-02 02:37:28 ----RD---- C:\Program Files (x86)
2013-01-01 20:44:53 ----D---- C:\Windows\system32\appmgmt
2013-01-01 20:43:28 ----D---- C:\Program Files (x86)\Origin Games
2013-01-01 20:02:44 ----D---- C:\Windows\Tasks
2013-01-01 20:02:44 ----D---- C:\Program Files (x86)\Common Files
2013-01-01 20:01:35 ----D---- C:\Windows\SYSWOW64\update
2013-01-01 19:00:32 ----D---- C:\Users\WulF\AppData\Roaming\Macromedia
2013-01-01 18:48:53 ----D---- C:\Windows\SoftwareDistribution
2013-01-01 14:14:10 ----D---- C:\Windows\Panther
2013-01-01 14:14:10 ----D---- C:\Windows\Logs
2013-01-01 14:14:10 ----D---- C:\ProgramData\EA Logs
2013-01-01 14:14:09 ----D---- C:\Users\WulF\AppData\Roaming\TeamViewer
2013-01-01 14:14:09 ----D---- C:\Users\WulF\AppData\Roaming\.minecraft
2013-01-01 14:14:09 ----D---- C:\Program Files (x86)\Zaklínač
2013-01-01 14:14:08 ----D---- C:\Program Files (x86)\ABBYY FineReader 11
2012-12-31 19:33:12 ----SHD---- C:\$Recycle.Bin
2012-12-31 19:08:33 ----RD---- C:\Users
2012-12-29 13:08:52 ----D---- C:\Users\WulF\AppData\Roaming\Xfire
2012-12-27 20:06:02 ----D---- C:\Users\WulF\AppData\Roaming\DVDVideoSoft
2012-12-27 20:06:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2012-12-22 23:48:16 ----D---- C:\Users\WulF\AppData\Roaming\GRETECH
2012-12-22 23:44:06 ----D---- C:\Program Files (x86)\GRETECH
2012-12-22 21:25:51 ----D---- C:\Program Files\Common Files
2012-12-22 14:43:31 ----D---- C:\output
2012-12-19 14:10:17 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2012-12-19 14:01:16 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-12-18 18:56:45 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2012-12-17 20:36:00 ----D---- C:\Windows\Minidump
2012-12-15 18:15:32 ----D---- C:\Windows\rescache
2012-12-14 07:49:57 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-14 07:49:55 ----D---- C:\Program Files\Internet Explorer
2012-12-14 00:18:06 ----A---- C:\Windows\system32\MRT.exe
2012-12-14 00:18:01 ----D---- C:\ProgramData\Microsoft Help
2012-12-13 22:52:22 ----D---- C:\ProgramData\YTD Video Downloader
2012-12-12 22:20:53 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-12-09 22:27:00 ----SD---- C:\Users\WulF\AppData\Roaming\Microsoft
2012-12-09 21:02:15 ----D---- C:\Program Files (x86)\Xfire
2012-12-08 12:27:35 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-12-06 18:17:01 ----D---- C:\ProgramData\Origin
2012-12-06 18:16:56 ----D---- C:\Users\WulF\AppData\Roaming\Origin
2012-12-06 18:16:50 ----D---- C:\Program Files (x86)\Origin

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2012-09-21 12368]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2012-10-30 262656]
R0 mv91xx;mv91xx; C:\Windows\system32\DRIVERS\mv91xx.sys [2010-08-27 297000]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2012-10-30 132864]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-10-30 21136]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 54072]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 984144]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 370288]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 59728]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-04-19 126912]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 137144]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-11-29 42696]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-10-27 38248]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-10-27 301680]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-10-27 31080]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-10-27 203624]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-10-27 58992]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-10-27 156520]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-27 279152]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-02 2536040]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
R3 USBPNPA;USB PnP Sound Device Interface; C:\Windows\system32\drivers\CM10864.sys [2009-12-22 1308160]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-11-29 310728]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-10-27 55336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-01-12 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-01-12 27176]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-01-02 19456]
S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 tizekdrv;tizekdrv; \??\C:\Users\WulF\AppData\Roaming\TZAC\tizek64.sys [2012-01-19 241848]
S3 tizeqdrv;tizeqdrv; \??\C:\Users\WulF\AppData\Roaming\TZAC2\tizeq64.sys [2012-08-19 171704]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-01-02 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 RsFx0103;RsFx0103 Driver; C:\Windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 311656]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2012-10-12 1026432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-10-27 52896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2012-10-30 133912]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-09-22 974944]
R2 mi-raysat_3dsmax2010_64;mental ray 3.7 Satellite for Autodesk 3ds Max 2010 64-bit 64-bit; C:\Program Files\Autodesk\3ds Max 2010\mentalray\satellite\raysat_3dsmax2010_64server.exe [2009-03-12 86016]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2009-03-30 57617752]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-19 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 157720]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-04-13 1030600]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-10 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-06 115168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-10-16 1255736]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS); c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2009-03-30 254808]

-----------------EOF-----------------

Odinstalujte Avast kdyz na ESET mate licenci

Odintalujte ten kram AdvanceSystemCare

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Search
• Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

ASC je fuc!



# AdwCleaner v2.104 - Logfile created 01/06/2013 at 00:13:20
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : WulF - WULF-PC
# Boot Mode : Normal
# Running from : C:\Users\WulF\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Users\WulF\AppData\Local\funmoods.crx
File Found : C:\Users\WulF\AppData\Local\funmoods-speeddial_sf.crx
File Found : C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\searchplugins\funmoods.xml
Folder Found : C:\ProgramData\IBUpdaterService
Folder Found : C:\ProgramData\InstallMate
Folder Found : C:\ProgramData\Premium
Folder Found : C:\ProgramData\Tarma Installer
Folder Found : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Folder Found : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Folder Found : C:\Users\WulF\AppData\Roaming\PerformerSoft

***** [Registry] *****

Data Found : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\sprotector\sprotector.dll
Key Found : HKCU\Software\APN PIP
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\DSNR Labs
Key Found : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : HKCU\Software\SProtector
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Found : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Found : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Found : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc.1
Key Found : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Key Found : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Found : HKLM\Software\PIP
Key Found : HKLM\Software\SProtector
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SProtector
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service
Key Found : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Found : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Found : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Found : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Found : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKU\S-1-5-21-696496387-2281360345-2749245108-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Found : HKU\S-1-5-21-696496387-2281360345-2749245108-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtDyByC0F0EtByBtCyBtN0D0Tzu0CtAtByEtN1L2XzutBtFtBtFtDtFtAyEyE&cr=2107597224
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtDyByC0F0EtByBtCyBtN0D0Tzu0CtAtByEtN1L2XzutBtFtBtFtDtFtAyEyE&cr=2107597224

-\\ Mozilla Firefox v17.0.1 (cs)

File : C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\prefs.js

Found : user_pref("aol_toolbar.default.homepage.check", false);
Found : user_pref("aol_toolbar.default.search.check", false);
Found : user_pref("browser.search.defaultenginename", "Funmoods");
Found : user_pref("extensions.5061af3acf86c.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Found : user_pref("extensions.5061b241e6953.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Found : user_pref("extensions.funmoods.aflt", "download");
Found : user_pref("extensions.funmoods.autoRvrt", false);
Found : user_pref("extensions.funmoods.cntry", "CZ");
Found : user_pref("extensions.funmoods.cv", "cv5");
Found : user_pref("extensions.funmoods.dfltLng", "");
Found : user_pref("extensions.funmoods.dfltSrch", true);
Found : user_pref("extensions.funmoods.dnsErr", true);
Found : user_pref("extensions.funmoods.envrmnt", "production");
Found : user_pref("extensions.funmoods.excTlbr", false);
Found : user_pref("extensions.funmoods.hdrMd5", "48FE2393DDFB409E236651B0F466A899");
Found : user_pref("extensions.funmoods.hmpg", true);
Found : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd[...]
Found : user_pref("extensions.funmoods.id", "F46D045076FE2717");
Found : user_pref("extensions.funmoods.instlDay", "15663");
Found : user_pref("extensions.funmoods.instlRef", "download");
Found : user_pref("extensions.funmoods.isdcmntcmplt", true);
Found : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2218:54:15");
Found : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Found : user_pref("extensions.funmoods.newTab", true);
Found : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&[...]
Found : user_pref("extensions.funmoods.prdct", "funmoods");
Found : user_pref("extensions.funmoods.prtnrId", "funmoods");
Found : user_pref("extensions.funmoods.sg", "none");
Found : user_pref("extensions.funmoods.smplGrp", "none");
Found : user_pref("extensions.funmoods.srchPrvdr", "Search");
Found : user_pref("extensions.funmoods.tlbrId", "base");
Found : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=download&chnl=downloa[...]
Found : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Found : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2218:54:15");
Found : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Found : user_pref("extensions.funmoods_i.newTab", true);
Found : user_pref("extensions.funmoods_i.smplGrp", "none");
Found : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2218:54:15");
Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Found : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v23.0.1271.97

File : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v12.2.1578.0

File : C:\Users\WulF\AppData\Roaming\Opera\Opera\operaprefs.ini

Found : Home URL=hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtD[...]

*************************

AdwCleaner[R1].txt - [9704 octets] - [06/01/2013 00:13:20]

########## EOF - C:\AdwCleaner[R1].txt - [9764 octets] ##########

Spustte znovu AdwCleaner

• Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
• Kliknete na Delete
• PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

# AdwCleaner v2.104 - Logfile created 01/06/2013 at 00:36:34
# Updated 29/12/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : WulF - WULF-PC
# Boot Mode : Normal
# Running from : C:\Users\WulF\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\WulF\AppData\Local\funmoods.crx
File Deleted : C:\Users\WulF\AppData\Local\funmoods-speeddial_sf.crx
File Deleted : C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\searchplugins\funmoods.xml
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Folder Deleted : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Folder Deleted : C:\Users\WulF\AppData\Roaming\PerformerSoft

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\sprotector\sprotector.dll
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\DSNR Labs
Key Deleted : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKCU\Software\SProtector
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Key Deleted : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtDyByC0F0EtByBtCyBtN0D0Tzu0CtAtByEtN1L2XzutBtFtBtFtDtFtAyEyE&cr=2107597224 --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtDyByC0F0EtByBtCyBtN0D0Tzu0CtAtByEtN1L2XzutBtFtBtFtDtFtAyEyE&cr=2107597224 --> hxxp://www.google.com

-\\ Mozilla Firefox v17.0.1 (cs)

File : C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\prefs.js

C:\Users\WulF\AppData\Roaming\Mozilla\Firefox\Profiles\miip2z3k.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("browser.search.defaultenginename", "Funmoods");
Deleted : user_pref("extensions.5061af3acf86c.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Deleted : user_pref("extensions.5061b241e6953.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("extensions.funmoods.aflt", "download");
Deleted : user_pref("extensions.funmoods.autoRvrt", false);
Deleted : user_pref("extensions.funmoods.cntry", "CZ");
Deleted : user_pref("extensions.funmoods.cv", "cv5");
Deleted : user_pref("extensions.funmoods.dfltLng", "");
Deleted : user_pref("extensions.funmoods.dfltSrch", true);
Deleted : user_pref("extensions.funmoods.dnsErr", true);
Deleted : user_pref("extensions.funmoods.envrmnt", "production");
Deleted : user_pref("extensions.funmoods.excTlbr", false);
Deleted : user_pref("extensions.funmoods.hdrMd5", "48FE2393DDFB409E236651B0F466A899");
Deleted : user_pref("extensions.funmoods.hmpg", true);
Deleted : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd[...]
Deleted : user_pref("extensions.funmoods.id", "F46D045076FE2717");
Deleted : user_pref("extensions.funmoods.instlDay", "15663");
Deleted : user_pref("extensions.funmoods.instlRef", "download");
Deleted : user_pref("extensions.funmoods.isdcmntcmplt", true);
Deleted : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2218:54:15");
Deleted : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Deleted : user_pref("extensions.funmoods.newTab", true);
Deleted : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&[...]
Deleted : user_pref("extensions.funmoods.prdct", "funmoods");
Deleted : user_pref("extensions.funmoods.prtnrId", "funmoods");
Deleted : user_pref("extensions.funmoods.sg", "none");
Deleted : user_pref("extensions.funmoods.smplGrp", "none");
Deleted : user_pref("extensions.funmoods.srchPrvdr", "Search");
Deleted : user_pref("extensions.funmoods.tlbrId", "base");
Deleted : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=download&chnl=downloa[...]
Deleted : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Deleted : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2218:54:15");
Deleted : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Deleted : user_pref("extensions.funmoods_i.newTab", true);
Deleted : user_pref("extensions.funmoods_i.smplGrp", "none");
Deleted : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2218:54:15");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v23.0.1271.97

File : C:\Users\WulF\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v12.2.1578.0

File : C:\Users\WulF\AppData\Roaming\Opera\Opera\operaprefs.ini

Deleted : Home URL=hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd=2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEyDtD[...]

*************************

AdwCleaner[R1].txt - [9791 octets] - [06/01/2013 00:13:20]
AdwCleaner[S1].txt - [9849 octets] - [06/01/2013 00:36:34]

########## EOF - C:\AdwCleaner[S1].txt - [9909 octets] ##########




Co si budem... Jste borci prohlížeče běží zatím to vypadá, že je vše ok Mohu se zeptat kde byl problém?

Problemy byl ve spouste reklamniho SW a toolbaru, jeste na to mrkneme

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku