VIRY.CZ

prosim o pomoc notebook jde hrozne pomalu zrejme chybi nejake ovladace a nevim co s tim jedna se o msi cr650

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16457
Run by Chorche at 19:00:36 on 2013-01-07
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.1644.621 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\ChargeService.exe
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\taskhost.exe
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\MSI\Live Update 5\LU5.exe
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
C:\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uURLSearchHooks: <No Name>: {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Toolbar BHO: {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Search Assistant BHO: {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: VideoDownloadConverter: {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [Google Update] "C:\Users\Chorche\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Super-Charger] C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe
mRun: [Live Update 5] C:\Program Files (x86)\MSI\Live Update 5\LU5.exe /reminder
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe
mRun: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
TCP: NameServer = 10.0.0.138
TCP: Interfaces\{5F3CB6A0-D11B-496A-AE6E-95A21C25DDA8} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{AE51A100-B46C-4AB6-B500-40C24E5008D3} : DHCPNameServer = 10.0.0.138
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
SSODL: WebCheck - <orphaned>
x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R1 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2013-1-4 21136]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-12-20 984144]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-12-20 370288]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-12-20 30568]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-12-17 283200]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-9-28 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-9-28 361984]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-12-20 25232]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-12-20 71600]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-1-4 44808]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-5-14 96896]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2012-12-20 142632]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys [2012-12-24 33592]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys [2012-12-24 14136]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\rtsuvstor.sys [2012-12-20 311400]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-12-24 676968]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\Windows\System32\drivers\rtl8192Ce.sys [2012-12-20 1105000]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64;C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [2012-12-20 21712]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C;C:\MSI\MSI SUITE\NTIOLib_X64.sys [2012-12-24 11888]
S3 NTIOLib_1_0_D;NTIOLib_1_0_D;C:\MSI\MSI SUITE\ControlCenter\NTIOLib_X64.sys [2012-12-24 11080]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-20 19456]
S3 Synth3dVsc;Synth3dVsc;C:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver;C:\Windows\System32\drivers\terminpt.sys [2012-12-20 29696]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-20 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-20 30208]
S3 tsusbhub;tsusbhub;C:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]
.
=============== Created Last 30 ================
.
2021-01-06 00:58:57 268435456 --sha-w- C:\WinPEpge.sys
2021-01-06 00:58:54 -------- d-----w- C:\$WINDOWS.~BT
2013-01-06 17:20:34 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{60949705-0CEF-4728-AD20-58A4BFFE3351}\offreg.dll
2013-01-06 16:19:31 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{60949705-0CEF-4728-AD20-58A4BFFE3351}\mpengine.dll
2013-01-05 10:37:37 -------- d-----w- C:\Program Files (x86)\Video Download Converter
2013-01-04 16:36:51 1180099 ----a-w- C:\Windows\unins000.exe
2013-01-04 13:50:04 21136 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
2013-01-03 23:10:25 -------- d-----w- C:\Users\Chorche\AppData\Roaming\MSI
2013-01-03 20:57:45 -------- d-----w- C:\Users\Chorche\AppData\Local\Adobe
2013-01-03 20:52:19 -------- d-----w- C:\Program Files (x86)\Esl
2013-01-03 20:52:16 -------- d-----w- C:\Program Files (x86)\Resource
2013-01-03 20:52:02 -------- d-----w- C:\Program Files (x86)\Setup Files
2013-01-03 20:52:02 -------- d-----w- C:\Program Files (x86)\Reader
2013-01-03 16:54:01 -------- d-----w- C:\Program Files (x86)\uTorrent
2013-01-02 15:02:36 -------- d-----w- C:\Users\Chorche\AppData\Local\MSI
2012-12-30 13:26:08 -------- d-----w- C:\Program Files (x86)\Winamp Detect
2012-12-30 13:22:20 -------- d-----w- C:\Users\Chorche\AppData\Roaming\OpenCandy
2012-12-27 17:21:32 -------- d-----w- C:\Users\Chorche\AppData\Local\cache
2012-12-27 17:09:00 -------- d-----w- C:\Users\Chorche\AppData\Local\FullTiltPoker
2012-12-27 17:06:49 -------- d-----w- C:\Program Files (x86)\Full Tilt Poker
2012-12-26 23:26:30 4608 ----a-w- C:\Windows\SysWow64\drivers\CDDRV.sys
2012-12-26 19:12:13 119808 ----a-r- C:\Users\Chorche\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2012-12-26 18:37:37 -------- d-----w- C:\Users\Chorche\AppData\Roaming\DAEMON Tools Lite
2012-12-26 18:37:35 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2012-12-25 05:48:39 -------- d-----w- C:\Program Files (x86)\RelevantKnowledge
2012-12-25 05:47:09 609584 ----a-w- C:\Windows\SysWow64\comctl32.ocx
2012-12-25 05:47:09 1081616 ----a-w- C:\Windows\SysWow64\mscomctl.ocx
2012-12-25 05:47:08 152848 ----a-w- C:\Windows\SysWow64\comdlg32.ocx
2012-12-25 05:47:08 -------- d-----w- C:\Program Files (x86)\Mp3 Knife
2012-12-24 05:46:13 -------- d-----w- C:\ProgramData\boost_interprocess
2012-12-24 05:03:48 -------- d-----w- C:\MSI
2012-12-24 05:02:38 11832 ----a-w- C:\Windows\acpimof.dll
2012-12-24 04:57:10 -------- d--h--w- C:\SuperChargerProfile
2012-12-24 04:51:50 -------- d-----w- C:\ProgramData\Trend Micro
2012-12-24 04:39:15 74344 ----a-w- C:\Windows\System32\RtNicProp64.dll
2012-12-24 04:39:15 676968 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2012-12-21 03:48:26 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-12-21 03:48:25 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-21 00:07:58 -------- d-----w- C:\Users\Chorche\AppData\Local\AMD
2012-12-20 23:54:20 -------- d-----w- C:\Users\Chorche\AppData\Local\PokerStars
2012-12-20 23:53:15 -------- d-----w- C:\Program Files (x86)\PokerStars
2012-12-20 23:45:58 0 ----a-w- C:\Windows\ativpsrm.bin
2012-12-20 23:21:52 -------- d-----w- C:\ProgramData\AMD
2012-12-20 23:21:44 -------- d-----w- C:\Program Files (x86)\AMD AVT
2012-12-20 23:21:18 -------- d-----w- C:\Program Files (x86)\AMD APP
2012-12-20 23:10:36 -------- d-----w- C:\AMD
2012-12-20 20:45:54 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-20 20:45:54 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-20 20:45:52 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-20 20:45:51 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-20 19:38:18 -------- d-----w- C:\Users\Chorche\AppData\Local\Microsoft_Corporation
2012-12-20 19:00:48 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-12-20 18:48:33 -------- d-----w- C:\Windows\SysWow64\Wat
2012-12-20 18:48:30 -------- d-----w- C:\Windows\System32\Wat
2012-12-20 18:14:37 54072 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2012-12-20 18:14:36 984144 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2012-12-20 18:14:30 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2012-12-20 18:12:31 41224 ----a-w- C:\Windows\avastSS.scr
2012-12-20 18:11:58 -------- d-----w- C:\ProgramData\AVAST Software
2012-12-20 18:11:58 -------- d-----w- C:\Program Files\AVAST Software
2012-12-20 17:19:39 -------- d-----w- C:\Windows\System32\appmgmt
2012-12-20 16:33:45 -------- d-----w- C:\Program Files\Elantech
2012-12-20 16:33:34 5016872 ----a-w- C:\Windows\System32\ETDUI.cpl
2012-12-20 16:33:34 142632 ----a-w- C:\Windows\System32\drivers\ETD.sys
2012-12-20 16:33:13 -------- d-----w- C:\Windows\SysWow64\sda
2012-12-20 16:31:27 311400 ----a-r- C:\Windows\System32\drivers\rtsuvstor.sys
2012-12-20 16:31:27 17512 ------r- C:\Windows\System32\drivers\diskperf64.sys
2012-12-20 16:31:24 9888360 ----a-w- C:\Windows\SysWow64\RtsUVStoricon.dll
2012-12-20 16:28:17 -------- d-----w- C:\ProgramData\Downloaded Installations
2012-12-20 16:11:51 -------- d-----w- C:\Windows\System32\SRSLabs
2012-12-20 16:11:45 -------- d-----w- C:\Program Files\Realtek
2012-12-20 16:11:42 -------- d-----w- C:\Windows\SysWow64\RTCOM
2012-12-20 15:21:52 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2012-12-20 15:14:43 21712 ----a-w- C:\Windows\SysWow64\drivers\DrvAgent64.SYS
2012-12-20 15:14:43 -------- d-----w- C:\Users\Chorche\AppData\Local\eSupport.com
2012-12-20 15:12:46 -------- d-----w- C:\Users\Chorche\AppData\Local\ATI
2012-12-20 15:12:27 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2012-12-20 15:12:27 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2012-12-20 15:10:03 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2012-12-20 15:09:48 -------- d-----w- C:\CIMTEMP
2012-12-20 15:09:25 -------- d-----w- C:\Program Files\ATI Technologies
2012-12-20 15:09:23 -------- d-----w- C:\Program Files\ATI
2012-12-20 15:03:50 -------- d-----w- C:\Program Files (x86)\MSI
2012-12-20 14:32:34 -------- d-----w- C:\Program Files (x86)\Microsoft
2012-12-20 14:32:02 77656 ----a-w- C:\Windows\System32\XAPOFX1_5.dll
2012-12-20 14:32:02 74072 ----a-w- C:\Windows\SysWow64\XAPOFX1_5.dll
2012-12-20 14:32:02 527192 ----a-w- C:\Windows\SysWow64\XAudio2_7.dll
2012-12-20 14:32:02 518488 ----a-w- C:\Windows\System32\XAudio2_7.dll
2012-12-20 14:23:23 -------- d-----w- C:\Windows\SysWow64\directx
2012-12-20 13:56:42 -------- d-----w- C:\Users\Chorche\AppData\Local\Innovative Solutions
2012-12-20 13:55:45 -------- d-----w- C:\Users\Chorche\AppData\Local\AVG Secure Search
2012-12-20 13:55:33 -------- d-----w- C:\ProgramData\AVG Secure Search
2012-12-20 13:55:21 30568 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2012-12-20 13:55:19 -------- d-----w- C:\Program Files (x86)\Common Files\AVG Secure Search
2012-12-20 13:55:17 -------- d-----w- C:\Program Files (x86)\AVG Secure Search
2012-12-20 13:54:48 -------- d--h--w- C:\ProgramData\Common Files
2012-12-20 13:33:19 -------- d-----w- C:\Users\Chorche\AppData\Local\Google
2012-12-20 13:32:40 -------- d-----w- C:\Users\Chorche\AppData\Local\Deployment
2012-12-20 13:32:40 -------- d-----w- C:\Users\Chorche\AppData\Local\Apps
2012-12-20 12:04:13 2560 ----a-w- C:\Windows\System32\drivers\cs-CZ\wdf01000.sys.mui
2012-12-20 12:04:10 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2012-12-20 12:04:10 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2012-12-20 12:04:10 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2012-12-20 11:53:50 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2012-12-20 11:44:48 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2012-12-20 11:44:47 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2012-12-20 11:44:47 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2012-12-20 11:44:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2012-12-20 11:44:46 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2012-12-20 11:44:45 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2012-12-20 11:44:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2012-12-20 11:41:16 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2012-12-20 11:41:16 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-12-20 11:41:16 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-12-20 11:41:15 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2012-12-20 11:41:15 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-12-20 11:33:52 1659760 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2012-12-20 11:33:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2012-12-20 11:33:49 41472 ----a-w- C:\Windows\System32\drivers\rndismpx.sys
2012-12-20 11:33:49 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2012-12-20 11:33:22 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-12-20 11:33:22 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-12-20 11:31:57 870912 ----a-w- C:\Windows\SysWow64\XpsPrint.dll
2012-12-20 11:30:59 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2012-12-20 11:29:56 715776 ----a-w- C:\Windows\System32\kerberos.dll
2012-12-20 11:28:57 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2012-12-20 11:27:51 466944 ----a-w- C:\Program Files\Common Files\System\ado\msadomd.dll
2012-12-20 11:27:51 258048 ----a-w- C:\Program Files\Common Files\System\msadc\msadco.dll
2012-12-20 11:27:51 1499136 ----a-w- C:\Program Files\Common Files\System\ado\msado15.dll
2012-12-20 11:27:51 1019904 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msado15.dll
2012-12-20 11:27:50 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-12-20 11:27:50 61440 ----a-w- C:\Program Files\Common Files\System\ado\msador15.dll
2012-12-20 11:27:50 57344 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msador15.dll
2012-12-20 11:27:50 495616 ----a-w- C:\Program Files\Common Files\System\ado\msadox.dll
2012-12-20 11:27:50 372736 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadox.dll
2012-12-20 11:27:50 352256 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadomd.dll
2012-12-20 11:27:50 212992 ----a-w- C:\Program Files (x86)\Common Files\System\msadc\msadco.dll
2012-12-20 11:27:50 143360 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msjro.dll
2012-12-20 11:27:49 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-12-20 11:22:02 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2012-12-20 11:22:02 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2012-12-20 11:21:59 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2012-12-20 11:21:59 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2012-12-20 11:12:36 1732096 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2012-12-20 11:12:36 1367552 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2012-12-20 11:12:35 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-12-20 11:12:35 1402880 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2012-12-20 11:12:35 1393664 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2012-12-20 11:12:31 1731920 ----a-w- C:\Windows\System32\ntdll.dll
2012-12-20 11:12:31 1292080 ----a-w- C:\Windows\SysWow64\ntdll.dll
2012-12-20 11:09:38 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2012-12-20 11:09:38 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2012-12-20 11:09:38 331776 ----a-w- C:\Windows\System32\oleacc.dll
2012-12-20 11:09:38 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2012-12-20 11:09:34 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2012-12-20 11:08:18 77312 ----a-w- C:\Windows\System32\packager.dll
2012-12-20 11:08:18 67072 ----a-w- C:\Windows\SysWow64\packager.dll
2012-12-20 11:05:57 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-12-20 11:04:16 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-12-20 11:04:16 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-12-20 11:04:15 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-12-20 11:03:35 -------- d-----w- C:\Users\Chorche\AppData\Roaming\uTorrent
2012-12-20 10:53:40 -------- d-----w- C:\Users\Chorche\AppData\Local\VideoDownloadConverter_4z
2012-12-20 10:28:25 -------- d-----w- C:\Program Files (x86)\Cisco
2012-12-20 10:28:22 -------- d-sh--w- C:\Windows\Installer
2012-12-20 10:27:30 1105000 ----a-w- C:\Windows\System32\drivers\rtl8192Ce.sys
2012-12-20 10:27:13 451072 ----a-w- C:\Windows\SysWow64\ISSRemoveSP.exe
2012-12-18 21:59:28 -------- d-----w- C:\Program Files (x86)\VideoDownloadConverter_4z
2012-12-18 21:48:52 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-12-18 21:48:35 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-12-18 21:48:24 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-12-18 21:48:24 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-12-18 21:23:37 -------- d-----w- C:\Users\Chorche\AppData\Local\ElevatedDiagnostics
2012-12-18 20:34:04 -------- d-----w- C:\Users\Chorche\AppData\Local\Diagnostics
2012-12-18 20:13:13 -------- d-----w- C:\Users\Chorche\AppData\Local\VirtualStore
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Plocha
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Oblíbené položky
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Šablony
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Nabídka Start
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Dokumenty
2012-12-18 20:09:55 -------- d-sh--we C:\ProgramData\Data aplikací
2012-12-18 17:56:51 -------- d-----w- C:\Windows\Panther
2012-12-18 17:34:47 -------- d-----w- C:\Windows.old.000
2012-12-17 23:38:11 -------- d-----w- C:\Windows.old
2012-12-17 21:23:28 283200 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
.
==================== Find3M ====================
.
2013-01-02 19:18:14 5606912 ----a-w- C:\Users\Chorche\S-BarSetup.msi
2013-01-02 19:17:42 427520 ----a-w- C:\Users\Chorche\setup.exe
2012-12-20 15:56:03 149608 ----a-w- C:\Windows\System32\RtkCfg64.dll
2012-12-20 15:56:02 375128 ----a-w- C:\Windows\System32\RTEEP64A.dll
2012-12-20 15:56:02 101208 ----a-w- C:\Windows\System32\RTEEL64A.dll
2012-12-20 15:56:01 78680 ----a-w- C:\Windows\System32\RTEEG64A.dll
2012-12-20 15:56:01 204120 ----a-w- C:\Windows\System32\RTEED64A.dll
2012-12-20 15:55:59 83048 ----a-w- C:\Windows\System32\RCoInst64.dll
2012-12-20 15:55:59 310104 ----a-w- C:\Windows\System32\RP3DHT64.dll
2012-12-20 15:55:59 310104 ----a-w- C:\Windows\System32\RP3DAA64.dll
2012-11-22 03:26:40 3149824 ----a-w- C:\Windows\System32\win32k.sys
2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll
2012-10-09 18:17:13 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
.
============= FINISH: 19:04:43,61 ===============

Zdravím, sice tohle není log z Rsit jak píšeš, ale nevadí.

Ccleaner

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Pak použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !!!

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Chorche :: CHORCHE-PC [administrátor]

Ochrana: Povolena

9.1.2013 1:28:32
MBAM-log-2013-01-09 (01-40-43).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 201659
Uplynulý čas: 11 minut, 9 sekund

Nalezené procesy v paměti: 4
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe (PUP.Adware.RelevantKnowledge) -> 2680 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (PUP.MyWebSearch) -> 3852 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (PUP.Adware.RelevantKnowledge) -> 2396 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe (PUP.Adware.RelevantKnowledge) -> 4196 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 2
C:\Program Files (x86)\RelevantKnowledge\rlls.dll (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrstub.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.

Nalezené klíče v registru: 13
HKLM\SYSTEM\CurrentControlSet\Services\RelevantKnowledge (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\VideoDownloadConverter_4zService (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831} (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{312f84fb-8970-4fd3-bddb-7012eac4afc9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter_4zbar Uninstall (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|VideoDownloadConverter_4z Browser Plugin Loader (PUP.MyWebSearch) -> Data: C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|VideoDownloadConverter Search Scope Monitor (PUP.MyWebSearch) -> Data: "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{93A3111F-4F74-4ED8-895E-D9708497629E} (PUP.MyWebSearch) -> Data: -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 2
C:\Program Files (x86)\RelevantKnowledge (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 20
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlls.dll (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrstub.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe (PUP.Adware.RelevantKnowledge) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\ncncf.dat (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\nscf.dat (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rlls64.dll (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\rloci.bin (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\RelevantKnowledge\shfscp.dat (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\About RelevantKnowledge.lnk (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Member of GRID - Goodware Repository Information Database.lnk (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Privacy Policy and User License Agreement.lnk (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Support.lnk (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Uninstall Instructions.lnk (PUP.Spyware.MarketScore) -> Nebyla provedena žádná instrukce.

(konec)

Oprava :-DD

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.70.0.1100
www.malwarebytes.org

Verze: v2013.01.08.13

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Chorche :: CHORCHE-PC [administrátor]

Ochrana: Povolena

9.1.2013 10:59:01
MBAM-log-2013-01-09 (11-12-18).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 204551
Uplynulý čas: 13 minut, 5 sekund

Nalezené procesy v paměti: 2
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe (PUP.MyWebSearch) -> 2256 -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (PUP.MyWebSearch) -> 3496 -> Nebyla provedena žádná instrukce.

Nalezené moduly v paměti: 1
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrstub.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.

Nalezené klíče v registru: 11
HKLM\SYSTEM\CurrentControlSet\Services\VideoDownloadConverter_4zService (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{312f84fb-8970-4fd3-bddb-7012eac4afc9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter_4zbar Uninstall (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C547C6C2-561B-4169-A2A5-20BA771CA93B} (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|VideoDownloadConverter_4z Browser Plugin Loader (PUP.MyWebSearch) -> Data: C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|VideoDownloadConverter Search Scope Monitor (PUP.MyWebSearch) -> Data: "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{93A3111F-4F74-4ED8-895E-D9708497629E} (PUP.MyWebSearch) -> Data: -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 6
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrstub.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (PUP.MyWebSearch) -> Nebyla provedena žádná instrukce.

(konec)

Vše co Mbam našel nech smazat.

Nyní použijeme větší kalibr tak že pozorně čti, protože tenhle softík netoleruje chyby.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

ComboFix 13-01-17.03 - Chorche 17.01.2013 19:16:13.3.1 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.1644.543 [GMT 1:00]
Spuštěný z: c:\users\Chorche\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Downloaded Installers
c:\program files (x86)\Downloaded Installers\{0BEB28E4-E5EA-40DE-8982-1F13005DC08B}\setup.msi
c:\programdata\boost_interprocess\20130109105303.500000
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_PNPMEM
-------\Service_WinDHCPsvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-17 do 2013-01-17 )))))))))))))))))))))))))))))))
.
.
2021-01-06 00:58 . 2013-01-10 02:37 268435456 --sha-w- C:\WinPEpge.sys
2013-01-17 20:31 . 2013-01-17 20:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-17 11:22 . 2013-01-17 11:22 -------- d-----w- C:\HM2Archive
2013-01-17 11:04 . 2013-01-17 17:54 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{72952E3B-2B53-465C-A0E6-BA2375350D33}\offreg.dll
2013-01-17 10:00 . 2013-01-17 10:00 -------- d-----w- c:\users\Chorche\AppData\Local\Hold'em_Manager
2013-01-17 09:18 . 2013-01-17 09:18 -------- d-----w- c:\program files\ESET
2013-01-17 06:57 . 2013-01-17 06:57 -------- d-----w- c:\users\Chorche\AppData\Local\In The Money
2013-01-17 06:54 . 2013-01-17 06:54 -------- d-----w- c:\users\Chorche\AppData\Roaming\HEM Data
2013-01-17 06:33 . 2013-01-17 06:33 -------- d-----w- c:\program files (x86)\RVG Software
2013-01-17 03:35 . 2013-01-17 03:35 -------- d-----w- c:\programdata\XHEO INC
2013-01-17 03:34 . 2013-01-17 12:50 -------- d-----w- c:\users\Chorche\AppData\Roaming\HoldemManager
2013-01-17 03:30 . 2013-01-17 11:20 -------- d-----w- c:\program files\Holdem Manager 2
2013-01-17 03:22 . 2013-01-17 03:22 -------- d-----w- c:\users\Chorche\AppData\Local\ESET
2013-01-16 05:32 . 2013-01-16 05:33 -------- d-----w- c:\program files (x86)\The KMPlayer1431
2013-01-16 00:08 . 2013-01-16 00:08 -------- d-----w- c:\users\Chorche\AppData\Local\IsolatedStorage
2013-01-15 19:22 . 2013-01-17 02:53 -------- d-----w- C:\Hand History
2013-01-15 17:37 . 2013-01-17 10:30 -------- d-----w- c:\users\postgres
2013-01-15 17:29 . 2013-01-15 17:29 -------- d-----w- c:\program files (x86)\PostgreSQL
2013-01-15 17:22 . 2013-01-17 06:36 -------- d-----w- c:\program files (x86)\PSQLINSTALL
2013-01-15 17:02 . 2012-11-19 00:01 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{72952E3B-2B53-465C-A0E6-BA2375350D33}\mpengine.dll
2013-01-10 14:48 . 2013-01-10 14:48 -------- d-----w- c:\programdata\NVIDIA
2013-01-10 14:44 . 2013-01-10 14:44 -------- d-----w- c:\windows\Sun
2013-01-10 14:03 . 2013-01-10 14:03 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-01-10 14:02 . 2013-01-10 14:01 859072 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-01-10 14:02 . 2013-01-10 14:01 779704 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-10 14:02 . 2013-01-10 14:01 95184 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-10 14:01 . 2013-01-10 14:01 -------- d-----w- c:\program files (x86)\Java
2013-01-10 09:15 . 2013-01-10 09:16 -------- d-----w- C:\msiFastBoot
2013-01-10 02:37 . 2013-01-10 02:37 -------- d-----w- C:\$WINDOWS.~BT
2013-01-09 18:51 . 2013-01-09 18:51 -------- d-----w- c:\programdata\Uniblue
2013-01-09 15:23 . 2013-01-09 15:23 -------- d-----w- c:\program files (x86)\CardRecoveryPro
2013-01-09 09:32 . 2013-01-10 11:17 -------- d-----w- c:\users\Chorche\AppData\Roaming\FixCleaner
2013-01-09 09:32 . 2013-01-17 08:15 -------- d-----w- c:\program files (x86)\FixCleaner
2013-01-09 06:53 . 2013-01-17 08:11 -------- d-----w- c:\program files (x86)\DriverUpdate
2013-01-09 06:43 . 2000-01-01 00:00 19600 ----a-w- c:\windows\system32\drivers\rtcrfilt64.sys
2013-01-09 06:43 . 2012-12-21 01:48 307304 ----a-w- c:\windows\system32\drivers\rtsuvstor.sys
2013-01-09 06:43 . 2000-01-01 00:00 14480 ----a-w- c:\windows\system32\rtcrco.dll
2013-01-09 06:25 . 2000-01-01 00:00 56448 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2013-01-09 06:25 . 2013-01-09 06:25 -------- dc----w- c:\windows\system32\DRVSTORE
2013-01-09 06:20 . 2000-01-01 00:00 82560 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2013-01-09 06:20 . 2000-01-01 00:00 42624 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2013-01-09 05:44 . 2013-01-17 20:36 15712 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-01-09 05:44 . 2013-01-10 06:34 -------- d-----w- c:\users\Chorche\AppData\Local\SlimWare Utilities Inc
2013-01-09 05:41 . 2013-01-09 05:41 -------- d-----w- c:\program files (x86)\SlimDrivers
2013-01-09 05:37 . 2013-01-10 11:40 -------- d-----w- c:\users\Chorche\AppData\Roaming\Media Player Classic
2013-01-09 04:49 . 2013-01-09 04:49 -------- d-----w- c:\users\Chorche\AppData\Local\Secunia PSI
2013-01-09 04:48 . 2013-01-09 04:48 -------- d-----w- c:\program files (x86)\Secunia
2013-01-09 03:55 . 2013-01-09 10:20 -------- d-----w- c:\program files (x86)\S-Bar
2013-01-09 00:23 . 2013-01-09 00:23 -------- d-----w- c:\users\Chorche\AppData\Roaming\Malwarebytes
2013-01-09 00:22 . 2013-01-09 00:22 -------- d-----w- c:\programdata\Malwarebytes
2013-01-09 00:22 . 2013-01-09 00:23 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-01-09 00:22 . 2012-12-14 15:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-09 00:22 . 2013-01-09 00:22 -------- d-----w- c:\users\Chorche\AppData\Local\Programs
2013-01-08 23:42 . 2013-01-08 23:42 -------- d-----w- c:\users\Chorche\AppData\Roaming\InstallShield
2013-01-08 23:39 . 2013-01-08 23:40 -------- d-----w- c:\program files\CCleaner
2013-01-08 23:34 . 2013-01-09 09:56 -------- d-----r- c:\users\Chorche\SafeSync
2013-01-08 23:34 . 2013-01-08 23:34 -------- d-----w- c:\users\Chorche\AppData\Roaming\Trend Micro
2013-01-08 23:34 . 2013-01-08 23:34 -------- d-----w- c:\users\Chorche\AppData\Local\Trend Micro
2013-01-08 23:24 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-08 23:24 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-08 23:24 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-01-08 23:24 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
2013-01-08 23:24 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
2013-01-08 23:24 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
2013-01-08 23:24 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-01-08 23:23 . 2012-11-20 05:48 307200 ----a-w- c:\windows\system32\ncrypt.dll
2013-01-08 23:23 . 2012-11-20 04:51 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2013-01-08 23:23 . 2012-11-22 05:44 800768 ----a-w- c:\windows\system32\usp10.dll
2013-01-08 23:23 . 2012-11-22 04:45 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2013-01-08 23:20 . 2012-11-30 05:41 424448 ----a-w- c:\windows\system32\KernelBase.dll
2013-01-08 23:17 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 23:49 . 2013-01-04 23:49 -------- d-----w- c:\users\Chorche\AppData\Roaming\Mozilla
2013-01-04 13:21 . 2013-01-04 13:21 -------- d-----w- c:\users\Chorche\AppData\Roaming\WinRAR
2013-01-04 13:20 . 2013-01-04 13:20 -------- d-----w- c:\program files\WinRAR
2013-01-03 23:10 . 2013-01-03 23:10 -------- d-----w- c:\users\Chorche\AppData\Roaming\MSI
2013-01-03 20:57 . 2013-01-03 20:57 -------- d-----w- c:\users\Chorche\AppData\Local\Adobe
2013-01-03 20:52 . 2013-01-03 20:52 -------- d-----w- c:\program files (x86)\Esl
2013-01-03 20:52 . 2013-01-03 20:53 -------- d-----w- c:\program files (x86)\Resource
2013-01-03 20:52 . 2013-01-03 20:53 -------- d-----w- c:\program files (x86)\Reader
2013-01-03 20:52 . 2013-01-03 20:52 -------- d-----w- c:\program files (x86)\Setup Files
2013-01-03 20:52 . 2013-01-03 20:53 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2013-01-03 16:54 . 2013-01-03 16:54 -------- d-----w- c:\program files (x86)\uTorrent
2013-01-02 15:02 . 2013-01-02 15:02 -------- d-----w- c:\users\Chorche\AppData\Local\MSI
2012-12-30 13:26 . 2013-01-02 13:02 -------- d-----w- c:\program files (x86)\Winamp Detect
2012-12-30 13:22 . 2013-01-02 13:01 -------- d-----w- c:\users\Chorche\AppData\Roaming\OpenCandy
2012-12-30 13:22 . 2013-01-02 13:02 -------- d-----w- c:\program files (x86)\Winamp
2012-12-30 13:22 . 2013-01-02 13:01 -------- d-----w- c:\users\Chorche\AppData\Roaming\Winamp
2012-12-27 17:21 . 2012-12-27 17:21 -------- d-----w- c:\users\Chorche\AppData\Local\cache
2012-12-27 17:09 . 2012-12-27 17:47 -------- d-----w- c:\users\Chorche\AppData\Local\FullTiltPoker
2012-12-27 17:06 . 2012-12-28 12:24 -------- d-----w- c:\program files (x86)\Full Tilt Poker
2012-12-26 23:26 . 2012-10-03 14:11 4608 ----a-w- c:\windows\SysWow64\drivers\CDDRV.sys
2012-12-26 19:12 . 2012-12-26 19:12 119808 ----a-r- c:\users\Chorche\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2012-12-26 18:37 . 2013-01-08 23:54 -------- d-----w- c:\users\Chorche\AppData\Roaming\DAEMON Tools Lite
2012-12-26 18:37 . 2012-12-26 18:44 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-12-25 05:47 . 2004-04-12 16:27 1081616 ----a-w- c:\windows\SysWow64\mscomctl.ocx
2012-12-25 05:47 . 2004-04-12 16:27 609584 ----a-w- c:\windows\SysWow64\comctl32.ocx
2012-12-25 05:47 . 2012-12-25 05:47 -------- d-----w- c:\program files (x86)\Mp3 Knife
2012-12-25 05:47 . 2004-04-12 16:27 152848 ----a-w- c:\windows\SysWow64\comdlg32.ocx
2012-12-24 06:18 . 2012-12-24 06:33 -------- d-----w- c:\users\Chorche\AppData\Roaming\Google
2012-12-24 05:46 . 2013-01-17 20:30 -------- d-----w- c:\programdata\boost_interprocess
2012-12-24 05:03 . 2013-01-04 03:47 -------- d-----w- C:\MSI
2012-12-24 05:02 . 2012-08-22 09:19 11832 ----a-w- c:\windows\acpimof.dll
2012-12-24 04:57 . 2013-01-04 03:47 -------- d-----w- C:\SuperChargerProfile
2012-12-24 04:53 . 2012-12-24 04:53 -------- d-----w- c:\program files\Google
2012-12-24 04:51 . 2013-01-03 23:09 -------- d-----w- c:\programdata\Trend Micro
2012-12-24 04:39 . 2012-02-16 12:42 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2012-12-24 04:39 . 2012-02-16 12:42 676968 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2012-12-24 02:12 . 2012-12-24 02:12 -------- d-----w- c:\users\Chorche\AppData\Roaming\Nitro PDF
2012-12-23 05:38 . 2013-01-03 20:57 -------- d-----w- c:\users\Chorche\AppData\Roaming\Adobe
2012-12-21 04:20 . 2012-12-21 04:20 -------- d-----w- c:\users\Chorche\AppData\Roaming\Macromedia
2012-12-21 03:48 . 2013-01-09 18:11 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-21 03:48 . 2013-01-09 18:11 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-21 03:48 . 2012-12-21 03:48 -------- d-----w- c:\windows\SysWow64\Macromed
2012-12-21 03:48 . 2012-12-21 03:48 -------- d-----w- c:\windows\system32\Macromed
2012-12-21 00:07 . 2012-12-21 00:07 -------- d-----w- c:\users\Chorche\AppData\Local\AMD
2012-12-21 00:06 . 2012-12-21 00:06 -------- d-----w- c:\programdata\ATI
2012-12-20 23:54 . 2013-01-17 11:31 -------- d-----w- c:\users\Chorche\AppData\Local\PokerStars
2012-12-20 23:53 . 2013-01-02 13:05 -------- d-----w- c:\program files (x86)\PokerStars
2012-12-20 23:45 . 2012-12-20 23:45 0 ----a-w- c:\windows\ativpsrm.bin
2012-12-20 23:21 . 2012-12-20 23:46 -------- d-----w- c:\programdata\AMD
2012-12-20 23:21 . 2012-12-20 23:21 -------- d-----w- c:\program files (x86)\AMD AVT
2012-12-20 23:21 . 2012-12-20 23:21 -------- d-----w- c:\program files (x86)\AMD APP
2012-12-20 23:10 . 2013-01-16 07:19 -------- d-----w- C:\AMD
2012-12-20 20:45 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-20 20:45 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-26 19:12 . 2012-12-26 19:12 119808 ----a-r- c:\users\Chorche\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2012-12-26 18:37 . 2012-12-17 21:23 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-11-30 04:45 . 2013-01-08 23:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-11-09 08:54 . 2012-11-09 08:54 3584 ----a-w- c:\windows\SysWow64\msiapcfg.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-12-23 05:39 1796552 ----a-w- c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll" [2012-12-23 1796552]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="c:\program files\CCleaner\CCleaner64.exe" [2012-12-19 5628848]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-12-24 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-04-14 113288]
"Super-Charger"="c:\program files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe" [2012-10-23 502328]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"Fast Boot"="c:\program files (x86)\MSI\Fast Boot\StartFastBoot.exe" [2012-09-19 764472]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Cinema ProII AP"="c:\program files (x86)\MSI\Cinema ProII\CinemaProII.exe" [2011-01-25 200192]
"Cinema ProII Controler"="c:\program files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe" [2010-06-25 1689600]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoThumbnailCache"= 1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 MSI_FastBoot;MSI_FastBoot;c:\program files (x86)\MSI\Fast Boot\FastBootService.exe [2012-10-26 103992]
R2 MSI_SuiteFastBoot;MSI_SuiteFastBoot;c:\msi\MSI SUITE\FastBoot\SuiteFastBootService.exe [2012-10-26 105016]
R3 acpials;Filtr zařízení ALS Sensor;c:\windows\system32\DRIVERS\acpials.sys [2009-07-14 9728]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe [2012-06-11 240208]
R3 CDDRV;CDDRV;c:\windows\system32\Drivers\CDDRV.sys [x]
R3 DigiCellDriver;DigiCellDriver; [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [2012-12-20 21712]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files (x86)\MSI\Live Update 5\msibios64_100507.sys [2010-05-10 33592]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; [x]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files (x86)\MSI\Live Update 5\NTIOLib_X64.sys [2010-10-22 14136]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;c:\msi\MSI SUITE\NTIOLib_X64.sys [2012-03-30 11888]
R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RTSUVSTOR.sys [2012-12-21 307304]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [2013-01-17 15712]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 29696]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 VGPU;VGPU; [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-20 1255736]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2000-01-01 82560]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2000-01-01 42624]
S0 rtcrfilt64;Realtek Turbo Mode Filter Driver;c:\windows\system32\DRIVERS\rtcrfilt64.sys [2000-01-01 19600]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-12-20 30568]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-26 283200]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-10-08 211344]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-10-08 149592]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 239616]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe [2012-06-11 193616]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2012-11-26 1329304]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2012-10-08 138744]
S2 Micro Star SCM;Micro Star SCM;c:\program files (x86)\S-Bar\MSIService.exe [2012-11-09 160768]
S2 MSI_ComCenService;MSI_ComCenService;c:\msi\MSI SUITE\ControlCenter\ComCenService.exe [2012-04-17 75280]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\ChargeService.exe [2012-10-25 143416]
S2 MSIFileSyncMonitor;MSI FileSync Monitor;c:\msi\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe [2012-04-23 10752]
S2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4;C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N postgresql-8.4 -D C:/Program Files (x86)/PostgreSQL/8.4/data -w [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360]
S2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-12-20 711112]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2011-06-02 142632]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
S3 NTIOLib_1_0_D;NTIOLib_1_0_D;c:\msi\MSI SUITE\ControlCenter\NTIOLib_X64.sys [2011-09-20 11080]
S3 NTIOLib_1_1_S;NTIOLib_1_1_S;c:\msi\MSI SUITE\Super-Charger\NTIOLib_X64.sys [2012-10-25 13368]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-02-16 676968]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2010-12-03 1105000]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2000-01-01 56448]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - NTIOLIB_1_0_D
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-13 15:42 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-21 18:11]
.
2013-01-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-20 13:33]
.
2013-01-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-20 13:33]
.
2013-01-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1793979335-1146116094-474527189-1000Core.job
- c:\users\Chorche\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-04 13:33]
.
2013-01-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1793979335-1146116094-474527189-1000UA.job
- c:\users\Chorche\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-04 13:33]
.
2013-01-17 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files (x86)\SlimDrivers\SlimDrivers.exe [2012-12-16 11:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-11-08 15:58 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-11-08 15:58 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-11-08 15:58 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-11-08 15:58 755224 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-09-25 13196432]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-11-26 6325936]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.0.0.138
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-WinUpdate - c:\users\Chorche\AppData\Roaming\severpoker.exe
HKLM_Wow6432Node-ActiveSetup-{02AEB8E2-DAEE-69EA-CDAE-EDBCE1B2CCAA} - c:\users\Chorche\AppData\Roaming\severpoker.exe
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.4]
"ImagePath"="C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"C:/Program Files (x86)/PostgreSQL/8.4/data\" -w"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-8.4]
"ImagePath"="C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"C:/Program Files (x86)/PostgreSQL/8.4/data\" -w"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\RNG*]
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\msi\MSI SUITE\Super-Charger\SuiteChargeService.exe
c:\program files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\program files (x86)\PostgreSQL\8.4\bin\postgres.exe
c:\users\Chorche\Downloads\CrystalDiskInfo5_2_1\DiskInfo.exe
.
**************************************************************************
.
Celkový čas: 2013-01-17 21:44:36 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-17 20:44
.
Před spuštěním: Volných bajtů: 27 703 681 024
Po spuštění: Volných bajtů: 27 217 666 048
.
- - End Of File - - 88F876DF49D89337C70CBCA4B502A20F

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Přes Odebrat programy odinstaluj vše co najdeš od AVG

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Pak mi sem dej tentokrát aktuální log.txt z Rsit.

tenhle log posilam jeste predtim nez provedu t_cleaner po zaslu ten aktualni...diky
Logfile of random's system information tool 1.09 (written by random/random)
Run by Chorche at 2013-01-19 05:08:09
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 29 GB (24%) free of 120 GB
Total RAM: 1644 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:08:21, on 19.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe
C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe
C:\Users\Chorche\Downloads\CrystalDiskInfo5_2_1\DiskInfo.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Chorche.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Cinema ProII AP] C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe
O4 - HKLM\..\Run: [Cinema ProII Controler] C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-21-1793979335-1146116094-474527189-1007\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-1793979335-1146116094-474527189-1007\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: postgresql-8.4 - PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7761 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\alg.exe
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k apphost
C:\Windows\system32\CISVC.EXE
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\ChargeService.exe"
"C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe" runservice -N "postgresql-8.4" -D "C:/Program Files (x86)/PostgreSQL/8.4/data" -w
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:/Program Files (x86)/PostgreSQL/8.4/bin/postgres.exe" -D "C:/Program Files (x86)/PostgreSQL/8.4/data"
\??\C:\Windows\system32\conhost.exe "-800962682364460361-30514763-714902693-48860532-5499332745584052821002956782
C:\Windows\system32\svchost.exe -k imgsvc
"C:/Program Files (x86)/PostgreSQL/8.4/bin/postgres.exe" "--forkboot" "828" "-x3"
"C:/Program Files (x86)/PostgreSQL/8.4/bin/postgres.exe" "--forkboot" "820" "-x4"
"C:/Program Files (x86)/PostgreSQL/8.4/bin/postgres.exe" "--forkavlauncher" "828"
"C:/Program Files (x86)/PostgreSQL/8.4/bin/postgres.exe" "--forkcol" "820"
C:\Windows\System32\svchost.exe -k secsvcs
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe"
"C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Users\Chorche\Downloads\CrystalDiskInfo5_2_1\DiskInfo.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\WmiApSrv.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=EnableStage3D/enabled/ForceCompositingMode/enabled/GlobalSdch/global_enable_sdch/InfiniteCache/No/NewTabButton/default/OmniboxDisallowInlineHQP/Standard/OmniboxHUPCreateShorterMatch/Standard/OmniboxHUPCullRedirects/Standard/OmniboxSearchSuggestTrialStarted2012Q4/6/OneClickSignIn/BlueOnWhite/Prerender/PrerenderEnabled/SBInterstitial/V2/SpdyCwnd/cwndMin10/SpeculativePrefetching/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --disable-accelerated-2d-canvas --channel="3920.0.1477037023\585479944" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3920.1.1668246720\610370272" --supports-dual-gpus=false --skip-gpu-full-info-collection --gpu-vendor-id=0x1002 --gpu-device-id=0x9803 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=9.2.0.0 --ignored=" --type=renderer " /prefetch:12
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CacheSensitivityAnalysis/No/EnableStage3D/enabled/ForceCompositingMode/enabled/GlobalSdch/global_enable_sdch/InfiniteCache/No/NewTabButton/default/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/Standard/OmniboxHUPCreateShorterMatch/Standard/OmniboxHUPCullRedirects/Standard/OmniboxSearchSuggestTrialStarted2012Q4/6/OneClickSignIn/BlueOnWhite/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SBInterstitial/V2/SpdyCwnd/cwndMin10/SpeculativePrefetching/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --disable-accelerated-2d-canvas --channel="3920.4.1676945940\1328527817" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3920.5.1076106612\605025333" --lang=cs --ignored=" --type=renderer " /prefetch:13
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe28_ Global\UsGthrCtrlFltPipeMssGthrPipe28 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Chorche\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1793979335-1146116094-474527189-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1793979335-1146116094-474527189-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-01-10 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-01-10 170416]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-12-20 11697768]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-09-01 2776872]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2012-11-26 6325936]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live Update 5]
C:\Program Files (x86)\MSI\Live Update 5\LU5.exe [2012-12-26 1965192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSI Suite]
C:\MSI\MSI SUITE\StartMSISuite.exe [2012-07-05 576056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_ssl_v12]
C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe / /PROMPT /CMPID=roc_ssl_v12 []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-04-14 113288]
"Super-Charger"=C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\Super-Charger.exe [2012-10-23 502328]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"Cinema ProII AP"=C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe [2011-01-25 200192]
"Cinema ProII Controler"=C:\Program Files (x86)\MSI\Cinema ProII\Cinema ProII Controler.exe [2010-06-25 1689600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoThumbnailCache"=1
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Chorche\AppData\Roaming\severpoker.exe"="C:\Users\Chorche\AppData\Roaming\severpoker.exe:*:Enabled:Windows Messanger"
"C:\Users\Chorche\AppData\Local\Temp\Rar$EX00.938\Holdem Manager 2 Crack Working.exe"="C:\Users\Chorche\AppData\Local\Temp\Rar$EX00.938\Holdem Manager 2 Crack Working.exe:*:Enabled:Windows Messanger"
"C:\Users\Chorche\Downloads\Holdem Manager 2 Crack Working\Holdem Manager 2 Crack Working.exe"="C:\Users\Chorche\Downloads\Holdem Manager 2 Crack Working\Holdem Manager 2 Crack Working.exe:*:Enabled:Windows Messanger"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2021-01-06 01:58:57 ----ASH---- C:\WinPEpge.sys
2013-01-19 05:08:10 ----D---- C:\Program Files\trend micro
2013-01-19 05:08:09 ----D---- C:\rsit
2013-01-19 01:49:50 ----A---- C:\Windows\system32\drivers\rtsuvstor.sys
2013-01-19 01:44:54 ----D---- C:\Windows\Minidump
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RtkHDM64.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RTEEP64H.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RTEEL64H.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RTEEG64H.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RTEED64H.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RHDMEx64.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\RHCoInst64.dll
2013-01-19 01:32:20 ----A---- C:\Windows\system32\drivers\RtHDMIVX.sys
2013-01-19 01:32:19 ----A---- C:\Windows\system32\RH3DHT64.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\RH3DAA64.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\R4EEP64H.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\R4EEL64H.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\R4EEG64H.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\R4EED64H.dll
2013-01-19 01:32:19 ----A---- C:\Windows\system32\R4EEA64H.dll
2013-01-19 00:04:12 ----D---- C:\Program Files (x86)\Driver-Soft
2013-01-18 14:14:14 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2013-01-18 14:14:14 ----A---- C:\Windows\system32\iisRtl.dll
2013-01-18 14:14:14 ----A---- C:\Windows\system32\admwprox.dll
2013-01-18 14:14:13 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2013-01-18 14:14:13 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2013-01-18 14:14:13 ----A---- C:\Windows\system32\iisreset.exe
2013-01-18 14:14:13 ----A---- C:\Windows\system32\ahadmin.dll
2013-01-18 14:14:12 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2013-01-18 14:14:12 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2013-01-18 14:14:12 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2013-01-18 14:14:12 ----A---- C:\Windows\system32\wamregps.dll
2013-01-18 14:14:12 ----A---- C:\Windows\system32\iisrstap.dll
2013-01-18 14:01:28 ----D---- C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
2013-01-18 13:57:07 ----D---- C:\ATI
2013-01-18 13:26:31 ----D---- C:\ProgramData\DriverGenius
2013-01-18 12:42:34 ----D---- C:\ProgramData\SuperOvladac
2013-01-18 01:47:06 ----D---- C:\inetpub
2013-01-17 21:53:40 ----A---- C:\log.txt
2013-01-17 21:44:37 ----A---- C:\ComboFix.txt
2013-01-17 21:39:20 ----SHD---- C:\$RECYCLE.BIN
2013-01-17 21:31:45 ----D---- C:\Windows\temp
2013-01-17 19:12:26 ----D---- C:\ComboFix
2013-01-17 12:22:56 ----D---- C:\HM2Archive
2013-01-17 10:18:55 ----D---- C:\ProgramData\ESET
2013-01-17 10:18:55 ----D---- C:\Program Files\ESET
2013-01-17 07:58:32 ----A---- C:\blitzerr.txt
2013-01-17 07:54:29 ----D---- C:\Users\Chorche\AppData\Roaming\HEM Data
2013-01-17 07:35:59 ----A---- C:\Program Files (x86)\hminstalllog.txt
2013-01-17 07:33:37 ----D---- C:\Program Files (x86)\RVG Software
2013-01-17 05:31:13 ----A---- C:\Windows\WORDPAD.INI
2013-01-17 04:35:32 ----D---- C:\ProgramData\XHEO INC
2013-01-17 04:34:33 ----D---- C:\Users\Chorche\AppData\Roaming\HoldemManager
2013-01-17 04:30:22 ----D---- C:\Program Files\Holdem Manager 2
2013-01-16 06:32:56 ----D---- C:\Program Files (x86)\The KMPlayer1431
2013-01-15 20:22:36 ----D---- C:\Hand History
2013-01-15 20:15:01 ----A---- C:\Windows\HMHud.INI
2013-01-15 19:27:39 ----A---- C:\Windows\zip.exe
2013-01-15 19:27:39 ----A---- C:\Windows\SWSC.exe
2013-01-15 19:27:39 ----A---- C:\Windows\SWREG.exe
2013-01-15 19:27:39 ----A---- C:\Windows\sed.exe
2013-01-15 19:27:39 ----A---- C:\Windows\PEV.exe
2013-01-15 19:27:39 ----A---- C:\Windows\NIRCMD.exe
2013-01-15 19:27:39 ----A---- C:\Windows\MBR.exe
2013-01-15 19:27:39 ----A---- C:\Windows\grep.exe
2013-01-15 19:26:02 ----D---- C:\Qoobox
2013-01-15 19:24:40 ----D---- C:\Windows\erdnt
2013-01-15 18:29:31 ----D---- C:\Program Files (x86)\PostgreSQL
2013-01-15 18:22:13 ----D---- C:\Program Files (x86)\PSQLINSTALL
2013-01-10 15:48:03 ----D---- C:\ProgramData\NVIDIA
2013-01-10 15:44:40 ----D---- C:\Windows\Sun
2013-01-10 15:03:02 ----D---- C:\ProgramData\Sun
2013-01-10 15:02:50 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-01-10 15:02:50 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-01-10 15:02:50 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-01-10 15:02:19 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-01-10 15:02:19 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-01-10 15:02:19 ----A---- C:\Windows\SYSWOW64\java.exe
2013-01-10 15:01:25 ----D---- C:\Program Files (x86)\Java
2013-01-10 03:37:44 ----D---- C:\$WINDOWS.~BT
2013-01-09 19:51:08 ----D---- C:\ProgramData\Uniblue
2013-01-09 10:32:21 ----D---- C:\Users\Chorche\AppData\Roaming\FixCleaner
2013-01-09 10:32:06 ----D---- C:\Program Files (x86)\FixCleaner
2013-01-09 07:43:43 ----A---- C:\Windows\system32\drivers\rtcrfilt64.sys
2013-01-09 07:43:42 ----A---- C:\Windows\system32\rtcrco.dll
2013-01-09 07:25:54 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2013-01-09 07:25:50 ----DC---- C:\Windows\system32\DRVSTORE
2013-01-09 07:20:05 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2013-01-09 07:20:05 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2013-01-09 06:44:29 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2013-01-09 06:41:21 ----D---- C:\Program Files (x86)\SlimDrivers
2013-01-09 06:37:24 ----D---- C:\Users\Chorche\AppData\Roaming\Media Player Classic
2013-01-09 05:48:45 ----D---- C:\Program Files (x86)\Secunia
2013-01-09 01:23:50 ----D---- C:\Users\Chorche\AppData\Roaming\Malwarebytes
2013-01-09 01:22:45 ----D---- C:\ProgramData\Malwarebytes
2013-01-09 01:22:37 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-01-09 01:22:37 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-01-09 00:42:18 ----D---- C:\Users\Chorche\AppData\Roaming\InstallShield
2013-01-09 00:39:47 ----D---- C:\Program Files\CCleaner
2013-01-09 00:34:03 ----D---- C:\Users\Chorche\AppData\Roaming\Trend Micro
2013-01-09 00:24:38 ----A---- C:\Windows\system32\win32spl.dll
2013-01-09 00:24:37 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-09 00:24:34 ----A---- C:\Windows\system32\taskhost.exe
2013-01-09 00:24:27 ----A---- C:\Windows\system32\msxml6.dll
2013-01-09 00:24:24 ----A---- C:\Windows\system32\msxml3.dll
2013-01-09 00:24:22 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-09 00:24:20 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-09 00:23:19 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-09 00:23:19 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-09 00:23:13 ----A---- C:\Windows\system32\usp10.dll
2013-01-09 00:23:12 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-09 00:22:39 ----A---- C:\Windows\system32\Wpc.dll
2013-01-09 00:22:38 ----A---- C:\Windows\system32\gameux.dll
2013-01-09 00:22:37 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-09 00:22:35 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-09 00:20:01 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-09 00:19:59 ----A---- C:\Windows\system32\kernel32.dll
2013-01-09 00:19:58 ----A---- C:\Windows\system32\wow64win.dll
2013-01-09 00:19:57 ----A---- C:\Windows\system32\winsrv.dll
2013-01-09 00:19:57 ----A---- C:\Windows\system32\conhost.exe
2013-01-09 00:19:54 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-09 00:19:53 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-09 00:19:49 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-09 00:19:48 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-09 00:19:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-09 00:19:47 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-09 00:19:47 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-09 00:19:46 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-09 00:19:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-09 00:19:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-09 00:19:45 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-09 00:19:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-09 00:19:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-09 00:19:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-09 00:19:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-09 00:19:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-09 00:19:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-09 00:19:42 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-09 00:19:42 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-09 00:19:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-09 00:19:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-09 00:19:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-09 00:19:40 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-09 00:19:40 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-09 00:19:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-09 00:19:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-09 00:19:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-09 00:19:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-09 00:19:38 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-09 00:19:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-09 00:19:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-09 00:19:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-09 00:19:31 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-09 00:19:31 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-09 00:19:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-09 00:19:30 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-09 00:19:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-09 00:19:29 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-09 00:19:29 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-09 00:19:29 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-09 00:19:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-09 00:19:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-09 00:19:27 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-09 00:19:27 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-09 00:19:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-09 00:19:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-09 00:19:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-09 00:19:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-09 00:19:25 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-09 00:19:24 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-09 00:19:24 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-09 00:19:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-09 00:19:23 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-09 00:19:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-09 00:19:21 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-09 00:19:20 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-09 00:19:20 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-09 00:19:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-09 00:19:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-09 00:19:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-09 00:19:06 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-09 00:19:05 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-09 00:19:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-09 00:19:03 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-09 00:19:03 ----A---- C:\Windows\system32\wow64.dll
2013-01-09 00:19:02 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-09 00:17:04 ----A---- C:\Windows\system32\win32k.sys
2013-01-05 00:49:48 ----D---- C:\Users\Chorche\AppData\Roaming\Mozilla
2013-01-04 14:21:41 ----D---- C:\Users\Chorche\AppData\Roaming\WinRAR
2013-01-04 14:20:03 ----D---- C:\Program Files\WinRAR
2013-01-04 00:10:25 ----D---- C:\Users\Chorche\AppData\Roaming\MSI
2013-01-03 21:52:19 ----D---- C:\Program Files (x86)\Esl
2013-01-03 21:52:16 ----D---- C:\Program Files (x86)\Resource
2013-01-03 21:52:02 ----D---- C:\Program Files (x86)\Setup Files
2013-01-03 21:52:02 ----D---- C:\Program Files (x86)\Reader
2013-01-03 17:54:01 ----D---- C:\Program Files (x86)\uTorrent
2013-01-02 19:43:07 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-12-30 14:26:08 ----D---- C:\Program Files (x86)\Winamp Detect
2012-12-30 14:22:20 ----D---- C:\Users\Chorche\AppData\Roaming\OpenCandy
2012-12-30 14:22:19 ----D---- C:\Users\Chorche\AppData\Roaming\Winamp
2012-12-30 14:22:19 ----D---- C:\Program Files (x86)\Winamp
2012-12-27 18:06:49 ----D---- C:\Program Files (x86)\Full Tilt Poker
2012-12-27 17:11:11 ----D---- C:\ProgramData\Adobe
2012-12-27 00:26:30 ----A---- C:\Windows\SYSWOW64\drivers\CDDRV.sys
2012-12-26 19:37:37 ----D---- C:\Users\Chorche\AppData\Roaming\DAEMON Tools Lite
2012-12-26 19:37:35 ----D---- C:\ProgramData\DAEMON Tools Lite
2012-12-25 06:47:08 ----D---- C:\Program Files (x86)\Mp3 Knife
2012-12-24 07:18:46 ----D---- C:\Users\Chorche\AppData\Roaming\Google
2012-12-24 06:46:13 ----D---- C:\ProgramData\boost_interprocess
2012-12-24 06:03:48 ----D---- C:\MSI
2012-12-24 06:02:38 ----A---- C:\Windows\acpimof.dll
2012-12-24 05:57:10 ----D---- C:\SuperChargerProfile
2012-12-24 05:53:29 ----D---- C:\Program Files\Google
2012-12-24 05:51:50 ----D---- C:\ProgramData\Trend Micro
2012-12-24 05:39:15 ----A---- C:\Windows\system32\RtNicProp64.dll
2012-12-24 05:39:15 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2012-12-24 05:35:54 ----A---- C:\Windows\system32\tosade.dll
2012-12-24 05:35:54 ----A---- C:\Windows\system32\tepeqapo64.dll
2012-12-24 05:35:54 ----A---- C:\Windows\system32\tadefxapo264.dll
2012-12-24 05:35:54 ----A---- C:\Windows\system32\tadefxapo.dll
2012-12-24 05:35:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2012-12-24 05:35:43 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-12-24 05:35:42 ----A---- C:\Windows\system32\RCoInstII64.dll
2012-12-24 05:35:25 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2012-12-24 03:12:53 ----D---- C:\Users\Chorche\AppData\Roaming\Nitro PDF
2012-12-23 06:38:11 ----D---- C:\Users\Chorche\AppData\Roaming\Adobe
2012-12-21 05:20:52 ----D---- C:\Users\Chorche\AppData\Roaming\Macromedia
2012-12-21 04:48:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-12-21 04:48:23 ----D---- C:\Windows\SYSWOW64\Macromed
2012-12-21 04:48:17 ----D---- C:\Windows\system32\Macromed
2012-12-21 01:06:20 ----D---- C:\ProgramData\ATI
2012-12-21 00:53:15 ----D---- C:\Program Files (x86)\PokerStars
2012-12-21 00:21:52 ----D---- C:\ProgramData\AMD
2012-12-21 00:21:44 ----D---- C:\Program Files (x86)\AMD AVT
2012-12-21 00:21:18 ----D---- C:\Program Files (x86)\AMD APP
2012-12-21 00:10:36 ----D---- C:\AMD
2012-12-20 21:45:54 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-20 21:45:54 ----A---- C:\Windows\system32\atmlib.dll
2012-12-20 21:45:52 ----A---- C:\Windows\system32\atmfd.dll
2012-12-20 21:45:51 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-20 20:03:37 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2012-12-20 20:03:37 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2012-12-20 20:03:36 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2012-12-20 20:03:24 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2012-12-20 20:03:24 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2012-12-20 20:03:24 ----A---- C:\Windows\system32\drivers\terminpt.sys
2012-12-20 20:03:24 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2012-12-20 20:03:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2012-12-20 20:03:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2012-12-20 20:03:09 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2012-12-20 20:03:09 ----A---- C:\Windows\system32\wksprtPS.dll
2012-12-20 20:03:09 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2012-12-20 20:03:09 ----A---- C:\Windows\system32\tsgqec.dll
2012-12-20 20:03:08 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2012-12-20 20:03:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2012-12-20 20:03:08 ----A---- C:\Windows\system32\aaclient.dll
2012-12-20 20:03:07 ----A---- C:\Windows\system32\TSWbPrxy.exe
2012-12-20 20:03:07 ----A---- C:\Windows\system32\rdpudd.dll
2012-12-20 20:03:07 ----A---- C:\Windows\system32\rdpendp_winip.dll
2012-12-20 20:03:07 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2012-12-20 20:03:06 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2012-12-20 20:03:06 ----A---- C:\Windows\system32\wksprt.exe
2012-12-20 20:03:05 ----A---- C:\Windows\system32\rdpcorets.dll
2012-12-20 20:03:05 ----A---- C:\Windows\system32\mstsc.exe
2012-12-20 20:03:03 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2012-12-20 20:03:02 ----A---- C:\Windows\system32\mstscax.dll
2012-12-20 20:00:48 ----A---- C:\Windows\system32\schannel.dll
2012-12-20 20:00:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-12-20 20:00:47 ----A---- C:\Windows\system32\drivers\cng.sys
2012-12-20 20:00:46 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-12-20 20:00:44 ----A---- C:\Windows\system32\lsasrv.dll
2012-12-20 20:00:43 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-12-20 20:00:42 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-12-20 20:00:29 ----A---- C:\Windows\system32\FntCache.dll
2012-12-20 20:00:28 ----A---- C:\Windows\system32\d2d1.dll
2012-12-20 20:00:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2012-12-20 20:00:17 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-12-20 20:00:17 ----A---- C:\Windows\system32\qdvd.dll
2012-12-20 19:48:33 ----D---- C:\Windows\SYSWOW64\Wat
2012-12-20 19:48:30 ----D---- C:\Windows\system32\Wat
2012-12-20 19:14:29 ----A---- C:\Windows\system32\aswBoot.exe
2012-12-20 19:11:58 ----D---- C:\ProgramData\AVAST Software
2012-12-20 19:11:58 ----D---- C:\Program Files\AVAST Software
2012-12-20 18:19:39 ----D---- C:\Windows\system32\appmgmt
2012-12-20 17:36:03 ----A---- C:\ProgramData\CameraRecorder.ini
2012-12-20 17:33:45 ----D---- C:\Program Files\Elantech
2012-12-20 17:33:13 ----D---- C:\Windows\SYSWOW64\sda
2012-12-20 17:31:27 ----A---- C:\Windows\system32\drivers\diskperf64.sys
2012-12-20 17:30:43 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-12-20 17:29:23 ----D---- C:\Windows\system32\2C0A
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0C0A
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0C04
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0816
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0804
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0424
2012-12-20 17:29:23 ----D---- C:\Windows\system32\041F
2012-12-20 17:29:23 ----D---- C:\Windows\system32\041E
2012-12-20 17:29:23 ----D---- C:\Windows\system32\041D
2012-12-20 17:29:23 ----D---- C:\Windows\system32\041B
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0419
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0416
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0415
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0414
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0413
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0412
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0411
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0410
2012-12-20 17:29:23 ----D---- C:\Windows\system32\040E
2012-12-20 17:29:23 ----D---- C:\Windows\system32\040D
2012-12-20 17:29:23 ----D---- C:\Windows\system32\040C
2012-12-20 17:29:23 ----D---- C:\Windows\system32\040B
2012-12-20 17:29:23 ----D---- C:\Windows\system32\040A
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0408
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0407
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0406
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0405
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0404
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0401
2012-12-20 17:29:13 ----D---- C:\Program Files (x86)\Renesas Electronics
2012-12-20 17:28:17 ----D---- C:\ProgramData\Downloaded Installations
2012-12-20 17:11:51 ----D---- C:\Windows\system32\SRSLabs
2012-12-20 17:11:45 ----D---- C:\Program Files\Realtek
2012-12-20 17:11:42 ----D---- C:\Windows\SYSWOW64\RTCOM
2012-12-20 17:08:45 ----A---- C:\Windows\system32\RtPgEx64.dll
2012-12-20 17:08:45 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2012-12-20 17:08:43 ----A---- C:\Windows\system32\RtkCfg64.dll
2012-12-20 17:08:43 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2012-12-20 17:08:42 ----A---- C:\Windows\system32\RtkAPO64.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RtkApi64.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RTEEP64A.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RTEEL64A.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RTEEG64A.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RTEED64A.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RTCOM64.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RP3DHT64.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RP3DAA64.dll
2012-12-20 17:08:41 ----A---- C:\Windows\system32\RCoInst64.dll
2012-12-20 17:08:35 ----A---- C:\Windows\system32\FMAPO64.dll
2012-12-20 17:08:33 ----D---- C:\Program Files (x86)\Realtek
2012-12-20 17:08:33 ----A---- C:\Windows\system32\AERTAR64.dll
2012-12-20 17:08:33 ----A---- C:\Windows\system32\AERTAC64.dll
2012-12-20 17:08:29 ----HD---- C:\Program Files (x86)\Temp
2012-12-20 17:08:27 ----A---- C:\Windows\RtlExUpd.dll
2012-12-20 16:21:52 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-12-20 16:21:52 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-12-20 16:21:52 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-12-20 16:21:52 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-12-20 16:21:52 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-12-20 16:21:51 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-12-20 16:21:51 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-12-20 16:21:39 ----A---- C:\Windows\system32\fsutil.exe
2012-12-20 16:21:39 ----A---- C:\Windows\system32\esent.dll
2012-12-20 16:21:39 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-12-20 16:21:38 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2012-12-20 16:21:38 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\storport.sys
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-12-20 16:21:38 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-12-20 16:14:43 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2012-12-20 16:12:46 ----D---- C:\Users\Chorche\AppData\Roaming\ATI
2012-12-20 16:12:27 ----D---- C:\Program Files\Common Files\ATI Technologies
2012-12-20 16:10:03 ----D---- C:\Program Files (x86)\ATI Technologies
2012-12-20 16:09:25 ----D---- C:\Program Files\ATI Technologies
2012-12-20 16:09:23 ----D---- C:\Program Files\ATI
2012-12-20 16:03:50 ----D---- C:\Program Files (x86)\MSI
2012-12-20 15:32:34 ----D---- C:\Program Files (x86)\Microsoft
2012-12-20 15:32:02 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-12-20 15:32:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-12-20 15:32:02 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-12-20 15:32:02 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-12-20 15:31:59 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-12-20 15:31:59 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-12-20 15:31:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-12-20 15:31:58 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-12-20 15:31:57 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-12-20 15:31:56 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-12-20 15:31:56 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-12-20 15:31:55 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-12-20 15:31:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-12-20 15:31:55 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-12-20 15:31:55 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-12-20 15:31:54 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2012-12-20 15:31:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-12-20 15:31:54 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-12-20 15:31:54 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-12-20 15:31:52 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-12-20 15:31:52 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-12-20 15:31:51 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-12-20 15:31:51 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-12-20 15:31:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-12-20 15:31:50 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-12-20 15:31:49 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-12-20 15:31:48 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-12-20 15:31:48 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2012-12-20 15:31:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2012-12-20 15:31:48 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-12-20 15:31:48 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-12-20 15:31:48 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-12-20 15:31:46 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2012-12-20 15:31:46 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-12-20 15:31:45 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2012-12-20 15:31:45 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-12-20 15:31:45 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-12-20 15:31:45 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-12-20 15:31:44 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2012-12-20 15:31:44 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2012-12-20 15:31:44 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-12-20 15:31:44 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-12-20 15:31:43 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-12-20 15:31:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-12-20 15:31:43 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-12-20 15:31:43 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-12-20 15:31:42 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-12-20 15:31:42 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-12-20 15:31:41 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-12-20 15:31:41 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-12-20 15:31:41 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-12-20 15:31:41 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-12-20 15:31:41 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-12-20 15:31:41 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-12-20 15:31:40 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-12-20 15:31:40 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-12-20 15:31:39 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-12-20 15:31:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-12-20 15:31:39 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-12-20 15:31:39 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-12-20 15:31:38 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-12-20 15:31:38 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-12-20 15:31:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-12-20 15:31:38 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-12-20 15:31:38 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-12-20 15:31:38 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-12-20 15:31:37 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-12-20 15:31:37 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-12-20 15:31:35 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-12-20 15:31:35 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-12-20 15:31:35 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-12-20 15:31:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-12-20 15:31:35 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-12-20 15:31:35 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-12-20 15:31:35 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-12-20 15:31:35 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-12-20 15:31:34 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-12-20 15:31:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-12-20 15:31:34 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-12-20 15:31:34 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-12-20 15:31:33 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-12-20 15:31:33 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-12-20 15:31:31 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-12-20 15:31:31 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-12-20 15:31:31 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-12-20 15:31:31 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-12-20 15:31:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-12-20 15:31:30 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-12-20 15:31:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-12-20 15:31:30 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-12-20 15:31:30 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-12-20 15:31:30 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-12-20 15:31:29 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-12-20 15:31:29 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-12-20 15:31:28 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-12-20 15:31:28 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-12-20 15:31:27 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-12-20 15:31:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-12-20 15:31:27 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-12-20 15:31:27 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-12-20 15:31:26 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-12-20 15:31:26 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-12-20 15:31:25 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-12-20 15:31:25 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-12-20 15:31:24 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-12-20 15:31:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-12-20 15:31:24 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-12-20 15:31:24 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-12-20 15:31:23 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-12-20 15:31:23 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-12-20 15:31:22 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-12-20 15:31:22 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-12-20 15:31:22 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-12-20 15:31:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-12-20 15:31:22 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-12-20 15:31:22 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-12-20 15:31:22 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-12-20 15:31:22 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-12-20 15:31:21 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-12-20 15:31:21 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-12-20 15:31:21 ----A---- C:\Windows\system32\xinput1_3.dll
2012-12-20 15:31:21 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-12-20 15:31:20 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-12-20 15:31:20 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-12-20 15:31:19 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-12-20 15:31:19 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-12-20 15:31:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-12-20 15:31:19 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-12-20 15:31:19 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-12-20 15:31:19 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-12-20 15:31:17 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2012-12-20 15:31:17 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-12-20 15:31:13 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2012-12-20 15:31:13 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2012-12-20 15:31:13 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-12-20 15:31:13 ----A---- C:\Windows\system32\d3dx10.dll
2012-12-20 15:31:12 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2012-12-20 15:31:12 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-12-20 15:31:08 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-12-20 15:31:08 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-12-20 15:31:08 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-12-20 15:31:08 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-12-20 15:31:06 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-12-20 15:31:06 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-12-20 15:31:05 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-12-20 15:31:05 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-12-20 15:31:04 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-12-20 15:31:04 ----A---- C:\Windows\system32\xinput1_2.dll
2012-12-20 15:31:02 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-12-20 15:31:02 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-12-20 15:31:02 ----A---- C:\Windows\system32\xinput1_1.dll
2012-12-20 15:31:02 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-12-20 15:31:01 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-12-20 15:31:01 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-12-20 15:30:53 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-12-20 15:30:53 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-12-20 15:30:51 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-12-20 15:30:51 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-12-20 15:30:51 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-12-20 15:30:51 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-12-20 15:30:50 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-12-20 15:30:50 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-12-20 15:30:48 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-12-20 15:30:48 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-12-20 15:30:47 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-12-20 15:30:47 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-12-20 15:30:47 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-12-20 15:30:47 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-12-20 15:30:46 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-12-20 15:30:46 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-12-20 15:30:45 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-12-20 15:30:45 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-12-20 15:24:46 ----A---- C:\Windows\SYSWOW64\MRT.exe
2012-12-20 15:23:23 ----D---- C:\Windows\SYSWOW64\directx
2012-12-20 14:54:48 ----HD---- C:\ProgramData\Common Files
2012-12-20 14:35:00 ----D---- C:\Program Files\Microsoft Silverlight
2012-12-20 14:35:00 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-12-20 14:33:33 ----D---- C:\Program Files (x86)\Google
2012-12-20 13:04:10 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-20 13:04:10 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-20 13:04:10 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-20 12:58:26 ----A---- C:\Windows\system32\MRT.exe
2012-12-20 12:53:50 ----A---- C:\Windows\system32\browserchoice.exe
2012-12-20 12:44:48 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-20 12:44:47 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-20 12:44:47 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-20 12:44:46 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-20 12:44:46 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-20 12:44:45 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-20 12:44:45 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-20 12:41:16 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-12-20 12:41:16 ----A---- C:\Windows\system32\imagehlp.dll
2012-12-20 12:41:16 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-12-20 12:41:15 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-12-20 12:41:15 ----A---- C:\Windows\system32\wmi.dll
2012-12-20 12:35:08 ----A---- C:\Windows\system32\shell32.dll
2012-12-20 12:35:07 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-12-20 12:33:52 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-12-20 12:33:50 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-12-20 12:33:49 ----A---- C:\Windows\system32\drivers\rndismpx.sys
2012-12-20 12:33:49 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-12-20 12:33:22 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-20 12:33:22 ----A---- C:\Windows\system32\tzres.dll
2012-12-20 12:32:57 ----A---- C:\Windows\SYSWOW64\sbe.dll
2012-12-20 12:32:57 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2012-12-20 12:32:57 ----A---- C:\Windows\system32\sbe.dll
2012-12-20 12:32:57 ----A---- C:\Windows\system32\CPFilters.dll
2012-12-20 12:32:43 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2012-12-20 12:32:43 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2012-12-20 12:32:43 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\nlasvc.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\nlaapi.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\netcorehc.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\ncsi.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-12-20 12:32:43 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-12-20 12:32:43 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-12-20 12:32:43 ----A---- C:\Windows\system32\drivers\netio.sys
2012-12-20 12:32:43 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-12-20 12:32:42 ----A---- C:\Windows\SYSWOW64\netevent.dll
2012-12-20 12:32:42 ----A---- C:\Windows\system32\netevent.dll
2012-12-20 12:32:32 ----A---- C:\Windows\system32\sspisrv.dll
2012-12-20 12:32:32 ----A---- C:\Windows\system32\sspicli.dll
2012-12-20 12:32:32 ----A---- C:\Windows\system32\secur32.dll
2012-12-20 12:32:32 ----A---- C:\Windows\system32\lsass.exe
2012-12-20 12:32:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-12-20 12:32:26 ----A---- C:\Windows\system32\dhcpcore6.dll
2012-12-20 12:32:25 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2012-12-20 12:32:25 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2012-12-20 12:32:25 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-12-20 12:32:15 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2012-12-20 12:32:15 ----A---- C:\Windows\system32\poqexec.exe
2012-12-20 12:32:08 ----A---- C:\Windows\system32\mfc42u.dll
2012-12-20 12:32:08 ----A---- C:\Windows\system32\mfc42.dll
2012-12-20 12:32:07 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2012-12-20 12:32:07 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2012-12-20 12:32:00 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-12-20 12:32:00 ----A---- C:\Windows\system32\DWrite.dll
2012-12-20 12:31:57 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2012-12-20 12:31:57 ----A---- C:\Windows\system32\XpsPrint.dll
2012-12-20 12:31:50 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-20 12:31:50 ----A---- C:\Windows\system32\dpnet.dll
2012-12-20 12:31:47 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2012-12-20 12:31:47 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-12-20 12:31:40 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-12-20 12:31:40 ----A---- C:\Windows\system32\rdpwsx.dll
2012-12-20 12:31:40 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-12-20 12:31:13 ----A---- C:\Windows\system32\tquery.dll
2012-12-20 12:31:13 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-12-20 12:31:13 ----A---- C:\Windows\system32\mssrch.dll
2012-12-20 12:31:12 ----A---- C:\Windows\SYSWOW64\tquery.dll
2012-12-20 12:31:12 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2012-12-20 12:31:12 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2012-12-20 12:31:12 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2012-12-20 12:31:12 ----A---- C:\Windows\SYSWOW64\mssph.dll
2012-12-20 12:31:12 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-12-20 12:31:12 ----A---- C:\Windows\system32\mssph.dll
2012-12-20 12:31:11 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2012-12-20 12:31:11 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2012-12-20 12:31:11 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2012-12-20 12:31:11 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2012-12-20 12:31:11 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-12-20 12:31:11 ----A---- C:\Windows\system32\mssvp.dll
2012-12-20 12:31:11 ----A---- C:\Windows\system32\mssphtb.dll
2012-12-20 12:31:11 ----A---- C:\Windows\system32\msscntrs.dll
2012-12-20 12:31:00 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-12-20 12:30:59 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-12-20 12:30:59 ----A---- C:\Windows\system32\drivers\srv.sys
2012-12-20 12:30:47 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-12-20 12:30:47 ----A---- C:\Windows\system32\msxml3r.dll
2012-12-20 12:30:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-12-20 12:30:32 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-12-20 12:30:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-12-20 12:30:23 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-12-20 12:30:23 ----A---- C:\Windows\system32\ntshrui.dll
2012-12-20 12:30:03 ----A---- C:\Windows\SYSWOW64\explorer.exe
2012-12-20 12:30:03 ----A---- C:\Windows\explorer.exe
2012-12-20 12:30:00 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2012-12-20 12:30:00 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2012-12-20 12:30:00 ----A---- C:\Windows\SYSWOW64\devobj.dll
2012-12-20 12:30:00 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2012-12-20 12:30:00 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-12-20 12:29:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-12-20 12:29:56 ----A---- C:\Windows\system32\kerberos.dll
2012-12-20 12:29:51 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-12-20 12:29:37 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-12-20 12:29:37 ----A---- C:\Windows\system32\webio.dll
2012-12-20 12:29:33 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2012-12-20 12:29:33 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\system32\odbctrac.dll
2012-12-20 12:29:33 ----A---- C:\Windows\system32\odbccu32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\system32\odbccr32.dll
2012-12-20 12:29:33 ----A---- C:\Windows\system32\odbccp32.dll
2012-12-20 12:29:29 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-12-20 12:29:29 ----A---- C:\Windows\system32\srcore.dll
2012-12-20 12:29:26 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-12-20 12:29:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-12-20 12:29:23 ----A---- C:\Windows\system32\msi.dll
2012-12-20 12:29:20 ----A---- C:\Windows\system32\csrsrv.dll
2012-12-20 12:29:18 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-12-20 12:29:18 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-12-20 12:29:18 ----A---- C:\Windows\system32\netapi32.dll
2012-12-20 12:29:18 ----A---- C:\Windows\system32\browser.dll
2012-12-20 12:29:18 ----A---- C:\Windows\system32\browcli.dll
2012-12-20 12:29:14 ----A---- C:\Windows\system32\winresume.exe
2012-12-20 12:29:14 ----A---- C:\Windows\system32\winload.exe
2012-12-20 12:29:13 ----A---- C:\Windows\system32\kdusb.dll
2012-12-20 12:29:13 ----A---- C:\Windows\system32\kdcom.dll
2012-12-20 12:29:13 ----A---- C:\Windows\system32\kd1394.dll
2012-12-20 12:29:10 ----A---- C:\Windows\system32\psisdecd.dll
2012-12-20 12:29:09 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2012-12-20 12:29:06 ----A---- C:\Windows\system32\quartz.dll
2012-12-20 12:29:05 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-12-20 12:29:02 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2012-12-20 12:29:02 ----A---- C:\Windows\system32\xmllite.dll
2012-12-20 12:29:00 ----A---- C:\Windows\system32\drivers\afd.sys
2012-12-20 12:28:57 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-12-20 12:28:57 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-12-20 12:28:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-12-20 12:28:54 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2012-12-20 12:28:54 ----A---- C:\Windows\system32\d3d10_1.dll
2012-12-20 12:28:48 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2012-12-20 12:28:48 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2012-12-20 12:28:48 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-12-20 12:28:48 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-12-20 12:28:48 ----A---- C:\Windows\system32\dnsapi.dll
2012-12-20 12:28:46 ----A---- C:\Windows\SYSWOW64\synceng.dll
2012-12-20 12:28:46 ----A---- C:\Windows\system32\synceng.dll
2012-12-20 12:28:44 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-12-20 12:28:41 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2012-12-20 12:28:41 ----A---- C:\Windows\system32\fontsub.dll
2012-12-20 12:28:38 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-12-20 12:28:32 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-12-20 12:28:32 ----A---- C:\Windows\system32\wintrust.dll
2012-12-20 12:28:28 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-12-20 12:28:28 ----A---- C:\Windows\system32\d3d10level9.dll
2012-12-20 12:28:26 ----A---- C:\Windows\system32\profsvc.dll
2012-12-20 12:28:23 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-12-20 12:28:17 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2012-12-20 12:28:17 ----A---- C:\Windows\system32\prevhost.exe
2012-12-20 12:27:50 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-12-20 12:27:49 ----A---- C:\Windows\system32\cdosys.dll
2012-12-20 12:22:02 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-12-20 12:22:02 ----A---- C:\Windows\system32\msvcrt.dll
2012-12-20 12:21:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2012-12-20 12:21:59 ----A---- C:\Windows\system32\inetcomm.dll
2012-12-20 12:12:31 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-12-20 12:12:31 ----A---- C:\Windows\system32\ntdll.dll
2012-12-20 12:10:35 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-12-20 12:10:35 ----A---- C:\Windows\system32\EncDec.dll
2012-12-20 12:10:31 ----A---- C:\Windows\system32\spoolsv.exe
2012-12-20 12:10:31 ----A---- C:\Windows\splwow64.exe
2012-12-20 12:10:27 ----A---- C:\Windows\system32\localspl.dll
2012-12-20 12:10:11 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-12-20 12:10:11 ----A---- C:\Windows\system32\crypt32.dll
2012-12-20 12:10:10 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-12-20 12:10:10 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-12-20 12:10:10 ----A---- C:\Windows\system32\cryptsvc.dll
2012-12-20 12:10:10 ----A---- C:\Windows\system32\cryptnet.dll
2012-12-20 12:09:38 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2012-12-20 12:09:38 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2012-12-20 12:09:38 ----A---- C:\Windows\system32\oleaut32.dll
2012-12-20 12:09:38 ----A---- C:\Windows\system32\oleacc.dll
2012-12-20 12:09:34 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-12-20 12:08:18 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-12-20 12:08:18 ----A---- C:\Windows\system32\packager.dll
2012-12-20 12:04:16 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-12-20 12:04:16 ----A---- C:\Windows\system32\rdpcore.dll
2012-12-20 12:04:15 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-12-20 12:03:35 ----D---- C:\Users\Chorche\AppData\Roaming\uTorrent
2012-12-20 11:28:25 ----D---- C:\Program Files (x86)\Cisco
2012-12-20 11:28:22 ----SHD---- C:\Windows\Installer
2012-12-20 11:27:30 ----A---- C:\Windows\system32\drivers\rtl8192ce.sys
2012-12-20 11:27:13 ----A---- C:\Windows\SYSWOW64\ISSRemoveSP.exe
2012-12-20 11:27:08 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

======List of files/folders modified in the last 1 month======

2021-01-06 17:01:27 ----D---- C:\Windows\system32\LogFiles
2013-01-19 05:08:10 ----RD---- C:\Program Files
2013-01-19 03:54:42 ----D---- C:\Windows\system32\config
2013-01-19 03:15:44 ----RD---- C:\Program Files (x86)
2013-01-19 03:15:44 ----D---- C:\Config.Msi
2013-01-19 03:15:42 ----D---- C:\Windows\SysWOW64
2013-01-19 03:15:16 ----SHD---- C:\System Volume Information
2013-01-19 03:14:17 ----D---- C:\ProgramData
2013-01-19 03:13:01 ----SD---- C:\ProgramData\Microsoft
2013-01-19 03:09:53 ----D---- C:\Windows
2013-01-19 03:05:31 ----D---- C:\Windows\System32
2013-01-19 03:05:15 ----D---- C:\Windows\system32\drivers
2013-01-19 02:33:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-19 02:33:03 ----D---- C:\Windows\inf
2013-01-19 01:50:01 ----D---- C:\Windows\system32\catroot
2013-01-19 01:50:00 ----D---- C:\Windows\system32\DriverStore
2013-01-19 01:41:45 ----D---- C:\Windows\system32\Tasks
2013-01-19 00:48:35 ----D---- C:\Windows\Tasks
2013-01-19 00:48:35 ----D---- C:\Windows\system32\wfp
2013-01-19 00:48:31 ----D---- C:\Windows\system32\wbem
2013-01-19 00:47:45 ----D---- C:\Windows\system32\catroot2
2013-01-19 00:47:44 ----D---- C:\Windows\system32\drivers\UMDF
2013-01-19 00:47:44 ----D---- C:\Windows\system32\CodeIntegrity
2013-01-19 00:47:24 ----D---- C:\Windows\registration
2013-01-19 00:00:06 ----D---- C:\Windows\Logs
2013-01-18 23:21:58 ----D---- C:\Windows\Prefetch
2013-01-18 17:18:10 ----D---- C:\Windows\system32\wdi
2013-01-18 14:26:50 ----D---- C:\Windows\winsxs
2013-01-18 14:25:04 ----D---- C:\Windows\SYSWOW64\migration
2013-01-18 14:25:04 ----D---- C:\Windows\SYSWOW64\inetsrv
2013-01-18 14:25:04 ----D---- C:\Windows\system32\inetsrv
2013-01-18 14:25:03 ----D---- C:\Windows\system32\migration
2013-01-18 06:57:13 ----D---- C:\Windows\rescache
2013-01-18 01:47:12 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-01-18 01:47:09 ----D---- C:\Windows\system32\cs-CZ
2013-01-18 01:42:01 ----D---- C:\Program Files (x86)\Common Files
2013-01-17 21:41:08 ----D---- C:\Windows\SoftwareDistribution
2013-01-17 21:36:47 ----A---- C:\Windows\system.ini
2013-01-17 21:36:23 ----D---- C:\Windows\system32\drivers\etc
2013-01-17 21:11:40 ----D---- C:\Windows\SYSWOW64\drivers
2013-01-17 21:11:40 ----D---- C:\Windows\AppPatch
2013-01-17 09:38:08 ----D---- C:\Windows.old.000
2013-01-15 18:37:58 ----RD---- C:\Users
2013-01-10 17:54:24 ----D---- C:\Windows\Microsoft.NET
2013-01-10 11:58:55 ----D---- C:\Windows\system32\NDF
2013-01-10 08:15:12 ----RSD---- C:\Windows\assembly
2013-01-09 03:54:34 ----D---- C:\Windows\debug
2013-01-05 10:44:55 ----RSD---- C:\Windows\Fonts
2013-01-02 19:30:31 ----D---- C:\Windows\SYSWOW64\en-US
2013-01-02 19:30:30 ----D---- C:\Windows\system32\en-US
2012-12-26 20:12:13 ----SD---- C:\Users\Chorche\AppData\Roaming\Microsoft
2012-12-24 02:11:43 ----D---- C:\Windows\Panther
2012-12-20 22:09:47 ----D---- C:\PerfLogs
2012-12-20 20:24:02 ----D---- C:\Windows\SYSWOW64\wbem
2012-12-20 20:23:59 ----D---- C:\Windows\PolicyDefinitions
2012-12-20 20:23:57 ----D---- C:\Windows\system32\drivers\en-US
2012-12-20 17:29:23 ----D---- C:\Windows\system32\0409
2012-12-20 16:12:27 ----D---- C:\Program Files\Common Files
2012-12-20 16:09:58 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-12-20 13:43:34 ----D---- C:\Program Files\Common Files\System
2012-12-20 13:43:12 ----D---- C:\Windows\ehome
2012-12-20 13:42:44 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-20 13:40:10 ----D---- C:\Windows\system32\Boot
2012-12-20 13:39:04 ----D---- C:\Program Files\Windows Journal
2012-12-20 11:33:08 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-20 11:33:06 ----D---- C:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 82560]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 42624]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 rtcrfilt64;Realtek Turbo Mode Filter Driver; C:\Windows\system32\DRIVERS\rtcrfilt64.sys [2000-01-01 19600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-26 283200]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-10-08 211344]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-10-08 149592]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2012-10-08 138744]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-09-01 197416]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-12-20 2677864]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-12-14 24176]
R3 NTIOLib_1_0_D;NTIOLib_1_0_D; \??\C:\MSI\MSI SUITE\ControlCenter\NTIOLib_X64.sys [2011-09-20 11080]
R3 NTIOLib_1_1_S;NTIOLib_1_1_S; \??\C:\MSI\MSI SUITE\Super-Charger\NTIOLib_X64.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-02-16 676968]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\Windows\system32\DRIVERS\rtl8192Ce.sys [2011-10-06 1163880]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2000-01-01 56448]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 acpials;Filtr zařízení ALS Sensor; C:\Windows\system32\DRIVERS\acpials.sys [2009-07-14 9728]
S3 ATIAVPCI;ATI Unified AVStream service; C:\Windows\system32\DRIVERS\atinavrr.sys [2009-06-10 422656]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CDDRV;CDDRV; C:\Windows\System32\Drivers\CDDRV.sys []
S3 DigiCellDriver;DigiCellDriver; C:\Windows\system32\drivers\DigiCellDriver.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2012-12-20 21712]
S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507; \??\C:\Program Files (x86)\MSI\Live Update 5\msibios64_100507.sys []
S3 NTIOLib_1_0_3;NTIOLib_1_0_3; C:\Windows\system32\drivers\NTIOLib_1_0_3.sys []
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\C:\MSI\MSI SUITE\NTIOLib_X64.sys [2012-03-30 11888]
S3 Ph3xIB64;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RTSUVSTOR.sys [2012-12-21 307304]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2013-01-19 15712]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2009-07-14 19968]
S3 VGPU;VGPU; C:\Windows\system32\drivers\VGPU.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

-----------------EOF-----------------

nevesel se mi cely do zpravy tady je zbytek

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2012-11-26 1329304]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Live Update 5\LU5\DL_FILE\Super-Charger\ChargeService.exe [2012-10-25 143416]
R2 postgresql-8.4;postgresql-8.4 - PostgreSQL Server 8.4; C:/Program Files (x86)/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N postgresql-8.4 -D C:/Program Files (x86)/PostgreSQL/8.4/data -w []
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2012-08-31 201360]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-20 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-09 251400]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-20 116648]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Ještě si tedy počkám na ten log po projetí T-Cleanerem.

VIRY.CZ

zasilam rsit log

zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log

Re: zasilam rsit log