VIRY.CZ

Čaute, poprosím vás o kontrolu logu, občas mi zamrzne pc pri neaktivite. V poslednej dobe sa to stáva častejšie, ale niekedy beží bez zamrznutia aj celú noc. Ak si nejaká dobrá duša nájde čas, tak sa na to mrknite, ďakujem.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ivo at 2013-08-31 09:52:18
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 57 GB (38%) free of 150 GB
Total RAM: 8190 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:52:22, on 31. 8. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Ivo.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - Global Startup: Inteligentný sprievodca WNA3100 NETGEAR.lnk = ?
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WSWNA3100 - Unknown owner - C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe

--
End of file - 7372 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\WLANExt.exe 26149280
\??\C:\Windows\system32\conhost.exe "-10170924805357818604813223762111235420160846356-1135214146-386149147-203823670
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe" /TUStart /pid:2680
WLIDSvcM.exe 2768
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d817369a-9e95-4d08-8731-c68f0cf65cee -SystemEventPortName:HostProcess-ba80e531-cbd0-479e-9427-fcb9f8d7951b -IoCancelEventPortName:HostProcess-15f5e026-ce2c-4acb-9db8-ebf7c9048e6a -NonStateChangingEventPortName:HostProcess-31d323ba-2450-42b3-8954-caef3c4e9d07 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:31866f15-a3a6-4fd9-a8d7-632ea117a658 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
notepad.exe "C:\Users\Ivo\AppData\Local\Temp\log.txt"
C:\Windows\explorer.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\AUDIODG.EXE 0x628
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Ivo\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

=========Mozilla firefox=========

ProfilePath - C:\Users\Ivo\AppData\Roaming\Mozilla\Firefox\Profiles\d74y80d0.default

prefs.js - "browser.startup.homepage" - "chrome://fastdial/content/fastdial.html"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18]
"Description"=Veetle TV Core
"Path"=C:\Program Files (x86)\Veetle\plugins\npVeetle.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18]
"Description"=Veetle TV Player
"Path"=C:\Program Files (x86)\Veetle\Player\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.7.700.224 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Ivo\AppData\Roaming\Mozilla\Firefox\Profiles\d74y80d0.default\extensions\
fastdial@telega.phpnet.us
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-01 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-01 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-15 190536]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2012-11-09 2777296]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-04-03 3684488]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-05-05 802136]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Inteligentný sprievodca WNA3100 NETGEAR.lnk - C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"vidc.XVID"=xvidvfw.dll
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux7"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux9"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 3 months======

2013-08-31 09:52:18 ----D---- C:\rsit
2013-08-31 09:52:18 ----D---- C:\Program Files\trend micro
2013-08-31 09:38:32 ----A---- C:\ComboFix.txt
2013-08-31 09:33:12 ----SHD---- C:\$RECYCLE.BIN
2013-08-31 09:30:23 ----D---- C:\Windows\temp
2013-08-31 09:21:13 ----A---- C:\Windows\zip.exe
2013-08-31 09:21:13 ----A---- C:\Windows\SWSC.exe
2013-08-31 09:21:13 ----A---- C:\Windows\SWREG.exe
2013-08-31 09:21:13 ----A---- C:\Windows\sed.exe
2013-08-31 09:21:13 ----A---- C:\Windows\PEV.exe
2013-08-31 09:21:13 ----A---- C:\Windows\NIRCMD.exe
2013-08-31 09:21:13 ----A---- C:\Windows\MBR.exe
2013-08-31 09:21:13 ----A---- C:\Windows\grep.exe
2013-08-31 09:20:39 ----D---- C:\Qoobox
2013-08-31 09:20:22 ----D---- C:\Windows\erdnt
2013-08-28 20:15:37 ----D---- C:\AdwCleaner
2013-08-25 06:57:09 ----A---- C:\Windows\ntbtlog.txt
2013-08-24 19:26:28 ----A---- C:\autoexec.bat
2013-08-24 19:25:58 ----D---- C:\Program Files (x86)\Enigma Software Group
2013-08-24 19:25:26 ----D---- C:\Windows\4941BFEB62C047A2801E998FC469CC2C.TMP
2013-08-22 15:43:20 ----D---- C:\Users\Ivo\AppData\Roaming\Malwarebytes
2013-08-22 15:43:09 ----D---- C:\ProgramData\Malwarebytes
2013-08-22 15:36:22 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-08-17 19:26:56 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-08-17 19:26:56 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-08-17 19:26:55 ----A---- C:\Windows\system32\Wdfres.dll
2013-08-17 19:25:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-08-17 19:25:30 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-08-17 19:25:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-08-17 19:25:24 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-08-17 19:25:23 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-08-17 19:25:16 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-08-17 19:25:16 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-08-17 19:25:16 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-08-17 19:25:16 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-08-17 19:25:16 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-08-17 19:25:16 ----A---- C:\Windows\system32\wksprtPS.dll
2013-08-17 19:25:16 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-08-17 19:25:16 ----A---- C:\Windows\system32\tsgqec.dll
2013-08-17 19:25:15 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-08-17 19:25:15 ----A---- C:\Windows\system32\wksprt.exe
2013-08-17 19:25:15 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-08-17 19:25:15 ----A---- C:\Windows\system32\rdpudd.dll
2013-08-17 19:25:15 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-08-17 19:25:15 ----A---- C:\Windows\system32\mstsc.exe
2013-08-17 19:25:15 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-08-17 19:25:15 ----A---- C:\Windows\system32\aaclient.dll
2013-08-17 19:25:14 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-08-17 19:25:14 ----A---- C:\Windows\system32\rdpcorets.dll
2013-08-17 19:25:13 ----A---- C:\Windows\system32\mstscax.dll
2013-08-17 19:17:05 ----HD---- C:\ProgramData\CanonIJMyPrinter
2013-08-17 19:16:20 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-08-17 19:16:19 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-08-17 19:16:14 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-08-17 19:16:14 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-08-17 19:16:05 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-08-17 19:16:03 ----A---- C:\Windows\system32\WUDFx.dll
2013-08-17 19:16:03 ----A---- C:\Windows\system32\WUDFHost.exe
2013-08-17 19:14:14 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-08-17 19:14:14 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-08-17 19:14:14 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-08-17 19:14:14 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-08-17 19:13:30 ----A---- C:\Windows\system32\Wpc.dll
2013-08-17 19:13:29 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-08-17 19:13:29 ----A---- C:\Windows\system32\gameux.dll
2013-08-17 19:13:28 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-08-17 19:09:18 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-08-17 19:09:18 ----A---- C:\Windows\system32\qdvd.dll
2013-08-17 19:09:17 ----A---- C:\Windows\system32\wwansvc.dll
2013-08-17 19:09:16 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-08-17 19:08:27 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-08-17 19:08:27 ----A---- C:\Windows\system32\ncsi.dll
2013-08-17 19:08:26 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-08-17 19:08:26 ----A---- C:\Windows\system32\nlasvc.dll
2013-08-17 19:08:26 ----A---- C:\Windows\system32\netcorehc.dll
2013-08-17 19:08:26 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-08-17 19:08:25 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-08-17 19:08:24 ----A---- C:\Windows\system32\nlaapi.dll
2013-08-17 19:08:24 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-08-17 19:08:23 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-08-17 19:08:23 ----A---- C:\Windows\system32\netevent.dll
2013-08-17 19:07:46 ----A---- C:\Windows\system32\schannel.dll
2013-08-17 19:07:45 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-08-17 19:07:45 ----A---- C:\Windows\system32\drivers\cng.sys
2013-08-17 19:07:44 ----A---- C:\Windows\system32\lsasrv.dll
2013-08-17 19:07:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-08-17 19:07:43 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-08-17 19:07:43 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-08-17 19:07:16 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-08-17 19:07:16 ----A---- C:\Windows\system32\cryptdlg.dll
2013-08-17 19:06:20 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-08-17 19:06:03 ----A---- C:\Windows\system32\msi.dll
2013-08-17 19:06:02 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-08-17 19:05:58 ----A---- C:\Windows\system32\usp10.dll
2013-08-17 19:05:57 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-08-17 19:05:53 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-08-17 19:05:52 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-08-17 19:05:49 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-08-17 19:05:46 ----A---- C:\Windows\system32\profsvc.dll
2013-08-17 19:05:40 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-08-17 19:05:40 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-08-17 19:05:32 ----A---- C:\Windows\system32\srcore.dll
2013-08-17 19:05:31 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-08-17 19:05:27 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-08-17 19:05:27 ----A---- C:\Windows\system32\d3d11.dll
2013-08-17 18:56:02 ----A---- C:\Windows\system32\spoolsv.exe
2013-08-17 18:56:02 ----A---- C:\Windows\splwow64.exe
2013-08-17 15:37:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-08-16 12:00:02 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-08-16 12:00:02 ----A---- C:\Windows\system32\ieui.dll
2013-08-16 12:00:00 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-08-16 12:00:00 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-08-16 12:00:00 ----A---- C:\Windows\system32\iesetup.dll
2013-08-16 12:00:00 ----A---- C:\Windows\system32\iernonce.dll
2013-08-16 11:59:59 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-08-16 11:59:59 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-08-16 11:59:59 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-08-16 11:59:59 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-16 11:59:59 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-16 11:59:59 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-16 11:59:58 ----A---- C:\Windows\system32\iertutil.dll
2013-08-16 11:59:56 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-08-16 11:59:55 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-16 11:59:55 ----A---- C:\Windows\system32\jscript.dll
2013-08-16 11:59:54 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-08-16 11:59:54 ----A---- C:\Windows\system32\jscript9.dll
2013-08-16 11:59:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-08-16 11:59:52 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-08-16 11:59:51 ----A---- C:\Windows\system32\urlmon.dll
2013-08-16 11:59:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-08-16 11:59:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-08-16 11:59:49 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-16 11:59:48 ----A---- C:\Windows\system32\wininet.dll
2013-08-16 11:59:46 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-08-16 11:59:44 ----A---- C:\Windows\system32\ieframe.dll
2013-08-16 11:59:42 ----A---- C:\Windows\system32\mshtml.dll
2013-08-16 11:59:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-08-16 11:48:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-08-16 11:48:27 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-08-16 11:48:27 ----A---- C:\Windows\system32\wintrust.dll
2013-08-16 11:48:27 ----A---- C:\Windows\system32\crypt32.dll
2013-08-16 11:48:26 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-08-16 11:48:26 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-08-16 11:48:26 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-16 11:48:26 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-16 11:47:41 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-08-16 11:47:41 ----A---- C:\Windows\system32\tzres.dll
2013-08-16 11:47:09 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-08-16 11:47:08 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-08-16 11:47:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-16 11:47:07 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-08-16 11:47:07 ----A---- C:\Windows\system32\ntdll.dll
2013-08-16 11:47:07 ----A---- C:\Windows\system32\KernelBase.dll
2013-08-16 11:47:06 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-08-16 11:47:06 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-08-16 11:47:06 ----A---- C:\Windows\system32\wow64.dll
2013-08-16 11:47:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-16 11:47:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-16 11:47:05 ----A---- C:\Windows\system32\kernel32.dll
2013-08-16 11:47:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-08-16 11:47:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-08-16 11:47:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-16 11:47:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-16 11:47:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-16 11:47:03 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-08-16 11:47:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-08-16 11:47:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-08-16 11:47:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-08-16 11:47:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-08-16 11:47:00 ----A---- C:\Windows\system32\wow64win.dll
2013-08-16 11:47:00 ----A---- C:\Windows\system32\wow64cpu.dll
2013-08-16 11:47:00 ----A---- C:\Windows\system32\conhost.exe
2013-08-16 11:46:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-08-16 11:46:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-08-16 11:46:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-08-16 11:46:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-08-16 11:46:58 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-08-16 11:46:58 ----A---- C:\Windows\system32\ntvdm64.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-16 11:46:57 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-16 11:46:56 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-16 11:46:56 ----A---- C:\Windows\SYSWOW64\user.exe
2013-08-16 11:46:56 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-08-16 11:46:56 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-08-16 11:46:52 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-08-16 11:46:52 ----A---- C:\Windows\system32\rpcrt4.dll
2013-08-16 11:46:20 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-16 11:46:19 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-08-16 11:44:12 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-08-16 11:44:10 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-07-30 18:25:23 ----D---- C:\Temp
2013-07-30 18:20:42 ----D---- C:\Boot
2013-07-27 23:03:14 ----D---- C:\Windows\system32\MRT
2013-07-21 09:47:31 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-07-21 09:47:31 ----A---- C:\Windows\system32\qedit.dll
2013-07-21 09:47:29 ----A---- C:\Windows\system32\win32k.sys
2013-07-21 09:45:44 ----A---- C:\Windows\system32\DWrite.dll
2013-07-21 09:45:43 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-07-07 20:43:14 ----D---- C:\Users\Ivo\AppData\Roaming\Ashampoo
2013-07-03 17:30:15 ----D---- C:\Program Files (x86)\Mozilla Firefox.bak
2013-07-01 15:23:48 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-07-01 15:23:42 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-07-01 15:23:42 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-07-01 15:23:42 ----A---- C:\Windows\SYSWOW64\java.exe
2013-07-01 15:23:33 ----D---- C:\Program Files (x86)\Java
2013-06-30 13:25:05 ----D---- C:\Users\Ivo\AppData\Roaming\Ubisoft
2013-06-30 13:24:38 ----D---- C:\ProgramData\Solidshield
2013-06-23 17:00:53 ----D---- C:\Users\Ivo\AppData\Roaming\GetRightToGo
2013-06-23 16:56:01 ----D---- C:\Program Files (x86)\Ubisoft
2013-06-23 16:48:40 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-23 16:48:40 ----A---- C:\Windows\system32\win32spl.dll
2013-06-23 16:48:22 ----A---- C:\Windows\system32\certutil.exe
2013-06-23 16:48:21 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-23 16:48:20 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-23 16:48:20 ----A---- C:\Windows\system32\certenc.dll
2013-06-03 16:32:05 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-06-03 16:32:05 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-06-03 16:32:05 ----A---- C:\Windows\system32\cdd.dll
2013-06-03 16:31:58 ----A---- C:\Windows\system32\shell32.dll
2013-06-03 16:31:57 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-06-03 16:31:57 ----A---- C:\Windows\system32\shdocvw.dll
2013-06-03 16:31:57 ----A---- C:\Windows\system32\authui.dll
2013-06-03 16:31:56 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-06-03 16:31:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-06-03 16:31:56 ----A---- C:\Windows\system32\consent.exe
2013-06-03 16:31:55 ----A---- C:\Windows\system32\appinfo.dll

======List of files/folders modified in the last 3 months======

2013-08-31 09:52:18 ----RD---- C:\Program Files
2013-08-31 09:38:49 ----D---- C:\Windows\System32
2013-08-31 09:38:49 ----D---- C:\Windows\inf
2013-08-31 09:38:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-31 09:38:35 ----D---- C:\Windows\system32\drivers
2013-08-31 09:33:16 ----D---- C:\Windows
2013-08-31 09:33:16 ----A---- C:\Windows\system.ini
2013-08-31 09:33:07 ----D---- C:\Windows\system32\drivers\etc
2013-08-31 09:30:54 ----D---- C:\Windows\system32\config
2013-08-31 09:29:53 ----D---- C:\Windows\SysWOW64
2013-08-31 09:27:12 ----D---- C:\Windows\SYSWOW64\drivers
2013-08-31 09:27:12 ----D---- C:\Windows\AppPatch
2013-08-31 09:27:11 ----D---- C:\Program Files (x86)\Common Files
2013-08-31 09:21:12 ----D---- C:\Windows\Prefetch
2013-08-31 09:19:39 ----D---- C:\Users\Ivo\AppData\Roaming\uTorrent
2013-08-30 18:49:09 ----D---- C:\Program Files (x86)\Origin
2013-08-30 18:44:22 ----SHD---- C:\System Volume Information
2013-08-29 22:38:31 ----D---- C:\Program Files (x86)\Steam
2013-08-28 20:17:30 ----RD---- C:\Program Files (x86)
2013-08-28 20:17:30 ----D---- C:\ProgramData
2013-08-28 16:54:01 ----D---- C:\Windows\rescache
2013-08-26 14:25:14 ----D---- C:\Windows\system32\catroot2
2013-08-25 07:15:09 ----SHD---- C:\Windows\Installer
2013-08-25 07:15:09 ----SD---- C:\Users\Ivo\AppData\Roaming\Microsoft
2013-08-25 07:15:08 ----D---- C:\Windows\system32\Tasks
2013-08-25 07:15:06 ----D---- C:\Config.Msi
2013-08-22 16:06:53 ----SD---- C:\ProgramData\Microsoft
2013-08-17 20:03:40 ----RSD---- C:\Windows\assembly
2013-08-17 20:03:40 ----D---- C:\Windows\Microsoft.NET
2013-08-17 19:31:16 ----D---- C:\Windows\winsxs
2013-08-17 19:29:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 19:28:50 ----D---- C:\Windows\SYSWOW64\wbem
2013-08-17 19:28:50 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-08-17 19:28:50 ----D---- C:\Windows\SYSWOW64\en-US
2013-08-17 19:28:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-08-17 19:28:50 ----D---- C:\Windows\system32\wbem
2013-08-17 19:28:50 ----D---- C:\Windows\system32\sk-SK
2013-08-17 19:28:50 ----D---- C:\Windows\system32\en-US
2013-08-17 19:28:50 ----D---- C:\Windows\system32\drivers\en-US
2013-08-17 19:28:50 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-08-17 19:28:50 ----D---- C:\Windows\system32\cs-CZ
2013-08-17 19:28:50 ----D---- C:\Windows\PolicyDefinitions
2013-08-17 19:28:49 ----D---- C:\Windows\SYSWOW64\migration
2013-08-17 19:28:49 ----D---- C:\Windows\system32\migration
2013-08-17 19:28:47 ----RSD---- C:\Windows\Fonts
2013-08-17 19:28:47 ----D---- C:\Windows\system32\DriverStore
2013-08-17 19:27:28 ----D---- C:\Windows\system32\catroot
2013-08-17 19:26:46 ----D---- C:\ProgramData\Microsoft Help
2013-08-17 19:24:14 ----D---- C:\ProgramData\CanonIJPLM
2013-08-17 19:23:25 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-08-16 16:12:01 ----D---- C:\ProgramData\Family Farm
2013-08-16 12:17:56 ----D---- C:\Program Files\Internet Explorer
2013-08-16 12:17:56 ----D---- C:\Program Files (x86)\Internet Explorer
2013-08-16 11:51:34 ----A---- C:\Windows\system32\MRT.exe
2013-08-15 16:24:02 ----D---- C:\ProgramData\Spyware Terminator
2013-08-04 01:24:11 ----D---- C:\Users\Ivo\AppData\Roaming\Skype
2013-08-04 01:19:09 ----D---- C:\ProgramData\Skype
2013-08-04 01:19:04 ----RD---- C:\Program Files (x86)\Skype
2013-08-01 20:06:02 ----D---- C:\Users\Ivo\AppData\Roaming\Wargaming.net
2013-07-31 19:57:44 ----D---- C:\Windows\SYSWOW64\directx
2013-07-30 19:52:27 ----D---- C:\Users\Ivo\AppData\Roaming\Origin
2013-07-21 22:49:07 ----D---- C:\ProgramData\Rockstar Games
2013-07-21 10:23:04 ----D---- C:\Program Files\Microsoft Silverlight
2013-07-21 10:23:04 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-07-21 10:22:06 ----D---- C:\Program Files\Windows Journal
2013-07-21 10:22:06 ----D---- C:\Program Files\Windows Defender
2013-07-21 10:22:06 ----D---- C:\Program Files (x86)\Windows Defender
2013-07-09 18:10:12 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-07-07 20:45:54 ----D---- C:\ProgramData\ashampoo
2013-07-07 20:43:01 ----D---- C:\Program Files (x86)\Ashampoo
2013-07-02 19:17:25 ----D---- C:\Users\Ivo\AppData\Roaming\vlc
2013-07-02 19:01:49 ----D---- C:\Windows\Tasks
2013-07-02 19:01:44 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-07-01 15:23:35 ----A---- C:\Windows\SYSWOW64\npdeployJava1.dll
2013-07-01 15:23:35 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-06-24 08:30:09 ----D---- C:\Users\Ivo\AppData\Roaming\Tropico 4
2013-06-23 17:14:34 ----D---- C:\Program Files (x86)\Alawarhry.cz
2013-06-20 10:06:10 ----D---- C:\ProgramData\Origin
2013-06-08 22:16:52 ----D---- C:\Users\Ivo\AppData\Roaming\Pro Cycling Manager 2012

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-28 189936]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SCMNdisP;General NDIS Protocol Driver; C:\Windows\system32\DRIVERS\scmndisp.sys [2007-01-19 25312]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-28 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-28 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-31 254528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 acedrv11;acedrv11; \??\C:\Windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
R2 AODDriver4.01;AODDriver4.01; \??\C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\FUEL\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-07-28 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-07-28 43680]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2012-06-10 51496]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-16 11174400]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-16 343040]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwlhigh664.sys [2011-04-19 1254464]
R3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2011-07-08 11856]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-28 26440]
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 77512]
S2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-16 11174400]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 esgiguard;esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-04-22 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-28 16200]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-04-08 68992]
S4 sptd;sptd; C:\Windows\system32\drivers\sptd.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-16 236544]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-04-05 361984]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 Capture Device Service;Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [2006-08-11 200704]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-03-27 185688]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2012-11-09 1148664]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-09-01 2027840]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-21 162408]
S2 WSWNA3100;WSWNA3100; C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [2010-08-26 285152]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-17 117656]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-08-28 563624]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-26 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravim

Co se tyce ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

licencni podminky hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"
Obrázek

Nebezpeci CFka

Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
Maze stopy po haveti, takze v logu z RSIT neni nic videt
Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

Ten CF som pouzil omylom, teda ako som tak čítal forum, tak niekomu poradili použiť CF, až potom som si všimol, že najprv treba poslať log z RSIT. Moja chyba, občas mi ruky predbehnú hlavu

A z toho logu čo mám z CF sa už nebude dať niečo vyčítať?

Dejte mi sem log z CF, je v c:\combofix.txt a uvidime

ComboFix 13-08-30.02 - Ivo . 08. 2013 9:23.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.421.1029.18.8190.6325 [GMT 2:00]
Running from: c:\users\Ivo\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Ivo\AppData\Roaming\log.txt
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\tmp3515.tmp
c:\windows\SysWow64\tmp3554.tmp
c:\windows\SysWow64\tmp8DA0.tmp
c:\windows\SysWow64\tmp8DD0.tmp
c:\windows\SysWow64\tmp9186.tmp
c:\windows\SysWow64\tmp91D5.tmp
c:\windows\SysWow64\wpcap.dll
c:\windows\UA000071.DLL
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_NPF
.
.
((((((((((((((((((((((((( Files Created from 2013-07-28 to 2013-08-31 )))))))))))))))))))))))))))))))
.
.
2013-08-31 07:30 . 2013-08-31 07:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-30 16:44 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5C6DDE0F-8F11-4CE4-888D-76D786425902}\mpengine.dll
2013-08-28 18:15 . 2013-08-30 16:46 -------- d-----w- C:\AdwCleaner
2013-08-24 18:32 . 2013-08-24 18:32 -------- d-----w- c:\users\Ivo\AppData\Local\Electronic Arts
2013-08-24 17:25 . 2013-08-24 17:25 -------- d-----w- c:\program files (x86)\Enigma Software Group
2013-08-24 17:25 . 2013-08-25 05:14 -------- d-----w- c:\windows\4941BFEB62C047A2801E998FC469CC2C.TMP
2013-08-22 13:43 . 2013-08-22 13:43 -------- d-----w- c:\users\Ivo\AppData\Roaming\Malwarebytes
2013-08-22 13:43 . 2013-08-22 13:43 -------- d-----w- c:\programdata\Malwarebytes
2013-08-22 13:36 . 2013-08-22 13:51 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-08-17 17:27 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2013-08-17 17:26 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2013-08-17 17:26 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-08-17 17:26 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-08-17 17:26 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-08-17 17:17 . 2013-08-17 17:17 -------- d--h--w- c:\programdata\CanonIJMyPrinter
2013-08-17 17:16 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-08-17 17:16 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-08-17 17:16 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-08-17 17:16 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-08-17 17:16 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-08-17 17:16 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2013-08-17 17:16 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2013-08-17 17:14 . 2012-10-09 18:17 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2013-08-17 17:14 . 2012-10-09 18:17 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2013-08-17 17:14 . 2012-10-09 17:40 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2013-08-17 17:14 . 2012-10-09 17:40 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2013-08-17 17:09 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2013-08-17 17:09 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-08-17 17:09 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll
2013-08-17 17:09 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-08-17 17:08 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll
2013-08-17 17:08 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2013-08-17 17:08 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll
2013-08-17 17:08 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll
2013-08-17 17:08 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2013-08-17 17:08 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2013-08-17 17:08 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2013-08-17 17:08 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll
2013-08-17 17:08 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2013-08-17 17:08 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll
2013-08-17 17:08 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2013-08-17 17:07 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
2013-08-17 17:07 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2013-08-17 17:07 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-08-17 17:07 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-08-17 17:07 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2013-08-17 17:07 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2013-08-17 17:07 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-08-17 17:07 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-08-17 17:07 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-08-17 17:06 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-08-17 17:06 . 2012-04-07 12:31 3216384 ----a-w- c:\windows\system32\msi.dll
2013-08-17 17:06 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\SysWow64\msi.dll
2013-08-17 17:05 . 2012-11-22 05:44 800768 ----a-w- c:\windows\system32\usp10.dll
2013-08-17 17:05 . 2012-11-22 04:45 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2013-08-17 17:05 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-08-17 17:05 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2013-08-17 17:05 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-08-17 17:05 . 2012-05-01 05:40 209920 ----a-w- c:\windows\system32\profsvc.dll
2013-08-17 17:05 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-08-17 17:05 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-08-17 17:05 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2013-08-17 17:05 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2013-08-17 17:05 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-08-17 17:05 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-08-17 16:56 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2013-08-17 16:56 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2013-08-16 09:59 . 2013-07-26 05:13 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2013-08-16 09:48 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2013-08-16 09:48 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll
2013-08-16 09:48 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-16 09:48 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-16 09:48 . 2013-07-09 05:46 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-16 09:48 . 2013-07-09 05:46 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-16 09:48 . 2013-07-09 04:46 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-08-16 09:48 . 2013-07-09 04:46 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-08-16 09:46 . 2013-07-09 04:52 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-08-16 09:44 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-16 09:44 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-03 23:19 . 2013-08-03 23:19 -------- d-----w- c:\program files (x86)\Common Files\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-16 09:51 . 2011-07-19 16:20 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-07-09 14:40 . 2011-07-30 19:42 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-07-09 14:29 . 2011-07-30 19:41 281688 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-07-09 04:45 . 2013-08-16 09:47 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-07-02 17:01 . 2012-04-17 13:24 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-07-02 17:01 . 2011-07-19 15:54 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-01 13:23 . 2013-07-01 13:23 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-01 13:23 . 2012-06-06 19:40 867240 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-07-01 13:23 . 2011-08-24 15:48 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-06-28 12:50 . 2013-03-15 09:41 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-28 12:50 . 2011-07-19 18:13 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-28 12:50 . 2011-07-19 18:13 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-05 03:34 . 2013-07-21 07:47 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 06:00 . 2013-07-21 07:47 624128 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 04:53 . 2013-07-21 07:47 509440 ----a-w- c:\windows\SysWow64\qedit.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2010-11-20 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
[7] 2009-07-14 . 72D7B3EA16946E8F0CF7458150031CC6 . 1008640 . . [6.1.7600.16385] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_292d5de8870d85d9\user32.dll
[-] 2012-12-26 . 2C353B6CE0C8D03225CAA2AF33B68D79 . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
.
[-] 2012-12-26 . 861C4346F9281DC0380DE72C8D55D6BE . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
[7] 2010-11-20 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
[7] 2009-07-14 . E8B0FFC209E504CB7E79FC24E6C085F0 . 833024 . . [6.1.7600.16385] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_3382083abb6e47d4\user32.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2013-05-05 802136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Inteligentný sprievodca WNA3100 NETGEAR.lnk - c:\program files (x86)\NETGEAR\WNA3100\WNA3100.exe [2012-5-13 4577760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"AMD AVT"=Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "c:\program files (x86)\AMD AVT\bin\kdbsync.exe" aml
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"DivXMediaServer"=c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
"amd_dc_opt"=c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
"IJNetworkScannerSelectorEX"=c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
"CanonQuickMenu"=c:\program files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
.
R2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 WSWNA3100;WSWNA3100;c:\program files (x86)\NETGEAR\WNA3100\WifiSvc.exe;c:\program files (x86)\NETGEAR\WNA3100\WifiSvc.exe [x]
R3 esgiguard;esgiguard;c:\program files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 sptd;sptd; [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 SCMNdisP;General NDIS Protocol Driver;c:\windows\system32\DRIVERS\scmndisp.sys;c:\windows\SYSNATIVE\DRIVERS\scmndisp.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys;c:\windows\SYSNATIVE\drivers\acedrv11.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI TECHNOLOGIES\ATI.ACE\FUEL\amd64\AODDriver2.sys;c:\program files\ATI TECHNOLOGIES\ATI.ACE\FUEL\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Garmin Core Update Service;Garmin Core Update Service;c:\program files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe;c:\program files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [x]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys;c:\windows\SYSNATIVE\DRIVERS\stflt.sys [x]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [x]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\DRIVERS\bcmwlhigh664.sys;c:\windows\SYSNATIVE\DRIVERS\bcmwlhigh664.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [2012-11-09 2777296]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [2013-04-03 3684488]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Ivo\AppData\Roaming\Mozilla\Firefox\Profiles\d74y80d0.default\
FF - prefs.js: browser.startup.homepage - chrome://fastdial/content/fastdial.html
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
Toolbar-10 - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-10 - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}"=hex:51,66,7a,6c,4c,1d,38,12,3a,25,4d,
8a,1f,e3,d1,0d,d3,3b,92,3f,05,d7,c9,12
"{326E768D-4182-46FD-9C16-1449A49795F4}"=hex:51,66,7a,6c,4c,1d,38,12,e3,75,7d,
36,b0,0f,93,03,e3,00,57,09,a1,c9,d1,e0
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:9e,74,ce,e0,05,47,cd,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,dd,af,54,79,b5,b1,eb,45,83,c4,ff,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,dd,af,54,79,b5,b1,eb,45,83,c4,ff,\
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\0** ]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\0**! ]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\0**9 ]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\Software\SecuROM\License information*]
"datasecu"=hex:d6,2d,45,0d,60,34,be,34,1a,b3,71,4d,be,98,22,24,06,3b,2d,84,e3,
3d,a8,9c,39,54,2d,7a,26,6d,fa,d7,e0,af,7f,bd,1f,8e,82,2e,60,44,98,8b,e7,f4,\
"rkeysecu"=hex:8c,f2,96,d5,85,5f,7e,cc,d3,1e,8c,07,33,01,13,19
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\Ů*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3021196565-3605623671-2118043727-1001\¬ H*p*]
@Allowed: (Read) (RestrictedCode)
DUMPHIVE0.003 (REGF)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
.
**************************************************************************
.
Completion time: 2013-08-31 09:38:31 - machine was rebooted
ComboFix-quarantined-files.txt 2013-08-31 07:38
.
Pre-Run: 59 921 862 656 bytes free
Post-Run: 59 358 093 312 bytes free
.
- - End Of File - - AAD95AA607EC3373141AB78A529E5A24
A36C5E4F47E84449FF07ED3517B43A31

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

Provedte aktualizaci
Provedte uplny sken - nic nemazte
MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.09.01.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Ivo :: IVO-PC [administrátor]

Ochrana: Vypnuté

1. 9. 2013 22:01:18
MBAM-log-2013-09-01 (23-15-51).txt

Typ kontroly: Úplná kontrola (C:\|F:\|G:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 505489
Uplynutý čas: 1 hod, 13 min, 6 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 1
HKLM\SOFTWARE\Google\Chrome\Extensions\bgnnidmnbdkmhfkjgdnngciimpdgohok (PUP.Optional.ATDheNetTVAp.A) -> Žiadna úloha nevykonaná.

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 5
F:\Internet\Colorfix-oldgames.zip (HackTool.Patch) -> Žiadna úloha nevykonaná.
F:\Internet\Spy Hunter\spyhunter.4.3.32-patch.exe (PUP.Hacktool.Patcher) -> Žiadna úloha nevykonaná.
F:\System Volume Information\_restore{0E59B783-6D9D-4893-A0FB-CA24DAD2540A}\RP525\A0124878.exe (RiskWare.Tool.CK) -> Žiadna úloha nevykonaná.
F:\System Volume Information\_restore{EB4768E8-C01D-4637-9278-6044580CB904}\RP157\A0052024.exe (Trojan.Dropper.PGen) -> Žiadna úloha nevykonaná.
G:\Hry\HOPKINS\CFIX\w7ddpatcher.exe (HackTool.Patch) -> Žiadna úloha nevykonaná.

(koniec)

Nalezy MBAMu smazte, objevi se log, ten rad uvidim...

Dal som ich zmazať a všetky sa mi presunuli karantény. Tu je log :

Malwarebytes Anti-Malware (Skúšobná verzia) 1.75.0.1300
www.malwarebytes.org

Verzia databázy: v2013.09.02.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Ivo :: IVO-PC [administrátor]

Ochrana: Zapnuté

2. 9. 2013 22:31:33
mbam-log-2013-09-02 (22-31-33).txt

Typ kontroly: Úplná kontrola (C:\|F:\|G:\|)
Možnosti kontroly zapnuté: Pamäť | Po spustení | Registre | Systémové súbory | Heuristika/Extra | Heuristika/Shuriken | PUP | PUM
Možnosti kontroly vypnuté: P2P
Objektov kontrolovaných: 505951
Uplynutý čas: 1 hod, 12 min, 16 sek

Detegované služby pamäte: 0
(Škodlivé položky neboli zistené)

Detegované moduly pamäte: 0
(Škodlivé položky neboli zistené)

Detegované registračné kľúče: 1
HKLM\SOFTWARE\Google\Chrome\Extensions\bgnnidmnbdkmhfkjgdnngciimpdgohok (PUP.Optional.ATDheNetTVAp.A) -> Pridanie do karantény a zmazanie úspešné.

Detegované registračné hodnoty: 0
(Škodlivé položky neboli zistené)

Detegované položky registračných dát: 0
(Škodlivé položky neboli zistené)

Detegované priečinky: 0
(Škodlivé položky neboli zistené)

Detegované súbory: 5
F:\Internet\Colorfix-oldgames.zip (HackTool.Patch) -> Pridanie do karantény a zmazanie úspešné.
F:\Internet\Spy Hunter\spyhunter.4.3.32-patch.exe (PUP.Hacktool.Patcher) -> Pridanie do karantény a zmazanie úspešné.
F:\System Volume Information\_restore{0E59B783-6D9D-4893-A0FB-CA24DAD2540A}\RP525\A0124878.exe (RiskWare.Tool.CK) -> Pridanie do karantény a zmazanie úspešné.
F:\System Volume Information\_restore{EB4768E8-C01D-4637-9278-6044580CB904}\RP157\A0052024.exe (Trojan.Dropper.PGen) -> Pridanie do karantény a zmazanie úspešné.
G:\Hry\HOPKINS\CFIX\w7ddpatcher.exe (HackTool.Patch) -> Pridanie do karantény a zmazanie úspešné.

(koniec)

Tak jeste uklidime

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

Ďakujem za pomoc, už mi PC nemrzne a všetko ide ako má

. Ešte raz ďakujem

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Obcasne zamrznutie pri necinnosti

Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti

Re: Obcasne zamrznutie pri necinnosti