VIRY.CZ

Potřeboval bych jenom preventivně zkontrolovat počítač jestli je vše v pořádku, děkuji.

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16464 BrowserJavaVersion: 10.15.2
Run by Ondra at 22:22:40 on 2013-03-03
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3519.1815 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\PnkBstrA.exe
C:\Program Files\DeviceVM\SmartView\SmartViewService.exe
C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Users\Ondra\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uURLSearchHooks: SearchHook Class: {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} -
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - c:\program files\microsoft office\office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [KiesPreload] c:\program files\samsung\kies\Kies.exe /preload
uRun: [KiesAirMessage] c:\program files\samsung\kies\KiesAirMessage.exe -startup
uRun: [] c:\program files\samsung\kies\external\firmwareupdate\KiesPDLR.exe
uRun: [HydraVisionDesktopManager] "c:\program files\ati technologies\hydravision\HydraDM.exe"
mRun: [HDAudDeck] c:\program files\via\viaudioi\vdeck\VDeck.exe -r
mRun: [CTSyncService] c:\program files\installshield installation information\{f3d9ac82-30f4-4bb9-b9ab-8697637568c1}\AMBSPISyncService.exe /StartRunKey
mRun: [VolPanel] "c:\program files\creative\sb x-fi mb\volume panel\VolPanlu.exe" /r
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [RunDLLEntry] c:\windows\system32\rundll32.exe c:\windows\system32\AmbRunE.dll,RunDLLEntry
mRun: [SmartViewAgent] "c:\program files\devicevm\smartview\SmartViewAgent.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [BCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices
mRun: [KiesTrayAgent] c:\program files\samsung\kies\KiesTrayAgent.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\micros~1\office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\micros~1\office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{C3281B65-813D-4478-981F-36F399742173} : DHCPNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\25.0.1364.97\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-10-30 360392]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2012-11-9 242240]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-12-19 219136]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-10-30 44808]
R2 SmartViewService;SmartView service;c:\program files\devicevm\smartview\SmartViewService.exe [2010-9-2 125216]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2012-11-6 84992]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2012-10-30 189440]
R3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service;c:\program files\common files\creative labs shared\service\XMBLicensing.exe [2012-10-30 79360]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2012-10-30 1086976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-11-9 160944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\common files\creative labs shared\service\AL6Licensing.exe [2012-10-30 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2012-10-30 79360]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-2 14848]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [2012-11-18 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [2012-11-18 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [2012-11-18 136808]
S3 StorSvc;Služba úložiště;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 20992]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2012-11-2 49664]
S3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\wat\WatAdminSvc.exe [2012-10-31 1343400]
.
=============== Created Last 30 ================
.
2013-03-01 18:55:09 6954968 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{65e484c6-45bf-46ac-a4eb-dad0a429ea9b}\mpengine.dll
2013-02-24 15:26:38 -------- d-----w- c:\users\ondra\appdata\roaming\ParetoLogic
2013-02-24 15:26:38 -------- d-----w- c:\users\ondra\appdata\roaming\DriverCure
2013-02-24 15:26:23 -------- d-----w- c:\programdata\ParetoLogic
2013-02-22 17:35:45 -------- d-----w- c:\programdata\REVOLT
2013-02-22 01:18:15 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-13 15:44:35 2347008 ----a-w- c:\windows\system32\win32k.sys
2013-02-13 15:44:26 3967848 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-02-13 15:44:25 3913064 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-02-13 15:44:24 187752 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 15:44:24 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-02-13 15:44:22 169984 ----a-w- c:\windows\system32\winsrv.dll
2013-02-13 00:50:33 -------- d-----w- c:\users\ondra\appdata\local\Babylon
2013-02-13 00:50:25 -------- d-----w- c:\users\ondra\appdata\roaming\Babylon
2013-02-13 00:50:25 -------- d-----w- c:\programdata\Babylon
2013-02-10 01:40:17 -------- d-----w- c:\users\ondra\appdata\roaming\Doublefine
2013-02-10 01:40:11 -------- d-----w- c:\programdata\RELOADED
2013-02-09 21:21:33 -------- d-----w- c:\users\ondra\appdata\local\Darksiders2
2013-02-07 20:43:17 -------- d-----w- c:\users\ondra\appdata\local\EA Games
2013-02-07 12:30:32 -------- d-----w- c:\programdata\Steam
2013-02-06 00:37:25 -------- d-----w- c:\program files\FTL
2013-02-05 18:36:02 -------- d-----w- c:\users\ondra\appdata\roaming\fltk.org
2013-02-05 18:36:02 -------- d-----w- c:\programdata\fltk.org
2013-02-05 18:36:01 -------- d-----w- c:\programdata\Creative Labs
.
==================== Find3M ====================
.
2013-02-22 01:17:54 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-02-22 01:17:54 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-21 22:57:57 139112 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2013-02-21 22:57:41 280792 ----a-w- c:\windows\system32\PnkBstrB.xtr
2013-02-21 22:57:41 280792 ----a-w- c:\windows\system32\PnkBstrB.exe
2013-02-21 22:55:04 281032 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-01-17 00:28:58 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-01-13 21:17:03 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-01-13 21:17:02 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-01-13 21:16:42 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-01-13 21:12:46 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-01-13 21:11:21 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-01-13 21:11:08 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-01-13 21:11:07 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-01-13 21:11:07 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-01-13 20:31:00 1247744 ----a-w- c:\windows\system32\DWrite.dll
2013-01-13 20:30:34 906240 ----a-w- c:\windows\system32\FntCache.dll
2013-01-13 20:22:22 1988096 ----a-w- c:\windows\system32\d3d10warp.dll
2013-01-13 20:20:31 293376 ----a-w- c:\windows\system32\dxgi.dll
2013-01-13 20:09:00 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-01-13 20:08:43 220160 ----a-w- c:\windows\system32\d3d10core.dll
2013-01-13 20:08:35 1504768 ----a-w- c:\windows\system32\d3d11.dll
2013-01-13 19:54:01 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2013-01-13 19:53:58 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-01-13 19:53:14 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2013-01-13 19:48:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2013-01-13 19:46:25 1080832 ----a-w- c:\windows\system32\d3d10.dll
2013-01-13 19:43:21 1230336 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-01-13 19:37:57 3419136 ----a-w- c:\windows\system32\d2d1.dll
2013-01-13 19:02:06 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-01-13 18:34:58 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-01-13 17:26:42 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
2013-01-08 22:11:21 1800704 ----a-w- c:\windows\system32\jscript9.dll
2013-01-08 22:03:20 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-01-08 22:03:12 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2013-01-08 21:59:02 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2013-01-08 21:58:29 420864 ----a-w- c:\windows\system32\vbscript.dll
2013-01-08 21:56:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-01-04 06:11:21 2284544 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2012-12-24 18:23:59 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-12-19 20:50:10 5630200 ----a-w- c:\windows\system32\atiumdag.dll
2012-12-19 20:47:46 9647104 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-12-19 20:22:48 58880 ----a-w- c:\windows\system32\coinst_9.012.dll
2012-12-19 20:19:46 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-12-19 20:18:02 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-12-19 20:17:52 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-12-19 20:13:24 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2012-12-19 20:12:44 18982400 ----a-w- c:\windows\system32\atioglxx.dll
2012-12-19 20:09:52 960512 ----a-w- c:\windows\system32\aticfx32.dll
2012-12-19 20:06:00 6681088 ----a-w- c:\windows\system32\atidxx32.dll
2012-12-19 19:57:00 442368 ----a-w- c:\windows\system32\atidemgy.dll
2012-12-19 19:56:24 482304 ----a-w- c:\windows\system32\atieclxx.exe
2012-12-19 19:55:48 219136 ----a-w- c:\windows\system32\atiesrxx.exe
2012-12-19 19:54:30 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2012-12-19 19:54:20 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-12-19 19:54:12 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-12-19 19:44:28 4162048 ----a-w- c:\windows\system32\atiumdva.dll
2012-12-19 19:33:40 56832 ----a-w- c:\windows\system32\atimpc32.dll
2012-12-19 19:33:40 56832 ----a-w- c:\windows\system32\amdpcom32.dll
2012-12-19 19:33:30 421888 ----a-w- c:\windows\system32\atiadlxx.dll
2012-12-19 19:33:14 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-12-19 19:33:04 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-12-19 19:32:06 442368 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-12-19 19:31:08 109568 ----a-w- c:\windows\system32\atiuxpag.dll
2012-12-19 19:30:52 83968 ----a-w- c:\windows\system32\atiu9pag.dll
2012-12-19 19:30:16 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-12-19 14:45:04 180224 ----a-w- c:\windows\system32\clinfo.exe
2012-12-19 14:44:42 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2012-12-19 14:44:32 56320 ----a-w- c:\windows\system32\OVDecode.dll
2012-12-19 14:38:48 28732928 ----a-w- c:\windows\system32\amdocl.dll
2012-12-19 14:34:38 50176 ----a-w- c:\windows\system32\OpenCL.dll
2012-12-16 14:13:28 295424 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13:20 34304 ----a-w- c:\windows\system32\atmlib.dll
2012-12-07 12:26:17 308736 ----a-w- c:\windows\system32\Wpc.dll
2012-12-07 12:20:43 2576384 ----a-w- c:\windows\system32\gameux.dll
.
============= FINISH: 22:23:59,73 ===============

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://stahnu.cz/tag/adw-cleaner-free-download
Uložte na plochu
Ukončete všechny programy
Klikněte na Search
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v2.113 - Logfile created 03/04/2013 at 22:05:06
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (32 bits)
# User : Ondra - ONDRA-PC
# Boot Mode : Normal
# Running from : C:\Users\Ondra\Desktop\AdwCleaner.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****

Folder Found : C:\ProgramData\Babylon
Folder Found : C:\Users\Ondra\AppData\Local\Babylon
Folder Found : C:\Users\Ondra\AppData\Roaming\Babylon

***** [Registry] *****

Key Found : HKCU\Software\Conduit
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.97

File : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.2475] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=111688&tt=3812_8&babsrc=HP_ss&mntrId=accf41fd000000000000001d60562d3d" ]

-\\ Chromium v check_default_browser: false

File : C:\Users\Ondra\AppData\Local\Chromium\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [4304 octets] - [10/01/2013 06:34:04]
AdwCleaner[R2].txt - [4364 octets] - [10/01/2013 06:34:50]
AdwCleaner[R3].txt - [1643 octets] - [04/03/2013 22:05:06]
AdwCleaner[S1].txt - [4502 octets] - [10/01/2013 20:29:54]

########## EOF - C:\AdwCleaner[R3].txt - [1763 octets] ##########

Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.

# AdwCleaner v2.113 - Logfile created 03/05/2013 at 12:37:01
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (32 bits)
# User : Ondra - ONDRA-PC
# Boot Mode : Normal
# Running from : C:\Users\Ondra\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Ondra\AppData\Local\Babylon
Folder Deleted : C:\Users\Ondra\AppData\Roaming\Babylon

***** [Registry] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Google Chrome v25.0.1364.152

File : C:\Users\Ondra\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.2513] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=111688&tt=3812_8&babsrc=HP_s[...]

-\\ Chromium v check_default_browser: false

File : C:\Users\Ondra\AppData\Local\Chromium\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [4304 octets] - [10/01/2013 06:34:04]
AdwCleaner[R2].txt - [4364 octets] - [10/01/2013 06:34:50]
AdwCleaner[R3].txt - [1832 octets] - [04/03/2013 22:05:06]
AdwCleaner[S1].txt - [4502 octets] - [10/01/2013 20:29:54]
AdwCleaner[S2].txt - [1743 octets] - [05/03/2013 12:37:01]

########## EOF - C:\AdwCleaner[S2].txt - [1803 octets] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ondra at 2013-03-05 20:13:32
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 104 GB (22%) free of 477 GB
Total RAM: 3519 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:14:40, on 5.3.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe
C:\Users\Ondra\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Ondra\Downloads\RSIT.exe
C:\Program Files\trend micro\Ondra.exe
C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files\DeviceVM\SmartView\AddressBarSearch.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [CTSyncService] C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe /StartRunKey
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [RunDLLEntry] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [SmartViewAgent] "C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SmartView service (SmartViewService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\SmartView\SmartViewService.exe
O23 - Service: Sound Blaster X-Fi MB Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe

--
End of file - 7579 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-22 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-23 1227224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-22 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-23 1227224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 1681408]
"CTSyncService"=C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe [2009-07-08 1233195]
"VolPanel"=C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [2009-05-04 241789]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"RunDLLEntry"=C:\Windows\system32\AmbRunE.dll [2009-02-26 14848]
"SmartViewAgent"=C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe [2010-09-02 948504]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-23 4297136]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-11-12 309688]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2012-11-12 968120]
"KiesAirMessage"=C:\Program Files\Samsung\Kies\KiesAirMessage.exe [2012-11-01 577536]
""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-12 1104824]
"HydraVisionDesktopManager"=C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [2011-03-09 393216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-03-05 12:37:01 ----A---- C:\AdwCleaner[S2].txt
2013-03-04 22:05:06 ----A---- C:\AdwCleaner[R3].txt
2013-03-04 20:12:15 ----RD---- C:\Program Files\Skype
2013-03-04 20:12:15 ----D---- C:\Program Files\Common Files\Skype
2013-03-03 22:21:07 ----D---- C:\rsit
2013-02-27 20:19:35 ----A---- C:\Windows\system32\UIAnimation.dll
2013-02-27 20:19:25 ----A---- C:\Windows\system32\WMPhoto.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-02-27 20:19:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-02-27 20:19:15 ----A---- C:\Windows\system32\d3d10warp.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\dxgi.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\d3d10level9.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d11.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10core.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10_1.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\XpsPrint.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\FntCache.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\d3d10.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\DWrite.dll
2013-02-27 20:19:10 ----A---- C:\Windows\system32\d2d1.dll
2013-02-24 16:26:38 ----D---- C:\Users\Ondra\AppData\Roaming\ParetoLogic
2013-02-24 16:26:38 ----D---- C:\Users\Ondra\AppData\Roaming\DriverCure
2013-02-24 16:26:23 ----D---- C:\ProgramData\ParetoLogic
2013-02-22 18:35:45 ----D---- C:\ProgramData\REVOLT
2013-02-22 02:18:27 ----A---- C:\Windows\system32\javaws.exe
2013-02-22 02:18:15 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-02-22 02:18:15 ----A---- C:\Windows\system32\javaw.exe
2013-02-22 02:18:15 ----A---- C:\Windows\system32\java.exe
2013-02-22 02:17:50 ----D---- C:\Program Files\Java
2013-02-14 01:54:32 ----A---- C:\Windows\system32\vbscript.dll
2013-02-14 01:54:32 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-14 01:54:31 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-14 01:54:31 ----A---- C:\Windows\system32\ieui.dll
2013-02-14 01:54:30 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-14 01:54:30 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-14 01:54:29 ----A---- C:\Windows\system32\wininet.dll
2013-02-14 01:54:29 ----A---- C:\Windows\system32\jscript.dll
2013-02-14 01:54:28 ----A---- C:\Windows\system32\url.dll
2013-02-14 01:54:28 ----A---- C:\Windows\system32\jscript9.dll
2013-02-14 01:54:27 ----A---- C:\Windows\system32\iertutil.dll
2013-02-14 01:54:25 ----A---- C:\Windows\system32\urlmon.dll
2013-02-14 01:54:24 ----A---- C:\Windows\system32\mshtml.dll
2013-02-14 01:54:22 ----A---- C:\Windows\system32\ieframe.dll
2013-02-13 16:44:35 ----A---- C:\Windows\system32\win32k.sys
2013-02-13 16:44:26 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-02-13 16:44:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-13 16:44:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-13 16:44:24 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 16:44:22 ----A---- C:\Windows\system32\winsrv.dll
2013-02-10 02:40:17 ----D---- C:\Users\Ondra\AppData\Roaming\Doublefine
2013-02-10 02:40:11 ----D---- C:\ProgramData\RELOADED
2013-02-07 13:30:32 ----D---- C:\ProgramData\Steam
2013-02-06 01:37:25 ----D---- C:\Program Files\FTL

======List of files/folders modified in the last 1 month======

2013-03-05 20:13:52 ----D---- C:\Windows\Temp
2013-03-05 20:13:46 ----D---- C:\Windows\Prefetch
2013-03-05 20:13:38 ----D---- C:\Program Files\trend micro
2013-03-05 20:12:01 ----D---- C:\Program Files\Steam
2013-03-05 15:32:55 ----D---- C:\Windows\system32\config
2013-03-05 15:22:34 ----SHD---- C:\System Volume Information
2013-03-05 12:37:06 ----D---- C:\ProgramData
2013-03-05 12:35:13 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2013-03-04 22:12:00 ----D---- C:\Windows\System32
2013-03-04 22:11:54 ----A---- C:\Windows\system32\PnkBstrB.exe
2013-03-04 21:58:32 ----D---- C:\Windows\system32\catroot2
2013-03-04 20:12:22 ----SHD---- C:\Windows\Installer
2013-03-04 20:12:22 ----D---- C:\ProgramData\Skype
2013-03-04 20:12:21 ----DC---- C:\Config.Msi
2013-03-04 20:12:15 ----RD---- C:\Program Files
2013-03-04 20:12:15 ----D---- C:\Program Files\Common Files
2013-02-27 21:13:55 ----D---- C:\Windows\rescache
2013-02-27 20:37:13 ----D---- C:\Windows\winsxs
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-TW
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-HK
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-CN
2013-02-27 20:35:04 ----D---- C:\Windows\system32\tr-TR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\sv-SE
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ru-RU
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pt-PT
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pt-BR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pl-PL
2013-02-27 20:35:04 ----D---- C:\Windows\system32\nl-NL
2013-02-27 20:35:04 ----D---- C:\Windows\system32\nb-NO
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ko-KR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ja-JP
2013-02-27 20:35:04 ----D---- C:\Windows\system32\it-IT
2013-02-27 20:35:04 ----D---- C:\Windows\system32\hu-HU
2013-02-27 20:35:04 ----D---- C:\Windows\system32\fr-FR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\fi-FI
2013-02-27 20:35:04 ----D---- C:\Windows\system32\es-ES
2013-02-27 20:35:04 ----D---- C:\Windows\system32\en-US
2013-02-27 20:35:04 ----D---- C:\Windows\system32\el-GR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\de-DE
2013-02-27 20:35:04 ----D---- C:\Windows\system32\da-DK
2013-02-27 20:35:04 ----D---- C:\Windows\system32\cs-CZ
2013-02-27 20:21:22 ----D---- C:\Windows\system32\catroot
2013-02-24 16:28:30 ----D---- C:\Windows\Tasks
2013-02-24 16:28:30 ----D---- C:\Windows\system32\Tasks
2013-02-24 13:02:56 ----D---- C:\Windows\LiveKernelReports
2013-02-24 11:53:38 ----D---- C:\Users\Ondra\AppData\Roaming\uTorrent
2013-02-22 02:17:54 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-02-22 02:17:54 ----A---- C:\Windows\system32\deployJava1.dll
2013-02-21 19:19:20 ----D---- C:\Program Files\Origin
2013-02-17 19:09:41 ----SD---- C:\Users\Ondra\AppData\Roaming\Microsoft
2013-02-15 16:04:18 ----RSD---- C:\Windows\assembly
2013-02-15 16:04:18 ----D---- C:\Windows\Microsoft.NET
2013-02-14 02:34:17 ----D---- C:\Windows\system32\migration
2013-02-14 02:34:17 ----D---- C:\Windows\system32\drivers
2013-02-14 02:34:16 ----D---- C:\Program Files\Internet Explorer
2013-02-14 01:55:50 ----A---- C:\Windows\system32\MRT.exe
2013-02-14 01:53:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-14 01:53:02 ----D---- C:\Windows\inf
2013-02-07 21:43:03 ----D---- C:\ProgramData\Origin
2013-02-07 21:35:50 ----HD---- C:\Program Files\Common Files\EAInstaller

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 44784]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-23 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-23 360392]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-23 54232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-09 242240]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-23 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-23 58680]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 9647104]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 442368]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2012-11-06 84992]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-08-20 189440]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-09-17 1086976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2012-06-27 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 136808]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 219136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-23 44808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-24 76888]
R2 SmartViewService;SmartView service; C:\Program Files\DeviceVM\SmartView\SmartViewService.exe [2010-09-02 125216]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [2012-10-30 79360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-07 161384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-10-30 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-10-30 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-30 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-31 1343400]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ondra at 2013-03-06 00:38:53
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 104 GB (22%) free of 477 GB
Total RAM: 3519 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:39:17, on 6.3.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\notepad.exe
C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe
C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe
C:\Users\Ondra\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Ondra\Downloads\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\Ondra.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files\DeviceVM\SmartView\AddressBarSearch.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [CTSyncService] C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe /StartRunKey
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [RunDLLEntry] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [SmartViewAgent] "C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
O4 - Startup: Logitech . Registrace produktu.lnk = C:\Program Files\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SmartView service (SmartViewService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\SmartView\SmartViewService.exe
O23 - Service: Sound Blaster X-Fi MB Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe

--
End of file - 8038 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-22 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-23 1227224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-02-21 367344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-22 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-23 1227224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 1681408]
"CTSyncService"=C:\Program Files\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe [2009-07-08 1233195]
"VolPanel"=C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [2009-05-04 241789]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"RunDLLEntry"=C:\Windows\system32\AmbRunE.dll [2009-02-26 14848]
"SmartViewAgent"=C:\Program Files\DeviceVM\SmartView\SmartViewAgent.exe [2010-09-02 948504]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-23 4297136]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2012-11-12 309688]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2013-02-21 2238704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2012-11-12 968120]
"KiesAirMessage"=C:\Program Files\Samsung\Kies\KiesAirMessage.exe [2012-11-01 577536]
""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2012-11-12 1104824]
"HydraVisionDesktopManager"=C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [2011-03-09 393216]

C:\Users\Ondra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Logitech . Registrace produktu.lnk - C:\Program Files\Common Files\LogiShrd\eReg\SetPoint\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-02-08 66800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-03-06 00:23:34 ----D---- C:\Users\Ondra\AppData\Roaming\Leadertech
2013-03-06 00:23:05 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2013-03-06 00:21:14 ----D---- C:\Program Files\Logitech
2013-03-06 00:12:55 ----D---- C:\_OTM
2013-03-06 00:12:28 ----D---- C:\ProgramData\Logitech
2013-03-06 00:12:20 ----D---- C:\ProgramData\Logishrd
2013-03-06 00:11:57 ----D---- C:\Program Files\Common Files\LogiShrd
2013-03-06 00:11:29 ----D---- C:\Users\Ondra\AppData\Roaming\Logitech
2013-03-06 00:11:29 ----D---- C:\Users\Ondra\AppData\Roaming\Logishrd
2013-03-05 12:37:01 ----A---- C:\AdwCleaner[S2].txt
2013-03-04 22:05:06 ----A---- C:\AdwCleaner[R3].txt
2013-03-04 20:12:15 ----RD---- C:\Program Files\Skype
2013-03-04 20:12:15 ----D---- C:\Program Files\Common Files\Skype
2013-03-03 22:21:07 ----D---- C:\rsit
2013-02-27 20:19:35 ----A---- C:\Windows\system32\UIAnimation.dll
2013-02-27 20:19:25 ----A---- C:\Windows\system32\WMPhoto.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-02-27 20:19:22 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-02-27 20:19:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-02-27 20:19:16 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-02-27 20:19:15 ----A---- C:\Windows\system32\d3d10warp.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\dxgi.dll
2013-02-27 20:19:14 ----A---- C:\Windows\system32\d3d10level9.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d11.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10core.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-02-27 20:19:13 ----A---- C:\Windows\system32\d3d10_1.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\XpsPrint.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\FntCache.dll
2013-02-27 20:19:12 ----A---- C:\Windows\system32\d3d10.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-02-27 20:19:11 ----A---- C:\Windows\system32\DWrite.dll
2013-02-27 20:19:10 ----A---- C:\Windows\system32\d2d1.dll
2013-02-24 16:26:38 ----D---- C:\Users\Ondra\AppData\Roaming\ParetoLogic
2013-02-24 16:26:38 ----D---- C:\Users\Ondra\AppData\Roaming\DriverCure
2013-02-24 16:26:23 ----D---- C:\ProgramData\ParetoLogic
2013-02-22 18:35:45 ----D---- C:\ProgramData\REVOLT
2013-02-22 02:18:27 ----A---- C:\Windows\system32\javaws.exe
2013-02-22 02:18:15 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-02-22 02:18:15 ----A---- C:\Windows\system32\javaw.exe
2013-02-22 02:18:15 ----A---- C:\Windows\system32\java.exe
2013-02-22 02:17:50 ----D---- C:\Program Files\Java
2013-02-14 01:54:32 ----A---- C:\Windows\system32\vbscript.dll
2013-02-14 01:54:32 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-14 01:54:31 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-14 01:54:31 ----A---- C:\Windows\system32\ieui.dll
2013-02-14 01:54:30 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-14 01:54:30 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-14 01:54:29 ----A---- C:\Windows\system32\wininet.dll
2013-02-14 01:54:29 ----A---- C:\Windows\system32\jscript.dll
2013-02-14 01:54:28 ----A---- C:\Windows\system32\url.dll
2013-02-14 01:54:28 ----A---- C:\Windows\system32\jscript9.dll
2013-02-14 01:54:27 ----A---- C:\Windows\system32\iertutil.dll
2013-02-14 01:54:25 ----A---- C:\Windows\system32\urlmon.dll
2013-02-14 01:54:24 ----A---- C:\Windows\system32\mshtml.dll
2013-02-14 01:54:22 ----A---- C:\Windows\system32\ieframe.dll
2013-02-13 16:44:35 ----A---- C:\Windows\system32\win32k.sys
2013-02-13 16:44:26 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-02-13 16:44:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-13 16:44:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-13 16:44:24 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-13 16:44:22 ----A---- C:\Windows\system32\winsrv.dll
2013-02-10 02:40:17 ----D---- C:\Users\Ondra\AppData\Roaming\Doublefine
2013-02-10 02:40:11 ----D---- C:\ProgramData\RELOADED
2013-02-07 13:30:32 ----D---- C:\ProgramData\Steam

======List of files/folders modified in the last 1 month======

2013-03-06 00:39:01 ----D---- C:\Program Files\trend micro
2013-03-06 00:38:56 ----D---- C:\Windows\Temp
2013-03-06 00:31:08 ----D---- C:\Windows\Prefetch
2013-03-06 00:23:44 ----D---- C:\Windows\inf
2013-03-06 00:23:34 ----SHD---- C:\Windows\Installer
2013-03-06 00:23:34 ----DC---- C:\Config.Msi
2013-03-06 00:23:33 ----SD---- C:\Users\Ondra\AppData\Roaming\Microsoft
2013-03-06 00:23:21 ----D---- C:\Windows\system32\drivers
2013-03-06 00:23:21 ----D---- C:\Windows\System32
2013-03-06 00:23:05 ----D---- C:\Windows
2013-03-06 00:23:00 ----D---- C:\Windows\system32\DriverStore
2013-03-06 00:23:00 ----D---- C:\Windows\system32\catroot
2013-03-06 00:21:14 ----RD---- C:\Program Files
2013-03-06 00:20:26 ----D---- C:\Windows\system32\config
2013-03-06 00:13:03 ----D---- C:\Windows\Tasks
2013-03-06 00:12:28 ----D---- C:\ProgramData
2013-03-06 00:11:57 ----D---- C:\Program Files\Common Files
2013-03-05 20:17:15 ----A---- C:\Windows\system32\PnkBstrB.exe
2013-03-05 20:16:58 ----D---- C:\Program Files\Steam
2013-03-05 15:22:34 ----SHD---- C:\System Volume Information
2013-03-05 12:35:13 ----D---- C:\Users\Ondra\AppData\Roaming\Skype
2013-03-04 21:58:32 ----D---- C:\Windows\system32\catroot2
2013-03-04 20:12:22 ----D---- C:\ProgramData\Skype
2013-02-27 21:13:55 ----D---- C:\Windows\rescache
2013-02-27 20:37:13 ----D---- C:\Windows\winsxs
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-TW
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-HK
2013-02-27 20:35:04 ----D---- C:\Windows\system32\zh-CN
2013-02-27 20:35:04 ----D---- C:\Windows\system32\tr-TR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\sv-SE
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ru-RU
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pt-PT
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pt-BR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\pl-PL
2013-02-27 20:35:04 ----D---- C:\Windows\system32\nl-NL
2013-02-27 20:35:04 ----D---- C:\Windows\system32\nb-NO
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ko-KR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\ja-JP
2013-02-27 20:35:04 ----D---- C:\Windows\system32\it-IT
2013-02-27 20:35:04 ----D---- C:\Windows\system32\hu-HU
2013-02-27 20:35:04 ----D---- C:\Windows\system32\fr-FR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\fi-FI
2013-02-27 20:35:04 ----D---- C:\Windows\system32\es-ES
2013-02-27 20:35:04 ----D---- C:\Windows\system32\en-US
2013-02-27 20:35:04 ----D---- C:\Windows\system32\el-GR
2013-02-27 20:35:04 ----D---- C:\Windows\system32\de-DE
2013-02-27 20:35:04 ----D---- C:\Windows\system32\da-DK
2013-02-27 20:35:04 ----D---- C:\Windows\system32\cs-CZ
2013-02-24 16:28:30 ----D---- C:\Windows\system32\Tasks
2013-02-24 13:02:56 ----D---- C:\Windows\LiveKernelReports
2013-02-24 11:53:38 ----D---- C:\Users\Ondra\AppData\Roaming\uTorrent
2013-02-22 02:17:54 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-02-22 02:17:54 ----A---- C:\Windows\system32\deployJava1.dll
2013-02-21 19:19:20 ----D---- C:\Program Files\Origin
2013-02-15 16:04:18 ----RSD---- C:\Windows\assembly
2013-02-15 16:04:18 ----D---- C:\Windows\Microsoft.NET
2013-02-14 02:34:17 ----D---- C:\Windows\system32\migration
2013-02-14 02:34:16 ----D---- C:\Program Files\Internet Explorer
2013-02-14 01:55:50 ----A---- C:\Windows\system32\MRT.exe
2013-02-14 01:53:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-07 21:43:03 ----D---- C:\ProgramData\Origin
2013-02-07 21:35:50 ----HD---- C:\Program Files\Common Files\EAInstaller

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 44784]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-23 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-23 360392]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-23 54232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-09 242240]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-23 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-23 58680]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 9647104]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 442368]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2012-11-06 84992]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\System32\Drivers\LEqdUsb.Sys [2013-01-03 44296]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\System32\Drivers\LHidEqd.Sys [2013-01-03 12808]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-01-03 44680]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-01-03 40200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-08-20 189440]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-09-17 1086976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2012-06-27 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2012-06-27 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2012-06-27 136808]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 219136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-23 44808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-24 76888]
R2 SmartViewService;SmartView service; C:\Program Files\DeviceVM\SmartView\SmartViewService.exe [2010-09-02 125216]
R3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [2012-10-30 79360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-30 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-02-07 161384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-10-30 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-10-30 79360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-10-30 116648]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-02-08 295664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-31 1343400]

-----------------EOF-----------------

Dvouklikem na soubor C:\Program Files\trend micro\Ondra.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R3 - URLSearchHook: SearchHook Class - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files\DeviceVM\SmartView\AddressBarSearch.dll (file missing)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Děkuji, provedl jsem všechny kroky, na shledanou

Nemáte zač a mějte se.

VIRY.CZ

Prosím o preventivní kontrolu

Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu