VIRY.CZ

Zdravim, stává se mi, že po určité době po zapnutí počítače a to ikdyž na něm nepracuju se mi zpomalí internet, načítání stránek, přihlášení ICQ atd. Po restartu je zase všecho v pořádku a zase po nějaký době, pár hodin, jakoby tam naskočila nějaká brzda
Prosím o kontrolu logu RSIT
Logfile of random's system information tool 1.09 (written by random/random)
Run by OEM at 2014-01-13 11:35:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 672 GB (70%) free of 954 GB
Total RAM: 4095 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:36:09, on 13.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Programy\Ochrana počítače\Online Armor\oaui.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe
C:\Program Files\trend micro\OEM.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: *.dell.com
O15 - Trusted Zone: http://www.samsungsetup.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: horvzza - Invalid registry found
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AODService - Unknown owner - C:\Programy\Deska\AMD\OverDrive\AODAssist.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Online Armor Helper Service (OAcat) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\OAcat.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\oasrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8798 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Programy\Ochrana počítače\Online Armor\OAcat.exe"
"C:\Programy\Ochrana počítače\Online Armor\oasrv.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe"
"C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe" -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2320
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000700
atieclxx
"C:\PROGRAM FILES\NVIDIA CORPORATION\DISPLAY\NVXDSYNC.EXE"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-23141026116501833-738613383-133186128167377841419932284601836765512-1380525760
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-4464283a-deb8-499c-ac24-78abdeb58c08 -SystemEventPortName:HostProcess-31e7f0cf-d027-4d67-8a65-eafea9a49e32 -IoCancelEventPortName:HostProcess-c661b320-f731-4989-8e95-ec01888f754f -NonStateChangingEventPortName:HostProcess-ee9ac7fb-1a16-4a80-844e-bab7c429bda5 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f3d4c2a2-3961-43f0-8d16-7957d653c646 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"taskhost.exe"
"C:\Programy\Ochrana počítače\Online Armor\oaui.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k secsvcs
taskeng.exe {02E90C0C-4957-4BCD-BF9E-0B867BEE64E3}
"C:\Users\OEM\Desktop\Stažené soubory\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Driver Booster Update.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default

prefs.js - "browser.startup.homepage" - "WWW.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll


C:\Programy\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Programy\Mozilla Firefox\searchplugins\
babylon.xml

C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\extensions\
Pseutro@SoapySpew
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Programy\Úklid počítače\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-01-07 2486592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-07 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-07 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"@OnlineArmor GUI"=C:\Programy\Ochrana počítače\Online Armor\oaui.exe [2012-10-02 2415104]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-10-22 2777736]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-10-22 3684488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\horvzza]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
c:\program files (x86)\nvidia corporation\update core\nvbackend.exe [2013-12-10 2279712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
c:\program files\realtek\audio\hda\rtkngui64.exe [2014-01-07 7205592]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux1"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-01-13 11:27:01 ----D---- C:\Program Files\trend micro
2014-01-13 11:27:00 ----D---- C:\rsit
2014-01-10 11:49:53 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-01-10 11:49:53 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-01-10 11:49:14 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-01-10 11:49:14 ----A---- C:\Windows\system32\nvspcap64.dll
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-01-10 11:48:13 ----D---- C:\ProgramData\NVIDIA
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvvsvc.exe
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvsvc64.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvshext.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvmctray.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvcpl.dll
2014-01-10 11:46:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglv64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvinitx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvIFR64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdap64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvFBC64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvapi64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-01-10 11:38:34 ----D---- C:\NVIDIA
2014-01-10 11:04:42 ----D---- C:\Program Files\NVIDIA Corporation
2014-01-10 10:41:48 ----D---- C:\ProgramData\NVIDIA Corporation
2014-01-09 15:52:54 ----D---- C:\Program Files (x86)\AMD APP
2014-01-09 15:52:13 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2014-01-09 15:52:01 ----D---- C:\Program Files\ATI
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\AtiPcie64.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2014-01-09 15:49:51 ----D---- C:\ATI Technologies
2014-01-09 15:19:33 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2014-01-09 15:19:11 ----D---- C:\Program Files (x86)\SlimDrivers
2014-01-08 17:43:45 ----D---- C:\Users\OEM\AppData\Roaming\newnext.me
2014-01-08 17:42:46 ----D---- C:\Program Files (x86)\Seznam.cz
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2014-01-07 17:16:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tossaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\toseaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosasfapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosade.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sltech64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slprp64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slcnt64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sl3apo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFNHK64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFAPO64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkApi64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RTCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoRes64.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EED64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-01-07 17:15:22 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MISS_APO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\FMAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPP64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPO64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPD64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\audioLibVc.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAR64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2014-01-07 17:15:00 ----A---- C:\Windows\system32\nvhdagenco64.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispgenco6433182.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispco6433182.dll
2014-01-07 16:23:23 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-01-07 15:07:56 ----D---- C:\ProgramData\ProductData
2014-01-07 15:07:47 ----D---- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 14:50:28 ----D---- C:\Users\OEM\AppData\Roaming\Apple Computer
2014-01-07 14:37:12 ----D---- C:\ProgramData\Oracle
2014-01-07 14:36:57 ----A---- C:\Windows\system32\javaws.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-07 14:36:51 ----A---- C:\Windows\system32\javaw.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\java.exe
2014-01-07 14:36:39 ----D---- C:\Program Files\Java
2014-01-07 14:10:13 ----D---- C:\Program Files (x86)\IObit
2014-01-06 23:04:50 ----D---- C:\Users\OEM\AppData\Roaming\SUPERAntiSpyware.com
2014-01-06 22:45:55 ----D---- C:\Users\OEM\AppData\Roaming\Spyware Terminator
2014-01-06 22:45:55 ----D---- C:\ProgramData\Spyware Terminator
2014-01-06 22:45:55 ----A---- C:\Windows\system32\drivers\stflt.sys
2014-01-06 22:45:53 ----D---- C:\Program Files (x86)\Spyware Terminator
2014-01-04 02:30:35 ----D---- C:\Users\OEM\AppData\Roaming\HLSW
2014-01-04 00:47:49 ----SHD---- C:\Windows\ftpcache
2013-12-19 12:20:22 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-12-16 19:52:02 ----A---- C:\Windows\Rtcw.INI
2013-12-16 17:17:30 ----D---- C:\Users\OEM\AppData\Roaming\Thinstall

======List of files/folders modified in the last 1 month======

2014-01-13 11:36:01 ----D---- C:\Windows\Temp
2014-01-13 11:33:23 ----A---- C:\Windows\WORDPAD.INI
2014-01-13 11:27:18 ----D---- C:\Windows\Prefetch
2014-01-13 11:27:01 ----RD---- C:\Program Files
2014-01-13 11:09:43 ----D---- C:\Users\OEM\AppData\Roaming\Media Player Classic
2014-01-13 11:09:42 ----D---- C:\Windows\inf
2014-01-13 11:09:41 ----D---- C:\Windows\SoftwareDistribution
2014-01-13 11:09:41 ----D---- C:\Windows\Logs
2014-01-13 11:09:41 ----D---- C:\Windows
2014-01-13 00:49:44 ----D---- C:\Windows\System32
2014-01-12 23:36:50 ----D---- C:\Windows\system32\NDF
2014-01-12 21:58:47 ----D---- C:\Users\OEM\AppData\Roaming\Skype
2014-01-11 11:02:41 ----D---- C:\Users\OEM\AppData\Roaming\AIMP
2014-01-11 08:30:52 ----D---- C:\Windows\system32\config
2014-01-10 18:34:10 ----D---- C:\Programy
2014-01-10 18:33:46 ----SHD---- C:\System Volume Information
2014-01-10 18:28:02 ----D---- C:\Windows\system32\catroot2
2014-01-10 11:54:48 ----D---- C:\Windows\system32\drivers
2014-01-10 11:49:54 ----D---- C:\Windows\SysWOW64
2014-01-10 11:49:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-01-10 11:49:11 ----D---- C:\Windows\Microsoft.NET
2014-01-10 11:48:37 ----SHD---- C:\Windows\Installer
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)
2014-01-10 11:48:32 ----D---- C:\Windows\system32\DriverStore
2014-01-10 11:48:32 ----D---- C:\Windows\system32\catroot
2014-01-10 11:48:13 ----HD---- C:\ProgramData
2014-01-10 11:03:43 ----D---- C:\Windows\debug
2014-01-10 10:37:30 ----RD---- C:\Users
2014-01-10 10:24:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-09 21:43:09 ----D---- C:\Windows\system32\Tasks
2014-01-09 15:59:23 ----D---- C:\Windows\Tasks
2014-01-09 15:52:13 ----DC---- C:\Windows\system32\DRVSTORE
2014-01-09 07:52:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-08 17:42:56 ----D---- C:\Windows\winsxs
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2014-01-07 17:15:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-01-07 16:43:59 ----D---- C:\Users\OEM\AppData\Roaming\IObit
2014-01-07 16:41:42 ----D---- C:\ProgramData\IObit
2014-01-07 15:53:37 ----D---- C:\Windows\Panther
2014-01-07 15:50:51 ----D---- C:\Windows\SYSWOW64\config
2014-01-07 14:24:42 ----D---- C:\Program Files (x86)\Common Files
2014-01-06 22:37:59 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-01-06 18:15:44 ----D---- C:\Hry
2013-12-14 00:56:44 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 82560]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 42624]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2000-01-01 16552]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2011-02-23 18232]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2011-04-06 13440]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-17 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-01 28600]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Programy\Deska\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
R1 OADevice;OADriver; \??\C:\Windows\SysWow64\Drivers\OADriver.sys [2012-10-02 61632]
R1 oahlpXX;Online Armor helper driver; \??\C:\Windows\syswow64\drivers\oahlp64.sys [2012-10-02 62016]
R1 OAmon;OAmon; \??\C:\Windows\SysWOW64\Drivers\OAmon.sys [2012-10-02 40520]
R1 SASDIFSV;SASDIFSV; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-17 108440]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2014-01-06 51496]
R3 AVerAF35;AVerMedia A867 USB DVB-T; C:\Windows\System32\Drivers\AVerAF35.sys [2010-09-21 804224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-01-07 3760344]
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;Logitech QuickCam Pro 5000(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2009-10-07 6379288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2011-04-06 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-07 884952]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2000-01-01 56448]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Programy\Video\MediaCoder\SysInfoX64.sys [2007-09-25 18128]
S3 lvpopf64;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopf64.sys [2009-10-07 271640]
S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2009-10-07 327704]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-07-27 78848]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-07-27 180224]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-01-09 16152]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016]
S4 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe [2013-12-09 881440]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-04 238080]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-19 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2011-04-06 96896]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2010-04-28 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-11-11 341824]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 191000]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-12-19 922912]
R2 OAcat;Online Armor Helper Service; C:\Programy\Ochrana počítače\Online Armor\OAcat.exe [2012-10-02 216072]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-10-22 1149104]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]
R2 SvcOnlineArmor;Online Armor; C:\Programy\Ochrana počítače\Online Armor\oasrv.exe [2012-10-02 4463864]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 AODService;AODService; C:\Programy\Deska\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2010-12-14 128928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-06 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-12-17 1011768]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

AdwCleaner[R0]

# AdwCleaner v3.017 - Report created 13/01/2014 at 21:08:16
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : OEM - BMKOMP
# Running from : C:\Users\OEM\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\user.js
File Found : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\user.js
File Found : C:\Windows\System32\Tasks\NCH Software
Folder Found : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
Folder Found C:\ProgramData\NCH Software
Folder Found C:\ProgramData\Premium
Folder Found C:\Users\OEM\AppData\Local\genienext
Folder Found C:\Users\OEM\AppData\Local\Mobogenie
Folder Found C:\Users\OEM\AppData\Local\OpenCandy
Folder Found C:\Users\OEM\AppData\Roaming\goforfiles
Folder Found C:\Users\OEM\AppData\Roaming\Media Finder
Folder Found C:\Users\OEM\AppData\Roaming\newnext.me
Folder Found C:\Users\OEM\AppData\Roaming\NCH Software
Folder Found C:\Users\OEM\AppData\Roaming\OpenCandy
Folder Found C:\Users\OEM\AppData\Roaming\thinstall
Folder Found C:\Users\OEM\Documents\Mobogenie

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\MediaFinder
Key Found : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Found : HKCU\Software\NCH Software
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\InstallCore
Key Found : [x64] HKCU\Software\MediaFinder
Key Found : [x64] HKCU\Software\NCH Software
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player
Key Found : HKLM\Software\NCH Software

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v4.0 (cs)

[ File : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\prefs.js ]


[ File : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\prefs.js ]

Line Found : user_pref("extensions.gencrawler@some.com.install-event-fired", true);

*************************

AdwCleaner[R0].txt - [3019 octets] - [13/01/2014 21:08:16]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3079 octets] ##########

AdwCleaner[S0]:

# AdwCleaner v3.017 - Report created 13/01/2014 at 21:08:55
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : OEM - BMKOMP
# Running from : C:\Users\OEM\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\Users\OEM\AppData\Local\genienext
Folder Deleted : C:\Users\OEM\AppData\Local\Mobogenie
Folder Deleted : C:\Users\OEM\AppData\Local\OpenCandy
Folder Deleted : C:\Users\OEM\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\OEM\AppData\Roaming\Media Finder
Folder Deleted : C:\Users\OEM\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\OEM\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\OEM\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\OEM\AppData\Roaming\thinstall
Folder Deleted : C:\Users\OEM\Documents\Mobogenie
Folder Deleted : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
File Deleted : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\user.js
File Deleted : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\user.js
File Deleted : C:\Windows\System32\Tasks\NCH Software

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\MediaFinder
Key Deleted : HKCU\Software\NCH Software
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\NCH Software
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v4.0 (cs)

[ File : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick\prefs.js ]


[ File : C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\prefs.js ]

Line Deleted : user_pref("extensions.gencrawler@some.com.install-event-fired", true);

*************************

AdwCleaner[R0].txt - [3175 octets] - [13/01/2014 21:08:16]
AdwCleaner[S0].txt - [2999 octets] - [13/01/2014 21:08:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3059 octets] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.09 (written by random/random)
Run by OEM at 2014-01-13 22:45:43
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 672 GB (70%) free of 954 GB
Total RAM: 4095 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:45:57, on 13.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Programy\Ochrana počítače\Online Armor\oaui.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\trend micro\OEM.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: *.dell.com
O15 - Trusted Zone: http://www.samsungsetup.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: horvzza - Invalid registry found
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AODService - Unknown owner - C:\Programy\Deska\AMD\OverDrive\AODAssist.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Online Armor Helper Service (OAcat) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\OAcat.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\oasrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8768 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Programy\Ochrana počítače\Online Armor\OAcat.exe"
"C:\Programy\Ochrana počítače\Online Armor\oasrv.exe"
atieclxx
"C:\PROGRAM FILES\NVIDIA CORPORATION\DISPLAY\NVXDSYNC.EXE"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2996
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
"C:\Programy\Ochrana počítače\Online Armor\oaui.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "600162332-945684918-1707416162-10704863177653713576519533149852898612121367226
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000790
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d039c223-feab-4b52-8051-08b8d934b319 -SystemEventPortName:HostProcess-71a535d6-0387-4290-a7c9-b993e8914a2e -IoCancelEventPortName:HostProcess-0349df70-310a-4942-8cce-26badba5ac2a -NonStateChangingEventPortName:HostProcess-f1b10957-c0e1-42ba-a8b1-6ff982e518b6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f5472fe4-2aa1-4512-9bb9-5aed35419f0d -DeviceGroupId:WpdFsGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\OEM\Desktop\Stažené soubory\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Driver Booster Update.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll


C:\Programy\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Programy\Mozilla Firefox\searchplugins\
babylon.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Programy\Úklid počítače\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-01-07 2486592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-07 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-07 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"@OnlineArmor GUI"=C:\Programy\Ochrana počítače\Online Armor\oaui.exe [2012-10-02 2415104]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-10-22 2777736]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-10-22 3684488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\horvzza]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
c:\program files (x86)\nvidia corporation\update core\nvbackend.exe [2013-12-10 2279712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
c:\program files\realtek\audio\hda\rtkngui64.exe [2014-01-07 7205592]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux1"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-01-13 21:08:05 ----D---- C:\AdwCleaner
2014-01-13 18:31:18 ----D---- C:\Users\OEM\AppData\Roaming\Malwarebytes
2014-01-13 18:30:27 ----D---- C:\ProgramData\Malwarebytes
2014-01-13 18:30:26 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-01-13 11:27:01 ----D---- C:\Program Files\trend micro
2014-01-13 11:27:00 ----D---- C:\rsit
2014-01-10 11:49:53 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-01-10 11:49:53 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-01-10 11:49:14 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-01-10 11:49:14 ----A---- C:\Windows\system32\nvspcap64.dll
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-01-10 11:48:13 ----D---- C:\ProgramData\NVIDIA
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvvsvc.exe
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvsvc64.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvshext.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvmctray.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvcpl.dll
2014-01-10 11:46:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglv64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvinitx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvIFR64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdap64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvFBC64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvapi64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-01-10 11:04:42 ----D---- C:\Program Files\NVIDIA Corporation
2014-01-10 10:41:48 ----D---- C:\ProgramData\NVIDIA Corporation
2014-01-09 15:52:54 ----D---- C:\Program Files (x86)\AMD APP
2014-01-09 15:52:13 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2014-01-09 15:52:01 ----D---- C:\Program Files\ATI
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\AtiPcie64.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2014-01-09 15:49:51 ----D---- C:\ATI Technologies
2014-01-09 15:19:33 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2014-01-09 15:19:11 ----D---- C:\Program Files (x86)\SlimDrivers
2014-01-08 17:42:46 ----D---- C:\Program Files (x86)\Seznam.cz
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2014-01-07 17:16:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tossaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\toseaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosasfapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosade.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sltech64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slprp64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slcnt64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sl3apo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFNHK64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFAPO64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkApi64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RTCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoRes64.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EED64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-01-07 17:15:22 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MISS_APO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\FMAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPP64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPO64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPD64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\audioLibVc.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAR64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2014-01-07 17:15:00 ----A---- C:\Windows\system32\nvhdagenco64.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispgenco6433182.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispco6433182.dll
2014-01-07 16:23:23 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-01-07 15:07:56 ----D---- C:\ProgramData\ProductData
2014-01-07 15:07:47 ----D---- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 14:50:28 ----D---- C:\Users\OEM\AppData\Roaming\Apple Computer
2014-01-07 14:37:12 ----D---- C:\ProgramData\Oracle
2014-01-07 14:36:57 ----A---- C:\Windows\system32\javaws.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-07 14:36:51 ----A---- C:\Windows\system32\javaw.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\java.exe
2014-01-07 14:36:39 ----D---- C:\Program Files\Java
2014-01-07 14:10:13 ----D---- C:\Program Files (x86)\IObit
2014-01-06 23:04:50 ----D---- C:\Users\OEM\AppData\Roaming\SUPERAntiSpyware.com
2014-01-06 22:45:55 ----D---- C:\Users\OEM\AppData\Roaming\Spyware Terminator
2014-01-06 22:45:55 ----D---- C:\ProgramData\Spyware Terminator
2014-01-06 22:45:55 ----A---- C:\Windows\system32\drivers\stflt.sys
2014-01-06 22:45:53 ----D---- C:\Program Files (x86)\Spyware Terminator
2014-01-04 02:30:35 ----D---- C:\Users\OEM\AppData\Roaming\HLSW
2014-01-04 00:47:49 ----SHD---- C:\Windows\ftpcache
2013-12-19 12:20:22 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-12-16 19:52:02 ----A---- C:\Windows\Rtcw.INI

======List of files/folders modified in the last 1 month======

2014-01-13 22:45:56 ----D---- C:\Windows\Prefetch
2014-01-13 22:45:51 ----D---- C:\Windows\Temp
2014-01-13 21:08:56 ----HD---- C:\ProgramData
2014-01-13 18:40:35 ----D---- C:\Windows\inf
2014-01-13 18:31:50 ----D---- C:\Users\OEM\AppData\Roaming\Skype
2014-01-13 18:30:26 ----D---- C:\Windows\system32\drivers
2014-01-13 15:42:13 ----D---- C:\Windows
2014-01-13 11:33:23 ----A---- C:\Windows\WORDPAD.INI
2014-01-13 11:27:01 ----RD---- C:\Program Files
2014-01-13 11:09:43 ----D---- C:\Users\OEM\AppData\Roaming\Media Player Classic
2014-01-13 11:09:41 ----D---- C:\Windows\SoftwareDistribution
2014-01-13 11:09:41 ----D---- C:\Windows\Logs
2014-01-13 00:49:44 ----D---- C:\Windows\System32
2014-01-12 23:36:50 ----D---- C:\Windows\system32\NDF
2014-01-11 11:02:41 ----D---- C:\Users\OEM\AppData\Roaming\AIMP
2014-01-11 08:30:52 ----D---- C:\Windows\system32\config
2014-01-10 18:34:10 ----D---- C:\Programy
2014-01-10 18:33:46 ----SHD---- C:\System Volume Information
2014-01-10 18:28:02 ----D---- C:\Windows\system32\catroot2
2014-01-10 11:49:54 ----D---- C:\Windows\SysWOW64
2014-01-10 11:49:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-01-10 11:49:11 ----D---- C:\Windows\Microsoft.NET
2014-01-10 11:48:37 ----SHD---- C:\Windows\Installer
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)
2014-01-10 11:48:32 ----D---- C:\Windows\system32\DriverStore
2014-01-10 11:48:32 ----D---- C:\Windows\system32\catroot
2014-01-10 11:03:43 ----D---- C:\Windows\debug
2014-01-10 10:37:30 ----RD---- C:\Users
2014-01-10 10:24:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-09 21:43:09 ----D---- C:\Windows\system32\Tasks
2014-01-09 15:59:23 ----D---- C:\Windows\Tasks
2014-01-09 15:52:13 ----DC---- C:\Windows\system32\DRVSTORE
2014-01-09 07:52:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-08 17:42:56 ----D---- C:\Windows\winsxs
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2014-01-07 17:15:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-01-07 16:43:59 ----D---- C:\Users\OEM\AppData\Roaming\IObit
2014-01-07 16:41:42 ----D---- C:\ProgramData\IObit
2014-01-07 15:53:37 ----D---- C:\Windows\Panther
2014-01-07 15:50:51 ----D---- C:\Windows\SYSWOW64\config
2014-01-07 14:24:42 ----D---- C:\Program Files (x86)\Common Files
2014-01-06 22:37:59 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-01-06 18:15:44 ----D---- C:\Hry
2013-12-14 00:56:44 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 82560]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 42624]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2000-01-01 16552]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2011-02-23 18232]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2011-04-06 13440]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-17 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-01 28600]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Programy\Deska\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
R1 OADevice;OADriver; \??\C:\Windows\SysWow64\Drivers\OADriver.sys [2012-10-02 61632]
R1 oahlpXX;Online Armor helper driver; \??\C:\Windows\syswow64\drivers\oahlp64.sys [2012-10-02 62016]
R1 OAmon;OAmon; \??\C:\Windows\SysWOW64\Drivers\OAmon.sys [2012-10-02 40520]
R1 SASDIFSV;SASDIFSV; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-17 108440]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2014-01-06 51496]
R3 AVerAF35;AVerMedia A867 USB DVB-T; C:\Windows\System32\Drivers\AVerAF35.sys [2010-09-21 804224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-01-07 3760344]
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;Logitech QuickCam Pro 5000(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2009-10-07 6379288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2011-04-06 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-07 884952]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2000-01-01 56448]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Programy\Video\MediaCoder\SysInfoX64.sys [2007-09-25 18128]
S3 lvpopf64;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopf64.sys [2009-10-07 271640]
S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2009-10-07 327704]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-07-27 78848]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-07-27 180224]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-01-09 16152]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016]
S4 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe [2013-12-09 881440]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-04 238080]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-19 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2011-04-06 96896]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2010-04-28 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-11-11 341824]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 191000]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-12-19 922912]
R2 OAcat;Online Armor Helper Service; C:\Programy\Ochrana počítače\Online Armor\OAcat.exe [2012-10-02 216072]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-10-22 1149104]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]
R2 SvcOnlineArmor;Online Armor; C:\Programy\Ochrana počítače\Online Armor\oasrv.exe [2012-10-02 4463864]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 AODService;AODService; C:\Programy\Deska\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2010-12-14 128928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-06 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-12-17 1011768]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT. Doporučuji odinstalovat AdvancedSystemCare. Software vidí czhyby tam, kde nejsou.

takže po prvním spuštění toho OTM se stala asi náká chybka, protože nejdřív to v záhlaví napsalo že program neodpovídá, pak že se stala kritická chyba a že bude počítač restartován. Po restaru se objevily na ploše a nejem tam skryté soubory, protože že se mi v nastavení složky odškrtla možnost "Skrýt chráněné soubory operačního systému" Spustil jsem znovu OTM a tentokrát už vše proběhlo korektně.

Log RSIT

Logfile of random's system information tool 1.09 (written by random/random)
Run by OEM at 2014-01-13 23:22:10
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 673 GB (71%) free of 954 GB
Total RAM: 4095 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:22:25, on 13.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Programy\Ochrana počítače\Online Armor\oaui.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe
C:\Program Files\trend micro\OEM.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: *.dell.com
O15 - Trusted Zone: http://www.samsungsetup.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: horvzza - Invalid registry found
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AODService - Unknown owner - C:\Programy\Deska\AMD\OverDrive\AODAssist.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Online Armor Helper Service (OAcat) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\OAcat.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Unknown owner - C:\Programy\Ochrana počítače\Online Armor\oasrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8691 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Programy\Ochrana počítače\Online Armor\OAcat.exe"
"C:\Programy\Ochrana počítače\Online Armor\oasrv.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2332
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000006ec
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
atieclxx
"C:\PROGRAM FILES\NVIDIA CORPORATION\DISPLAY\NVXDSYNC.EXE"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
taskeng.exe {729CA0F6-8B0E-4675-8A69-566DC32BB7C6}
\??\C:\Windows\system32\conhost.exe "-1693350706-96562605991341369-339677262-3282480611896750649141477531634969134
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskeng.exe {62C8880E-F929-4B57-941F-2F648CE82D53}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1b0c7a09-4b12-4116-85f2-09fd8828634e -SystemEventPortName:HostProcess-f9b7cc29-0a6c-4278-9752-0b579394f2ed -IoCancelEventPortName:HostProcess-d2e147f2-e83b-421f-bfb7-23d299e7db46 -NonStateChangingEventPortName:HostProcess-45a6ee9c-e2a0-44d3-aba2-a5bd1dfeb605 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:81213c0b-68fc-4656-8e09-2f5b25bdf1d8 -DeviceGroupId:WpdFsGroup
"C:\Programy\Ochrana počítače\Online Armor\oaui.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
"C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Programy\Ochrana počítače\Online Armor\OAhlp.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\OEM\Desktop\Stažené soubory\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Driver Booster Update.job

=========Mozilla firefox=========

ProfilePath - C:\Users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\7cjv2f04.chatnick

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.170 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll


C:\Programy\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Programy\Mozilla Firefox\searchplugins\
babylon.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Programy\Úklid počítače\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-01-07 2486592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-01-07 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-01-07 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"@OnlineArmor GUI"=C:\Programy\Ochrana počítače\Online Armor\oaui.exe [2012-10-02 2415104]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2013-10-22 2777736]
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [2013-10-22 3684488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2013-12-10 1100248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\horvzza]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NextLive]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
c:\program files (x86)\nvidia corporation\update core\nvbackend.exe [2013-12-10 2279712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
c:\program files\realtek\audio\hda\rtkngui64.exe [2014-01-07 7205592]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-17 684600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux1"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-01-13 23:10:43 ----D---- C:\_OTM
2014-01-13 21:08:05 ----D---- C:\AdwCleaner
2014-01-13 18:31:18 ----D---- C:\Users\OEM\AppData\Roaming\Malwarebytes
2014-01-13 18:30:27 ----D---- C:\ProgramData\Malwarebytes
2014-01-13 18:30:26 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-01-13 11:27:01 ----D---- C:\Program Files\trend micro
2014-01-13 11:27:00 ----D---- C:\rsit
2014-01-10 11:49:53 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-01-10 11:49:53 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-01-10 11:49:52 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-01-10 11:49:50 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-01-10 11:49:14 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-01-10 11:49:14 ----A---- C:\Windows\system32\nvspcap64.dll
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-01-10 11:48:13 ----D---- C:\ProgramData\NVIDIA
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvvsvc.exe
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvsvc64.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvshext.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvmctray.dll
2014-01-10 11:47:25 ----A---- C:\Windows\system32\nvcpl.dll
2014-01-10 11:46:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvopencl.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglv64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvinitx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvIFR64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdap64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\NvFBC64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispgenco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvdispco6433221.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvid.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcuda.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvcompiler.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\nvapi64.dll
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-01-10 11:46:13 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-01-10 11:04:42 ----D---- C:\Program Files\NVIDIA Corporation
2014-01-10 10:41:48 ----D---- C:\ProgramData\NVIDIA Corporation
2014-01-09 15:52:54 ----D---- C:\Program Files (x86)\AMD APP
2014-01-09 15:52:13 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2014-01-09 15:52:01 ----D---- C:\Program Files\ATI
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\AtiPcie64.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2014-01-09 15:52:01 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2014-01-09 15:49:51 ----D---- C:\ATI Technologies
2014-01-09 15:19:33 ----A---- C:\Windows\system32\drivers\SWDUMon.sys
2014-01-09 15:19:11 ----D---- C:\Program Files (x86)\SlimDrivers
2014-01-08 17:42:46 ----D---- C:\Program Files (x86)\Seznam.cz
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2014-01-07 17:16:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tossaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\toseaeapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosasfapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tosade.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\tadefxapo.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sltech64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slprp64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\slcnt64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\sl3apo64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFNHK64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\SFAPO64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtkApi64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RTCOM64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoRes64.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EED64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-01-07 17:15:23 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-01-07 17:15:22 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MISS_APO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\FMAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPP64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPO64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPD64A.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\DDPA64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\audioLibVc.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAR64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AERTAC64.dll
2014-01-07 17:15:22 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2014-01-07 17:15:00 ----A---- C:\Windows\system32\nvhdagenco64.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispgenco6433182.dll
2014-01-07 17:08:08 ----A---- C:\Windows\system32\nvdispco6433182.dll
2014-01-07 16:23:23 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2014-01-07 15:07:56 ----D---- C:\ProgramData\ProductData
2014-01-07 15:07:47 ----D---- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 14:50:28 ----D---- C:\Users\OEM\AppData\Roaming\Apple Computer
2014-01-07 14:37:12 ----D---- C:\ProgramData\Oracle
2014-01-07 14:36:57 ----A---- C:\Windows\system32\javaws.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-07 14:36:51 ----A---- C:\Windows\system32\javaw.exe
2014-01-07 14:36:51 ----A---- C:\Windows\system32\java.exe
2014-01-07 14:36:39 ----D---- C:\Program Files\Java
2014-01-07 14:10:13 ----D---- C:\Program Files (x86)\IObit
2014-01-06 23:04:50 ----D---- C:\Users\OEM\AppData\Roaming\SUPERAntiSpyware.com
2014-01-06 22:45:55 ----D---- C:\Users\OEM\AppData\Roaming\Spyware Terminator
2014-01-06 22:45:55 ----D---- C:\ProgramData\Spyware Terminator
2014-01-06 22:45:55 ----A---- C:\Windows\system32\drivers\stflt.sys
2014-01-06 22:45:53 ----D---- C:\Program Files (x86)\Spyware Terminator
2014-01-04 02:30:35 ----D---- C:\Users\OEM\AppData\Roaming\HLSW
2014-01-04 00:47:49 ----SHD---- C:\Windows\ftpcache
2013-12-19 12:20:22 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-12-16 19:52:02 ----A---- C:\Windows\Rtcw.INI

======List of files/folders modified in the last 1 month======

2014-01-13 23:22:16 ----D---- C:\Windows\Temp
2014-01-13 23:20:59 ----D---- C:\Windows\Prefetch
2014-01-13 23:11:00 ----D---- C:\Windows\Tasks
2014-01-13 21:08:56 ----HD---- C:\ProgramData
2014-01-13 18:40:35 ----D---- C:\Windows\inf
2014-01-13 18:31:50 ----D---- C:\Users\OEM\AppData\Roaming\Skype
2014-01-13 18:30:26 ----D---- C:\Windows\system32\drivers
2014-01-13 15:42:13 ----D---- C:\Windows
2014-01-13 11:33:23 ----A---- C:\Windows\WORDPAD.INI
2014-01-13 11:27:01 ----RD---- C:\Program Files
2014-01-13 11:09:43 ----D---- C:\Users\OEM\AppData\Roaming\Media Player Classic
2014-01-13 11:09:41 ----D---- C:\Windows\SoftwareDistribution
2014-01-13 11:09:41 ----D---- C:\Windows\Logs
2014-01-13 00:49:44 ----D---- C:\Windows\System32
2014-01-12 23:36:50 ----D---- C:\Windows\system32\NDF
2014-01-11 11:02:41 ----D---- C:\Users\OEM\AppData\Roaming\AIMP
2014-01-11 08:30:52 ----D---- C:\Windows\system32\config
2014-01-10 18:34:10 ----D---- C:\Programy
2014-01-10 18:33:46 ----SHD---- C:\System Volume Information
2014-01-10 18:28:02 ----D---- C:\Windows\system32\catroot2
2014-01-10 11:49:54 ----D---- C:\Windows\SysWOW64
2014-01-10 11:49:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-01-10 11:49:11 ----D---- C:\Windows\Microsoft.NET
2014-01-10 11:48:37 ----SHD---- C:\Windows\Installer
2014-01-10 11:48:35 ----D---- C:\Program Files (x86)
2014-01-10 11:48:32 ----D---- C:\Windows\system32\DriverStore
2014-01-10 11:48:32 ----D---- C:\Windows\system32\catroot
2014-01-10 11:03:43 ----D---- C:\Windows\debug
2014-01-10 10:37:30 ----RD---- C:\Users
2014-01-10 10:24:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-09 21:43:09 ----D---- C:\Windows\system32\Tasks
2014-01-09 15:52:13 ----DC---- C:\Windows\system32\DRVSTORE
2014-01-09 07:52:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-08 17:42:56 ----D---- C:\Windows\winsxs
2014-01-07 17:16:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2014-01-07 17:15:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-01-07 16:43:59 ----D---- C:\Users\OEM\AppData\Roaming\IObit
2014-01-07 16:41:42 ----D---- C:\ProgramData\IObit
2014-01-07 15:53:37 ----D---- C:\Windows\Panther
2014-01-07 15:50:51 ----D---- C:\Windows\SYSWOW64\config
2014-01-07 14:24:42 ----D---- C:\Program Files (x86)\Common Files
2014-01-06 22:37:59 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-01-06 18:15:44 ----D---- C:\Hry
2013-12-14 00:56:44 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 82560]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 42624]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2000-01-01 16552]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2011-02-23 18232]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2011-04-06 13440]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-17 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-10-01 28600]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Programy\Deska\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
R1 OADevice;OADriver; \??\C:\Windows\SysWow64\Drivers\OADriver.sys [2012-10-02 61632]
R1 oahlpXX;Online Armor helper driver; \??\C:\Windows\syswow64\drivers\oahlp64.sys [2012-10-02 62016]
R1 OAmon;OAmon; \??\C:\Windows\SysWOW64\Drivers\OAmon.sys [2012-10-02 40520]
R1 SASDIFSV;SASDIFSV; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-17 108440]
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\Windows\system32\DRIVERS\stflt.sys [2014-01-06 51496]
R3 AVerAF35;AVerMedia A867 USB DVB-T; C:\Windows\System32\Drivers\AVerAF35.sys [2010-09-21 804224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-01-07 3760344]
R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;Logitech QuickCam Pro 5000(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2009-10-07 6379288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2011-04-06 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-05 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-07 884952]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2000-01-01 56448]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-04 11922944]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-04 359936]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Programy\Video\MediaCoder\SysInfoX64.sys [2007-09-25 18128]
S3 lvpopf64;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopf64.sys [2009-10-07 271640]
S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [2009-10-07 30232]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2009-10-07 327704]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-07-27 78848]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-07-27 180224]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2014-01-09 16152]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016]
S4 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\PROGRAMY\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe [2013-12-09 881440]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-04 238080]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-19 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-17 440376]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2011-04-06 96896]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2010-04-28 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-12-07 397312]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-11-11 341824]
R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2009-10-07 191000]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2013-12-10 1494304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 15129376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-12-19 922912]
R2 OAcat;Online Armor Helper Service; C:\Programy\Ochrana počítače\Online Armor\OAcat.exe [2012-10-02 216072]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2013-10-22 1149104]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]
R2 SvcOnlineArmor;Online Armor; C:\Programy\Ochrana počítače\Online Armor\oasrv.exe [2012-10-02 4463864]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 AODService;AODService; C:\Programy\Deska\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2010-12-14 128928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-09-19 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-06 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-12-17 1011768]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Smazáno. Nastala nějaká změna?

dneska ráno, jak jsem zase nechal počítač asi hodinu nečinný, tak po příchodu opět ten internet zpomalený. Webové stránky se načítají dlouho a nenaběhnou, nelze se přihlásit na Skype...má to jakoby snahu, ale je to jako kdyby úplně vypadl net. Po restartu všechno lítá bezvadně. Ale nedělá to vždy..teď odpoledne jsem tady taky nebyl delší dobu, přišel jsem a je to v pořádku. Mimochodem, měl jsem tam nějakou nebezpečnou havěť někde?

Nějaké AdWary a zbytečnosti.

takže závěr je jaký?..je to čistý a příčina je jinde?

Ještě zkusíme tenhle sken:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

Tak sken proveden, jenom upozorňuju, že při spuštění vyjela hláška Aviry, něco jako "registry blocked"...rezidentní štít byl vypnut, Avira jako taková vypnout nejde.

ComboFix 14-01-14.02 - OEM 14.01.2014 20:59:29.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4095.2814 [GMT 1:00]
Spuštěný z: c:\users\OEM\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: Online Armor Firewall *Enabled* {BD3F5FCA-866B-1E2E-0A68-58900A751EA1}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Local Settings\Temp
c:\windows\SysWow64\pthreadVC.dll
c:\windows\wininit.ini
c:\windows\XSxS
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-14 do 2014-01-14 )))))))))))))))))))))))))))))))
.
.
2014-01-14 20:05 . 2014-01-14 20:05 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-14 14:59 . 2014-01-14 14:59 35368 ----a-w- c:\windows\system32\drivers\oanet.sys
2014-01-14 08:35 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0E956E54-924F-4F63-BBE1-039BDE355DC3}\mpengine.dll
2014-01-13 22:10 . 2014-01-13 22:10 -------- d-----w- C:\_OTM
2014-01-13 20:08 . 2014-01-13 20:08 -------- d-----w- C:\AdwCleaner
2014-01-13 17:31 . 2014-01-13 17:31 -------- d-----w- c:\users\OEM\AppData\Roaming\Malwarebytes
2014-01-13 17:30 . 2014-01-13 17:30 -------- d-----w- c:\programdata\Malwarebytes
2014-01-13 17:30 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-01-13 10:27 . 2014-01-13 22:22 -------- d-----w- c:\program files\trend micro
2014-01-13 10:27 . 2014-01-13 10:36 -------- d-----w- C:\rsit
2014-01-10 10:50 . 2014-01-10 10:50 -------- d-----w- c:\users\OEM\AppData\Local\NVIDIA Corporation
2014-01-10 10:49 . 2010-05-26 10:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 511328 ----a-w- c:\windows\system32\d3dx10_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 470880 ----a-w- c:\windows\SysWow64\d3dx10_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 2401112 ----a-w- c:\windows\system32\D3DX9_43.dll
2014-01-10 10:49 . 2013-12-10 02:15 982232 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-01-10 10:49 . 2013-12-10 02:14 1100248 ----a-w- c:\windows\system32\nvspcap64.dll
2014-01-10 10:49 . 2014-01-10 11:19 -------- d-----w- c:\users\OEM\AppData\Local\NVIDIA
2014-01-10 10:48 . 2014-01-10 10:48 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2014-01-10 10:48 . 2014-01-14 20:06 -------- d-----w- c:\programdata\NVIDIA
2014-01-10 10:47 . 2013-12-19 18:53 6671648 ----a-w- c:\windows\system32\nvcpl.dll
2014-01-10 10:47 . 2013-12-19 18:53 3490080 ----a-w- c:\windows\system32\nvsvc64.dll
2014-01-10 10:47 . 2013-12-19 18:53 922912 ----a-w- c:\windows\system32\nvvsvc.exe
2014-01-10 10:47 . 2013-12-19 18:53 63776 ----a-w- c:\windows\system32\nvshext.dll
2014-01-10 10:47 . 2013-12-19 18:53 386336 ----a-w- c:\windows\system32\nvmctray.dll
2014-01-10 10:47 . 2013-12-19 05:01 3539040 ----a-w- c:\windows\system32\nvcoproc.bin
2014-01-10 10:04 . 2014-01-10 10:49 -------- d-----w- c:\program files\NVIDIA Corporation
2014-01-10 09:41 . 2014-01-10 10:52 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-01-09 14:52 . 2014-01-09 14:52 -------- d-----w- c:\program files (x86)\AMD APP
2014-01-09 14:52 . 2000-01-01 00:00 56448 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-01-09 14:52 . 2014-01-09 14:52 -------- d-----w- c:\program files\ATI
2014-01-09 14:52 . 2000-01-01 00:00 82560 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-01-09 14:52 . 2000-01-01 00:00 42624 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-01-09 14:52 . 2000-01-01 00:00 16552 ----a-w- c:\windows\system32\drivers\AtiPcie64.sys
2014-01-09 14:49 . 2014-01-09 14:52 -------- d-----w- C:\ATI Technologies
2014-01-09 14:19 . 2014-01-09 14:59 16152 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2014-01-09 14:19 . 2014-01-09 14:19 -------- d-----w- c:\users\OEM\AppData\Local\SlimWare Utilities Inc
2014-01-09 14:19 . 2014-01-09 14:19 -------- d-----w- c:\program files (x86)\SlimDrivers
2014-01-08 16:43 . 2014-01-08 16:43 -------- d-----w- c:\users\OEM\.android
2014-01-08 16:43 . 2014-01-08 16:43 -------- d-----w- c:\users\OEM\AppData\Local\cache
2014-01-08 16:42 . 2014-01-08 17:01 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-01-07 16:16 . 2014-01-07 16:16 884952 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-07 16:16 . 2014-01-07 16:16 74456 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-07 16:08 . 2014-01-07 16:08 1884448 ----a-w- c:\windows\system32\nvdispco6433182.dll
2014-01-07 16:08 . 2014-01-07 16:08 1511712 ----a-w- c:\windows\system32\nvdispgenco6433182.dll
2014-01-07 15:23 . 2013-06-27 17:05 27456 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-01-07 14:07 . 2014-01-14 15:03 -------- d-----w- c:\programdata\ProductData
2014-01-07 14:07 . 2014-01-07 14:07 -------- d-----w- c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 13:50 . 2014-01-07 14:08 -------- d-----w- c:\users\OEM\AppData\Roaming\Apple Computer
2014-01-07 13:37 . 2014-01-07 13:37 -------- d-----w- c:\programdata\Oracle
2014-01-07 13:36 . 2014-01-07 13:36 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-07 13:36 . 2014-01-07 13:36 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-07 13:36 . 2014-01-07 13:36 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-07 13:36 . 2014-01-07 13:36 189352 ----a-w- c:\windows\system32\java.exe
2014-01-07 13:36 . 2014-01-07 13:36 -------- d-----w- c:\program files\Java
2014-01-07 13:10 . 2014-01-09 21:09 -------- d-----w- c:\program files (x86)\IObit
2014-01-06 22:04 . 2014-01-06 22:04 -------- d-----w- c:\users\OEM\AppData\Roaming\SUPERAntiSpyware.com
2014-01-06 21:45 . 2014-01-14 18:23 -------- d-----w- c:\programdata\Spyware Terminator
2014-01-06 21:45 . 2014-01-06 21:45 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2014-01-06 21:45 . 2014-01-06 21:45 -------- d-----w- c:\users\OEM\AppData\Roaming\Spyware Terminator
2014-01-06 21:45 . 2014-01-06 21:46 -------- d-----w- c:\program files (x86)\Spyware Terminator
2014-01-04 01:30 . 2014-01-07 15:40 -------- d-----w- c:\users\OEM\AppData\Roaming\HLSW
2014-01-03 23:49 . 2014-01-03 23:49 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2014-01-03 23:49 . 2014-01-03 23:49 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2014-01-03 23:49 . 2002-12-05 13:12 692224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2014-01-03 23:49 . 2002-12-05 13:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2014-01-03 23:49 . 2002-12-02 14:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2014-01-03 23:49 . 2002-12-02 12:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2014-01-03 23:49 . 2002-12-02 12:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2014-01-03 23:47 . 2014-01-03 23:47 -------- d-sh--w- c:\windows\ftpcache
2013-12-19 11:20 . 2013-12-19 11:20 590112 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-12-16 18:52 . 2001-06-19 16:53 266293 ----a-w- c:\windows\SysWow64\temp.001
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-14 14:59 . 2013-07-05 20:28 52360 ----a-w- c:\windows\SysWow64\drivers\OAmon.sys
2014-01-14 14:59 . 2013-07-05 20:28 64720 ----a-w- c:\windows\SysWow64\drivers\OADriver.sys
2014-01-14 14:58 . 2013-07-05 20:28 62008 ----a-w- c:\windows\SysWow64\drivers\oahlp64.sys
2014-01-07 16:16 . 2011-03-31 09:16 108760 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-12-17 12:46 . 2013-07-05 20:24 84720 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-12-17 12:46 . 2013-07-05 20:17 131576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-12-17 12:46 . 2013-07-05 20:17 108440 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-12-11 11:16 . 2011-04-08 15:56 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-10 23:35 . 2012-04-08 08:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 23:35 . 2011-05-22 19:28 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-26 11:54 . 2013-12-11 11:18 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-11 11:18 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-11 11:18 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-11 11:18 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-11 11:18 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-11 11:18 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-11 11:18 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-11 11:18 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-11 11:18 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-11 11:18 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-11 11:18 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-11 11:18 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-11 11:18 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-11 11:18 218624 ----a-w- c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-11 11:18 5769216 ----a-w- c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-11 11:18 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-11 11:18 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-11 11:18 1995264 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-11 11:18 12996608 ----a-w- c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-11 11:18 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-11 11:18 2334208 ----a-w- c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-11 11:18 1395200 ----a-w- c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-11 11:18 817664 ----a-w- c:\windows\system32\ieapfltr.dll
2013-11-26 06:33 . 2013-12-11 11:18 1820160 ----a-w- c:\windows\SysWow64\wininet.dll
2013-11-23 18:26 . 2013-12-11 11:15 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-11 11:15 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-19 02:33 . 2011-03-31 09:20 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-17 12:06 . 2013-11-17 12:06 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-17 12:06 . 2013-11-17 12:06 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-17 12:06 . 2013-11-17 12:06 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-17 12:06 . 2013-11-17 12:06 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-17 12:06 . 2013-11-17 12:06 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-17 12:06 . 2013-11-17 12:06 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-17 12:06 . 2013-11-17 12:06 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-17 12:06 . 2013-11-17 12:06 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-17 12:06 . 2013-11-17 12:06 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-17 12:06 . 2013-11-17 12:06 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-17 12:06 . 2013-11-17 12:06 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-17 12:06 . 2013-11-17 12:06 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-17 12:06 . 2013-11-17 12:06 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-17 12:06 . 2013-11-17 12:06 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-17 12:06 . 2013-11-17 12:06 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-17 12:06 . 2013-11-17 12:06 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-17 12:06 . 2013-11-17 12:06 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-17 12:06 . 2013-11-17 12:06 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-17 12:06 . 2013-11-17 12:06 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-17 12:06 . 2013-11-17 12:06 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-17 12:06 . 2013-11-17 12:06 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-17 12:06 . 2013-11-17 12:06 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-17 12:06 . 2013-11-17 12:06 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-17 12:06 . 2013-11-17 12:06 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-17 12:06 . 2013-11-17 12:06 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-17 12:06 . 2013-11-17 12:06 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-17 12:06 . 2013-11-17 12:06 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-17 12:06 . 2013-11-17 12:06 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-17 12:06 . 2013-11-17 12:06 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-17 12:06 . 2013-11-17 12:06 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-17 12:06 . 2013-11-17 12:06 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-17 12:06 . 2013-11-17 12:06 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-17 12:06 . 2013-11-17 12:06 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-17 12:06 . 2013-11-17 12:06 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-17 12:06 . 2013-11-17 12:06 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-17 12:06 . 2013-11-17 12:06 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-17 12:06 . 2013-11-17 12:06 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-17 12:06 . 2013-11-17 12:06 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-17 12:06 . 2013-11-17 12:06 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-17 12:06 . 2013-11-17 12:06 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-17 12:06 . 2013-11-17 12:06 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-17 12:06 . 2013-11-17 12:06 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-17 12:06 . 2013-11-17 12:06 413696 ----a-w- c:\windows\system32\html.iec
2013-11-17 12:06 . 2013-11-17 12:06 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-17 12:06 . 2013-11-17 12:06 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-17 12:06 . 2013-11-17 12:06 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-17 12:06 . 2013-11-17 12:06 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-17 12:06 . 2013-11-17 12:06 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-17 12:06 . 2013-11-17 12:06 235520 ----a-w- c:\windows\system32\url.dll
2013-11-17 12:06 . 2013-11-17 12:06 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-17 12:06 . 2013-11-17 12:06 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-17 12:06 . 2013-11-17 12:06 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-17 12:06 . 2013-11-17 12:06 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-17 12:06 . 2013-11-17 12:06 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-11-17 12:06 . 2013-11-17 12:06 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-17 12:06 . 2013-11-17 12:06 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-12 02:23 . 2013-12-11 11:15 2048 ----a-w- c:\windows\system32\tzres.dll
2013-11-12 02:07 . 2013-12-11 11:15 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 02:32 . 2013-12-11 11:15 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-10-30 02:19 . 2013-12-11 11:15 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-12-17 684600]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R1 oahlpXX;Online Armor helper driver;c:\windows\syswow64\drivers\oahlp64.sys;c:\windows\syswow64\drivers\oahlp64.sys [x]
R2 AODService;AODService;c:\programy\Deska\AMD\OverDrive\AODAssist.exe;c:\programy\Deska\AMD\OverDrive\AODAssist.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SvcOnlineArmor;Online Armor;c:\programy\Ochrana počítače\Online Armor\oasrv.exe;c:\programy\Ochrana počítače\Online Armor\oasrv.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys;c:\windows\SYSNATIVE\DRIVERS\lvpopf64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 HWiNFO32;HWiNFO32 Kernel Driver;c:\programy\Deska\HWiNFO32\HWiNFO64A.SYS;c:\programy\Deska\HWiNFO32\HWiNFO64A.SYS [x]
S1 OADevice;OADriver;c:\windows\SysWow64\Drivers\OADriver.sys;c:\windows\SysWow64\Drivers\OADriver.sys [x]
S1 OAmon;OAmon;c:\windows\SysWOW64\Drivers\OAmon.sys;c:\windows\SysWOW64\Drivers\OAmon.sys [x]
S1 SASDIFSV;SASDIFSV;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\programy\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE;c:\programy\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe;c:\programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 AVerRemote;AVerRemote;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [x]
S2 AVerScheduleService;AVerScheduleService;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OAcat;Online Armor Helper Service;c:\programy\Ochrana počítače\Online Armor\OAcat.exe;c:\programy\Ochrana počítače\Online Armor\OAcat.exe [x]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys;c:\windows\SYSNATIVE\DRIVERS\stflt.sys [x]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 AVerAF35;AVerMedia A867 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys;c:\windows\SYSNATIVE\Drivers\AVerAF35.sys [x]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys;c:\windows\SYSNATIVE\DRIVERS\LVPr2M64.sys [x]
S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x]
S3 LVUVC64;Logitech QuickCam Pro 5000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 23:35]
.
2014-01-14 c:\windows\Tasks\Driver Booster Update.job
- c:\program files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-01-07 10:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-01-07 14:07 2486592 ----a-w- c:\programy\Úklid počítače\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"@OnlineArmor GUI"="c:\programy\Ochrana počítače\Online Armor\OAui.exe" [2014-01-14 7558464]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [2013-10-22 2777736]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [2013-10-22 3684488]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyServer = localhost:8080
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
Trusted Zone: dell.com
Trusted Zone: samsungsetup.com\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\
FF - prefs.js: browser.startup.homepage - WWW.seznam.cz
FF - prefs.js: network.proxy.http - 199.19.224.188
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2014-01-07 16:22; iobitapps@mybrowserbar.com; c:\program files (x86)\IObit Apps Toolbar\FF
FF - ExtSQL: 2014-01-08 13:19; adsremoval@adsremoval.net; c:\users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\extensions\adsremoval@adsremoval.net
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Notify-horvzza - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,f5,39,1a,cf,e2,05,45,b8,33,6d,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,f5,39,1a,cf,e2,05,45,b8,33,6d,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\programy\Úklid poc:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\programy\Ochrana poc:\program files (x86)\Avira\AntiVir Desktop\sched.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
c:\program files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
**************************************************************************
.
Celkový čas: 2014-01-14 21:10:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-14 20:10
.
Před spuštěním: Volných bajtů: 704 275 804 160
Po spuštění: Volných bajtů: 704 073 191 424
.
- - End Of File - - 24BE3B29B3DCB85479C6E46450AB8591
A36C5E4F47E84449FF07ED3517B43A31

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

RegLock::
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.



Doporučil bych odinstalovat vše, co máte v PC od IOBit. Důvod: http://forum.viry.cz/viewtopic.php?f=14 ... ilit=iobit .

ComboFix 14-01-14.02 - OEM 14.01.2014 22:22:00.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4095.2885 [GMT 1:00]
Spuštěný z: c:\users\OEM\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\OEM\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: Online Armor Firewall *Enabled* {BD3F5FCA-866B-1E2E-0A68-58900A751EA1}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-14 do 2014-01-14 )))))))))))))))))))))))))))))))
.
.
2014-01-14 21:26 . 2014-01-14 21:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-14 14:59 . 2014-01-14 14:59 35368 ----a-w- c:\windows\system32\drivers\oanet.sys
2014-01-14 08:35 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0E956E54-924F-4F63-BBE1-039BDE355DC3}\mpengine.dll
2014-01-13 22:10 . 2014-01-13 22:10 -------- d-----w- C:\_OTM
2014-01-13 20:08 . 2014-01-13 20:08 -------- d-----w- C:\AdwCleaner
2014-01-13 17:31 . 2014-01-13 17:31 -------- d-----w- c:\users\OEM\AppData\Roaming\Malwarebytes
2014-01-13 17:30 . 2014-01-13 17:30 -------- d-----w- c:\programdata\Malwarebytes
2014-01-13 17:30 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-01-13 10:27 . 2014-01-13 22:22 -------- d-----w- c:\program files\trend micro
2014-01-13 10:27 . 2014-01-13 10:36 -------- d-----w- C:\rsit
2014-01-10 10:50 . 2014-01-10 10:50 -------- d-----w- c:\users\OEM\AppData\Local\NVIDIA Corporation
2014-01-10 10:49 . 2010-05-26 10:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 511328 ----a-w- c:\windows\system32\d3dx10_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 470880 ----a-w- c:\windows\SysWow64\d3dx10_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2014-01-10 10:49 . 2010-05-26 10:41 2401112 ----a-w- c:\windows\system32\D3DX9_43.dll
2014-01-10 10:49 . 2013-12-10 02:15 982232 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-01-10 10:49 . 2013-12-10 02:14 1100248 ----a-w- c:\windows\system32\nvspcap64.dll
2014-01-10 10:49 . 2014-01-10 11:19 -------- d-----w- c:\users\OEM\AppData\Local\NVIDIA
2014-01-10 10:48 . 2014-01-10 10:48 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2014-01-10 10:48 . 2014-01-14 21:27 -------- d-----w- c:\programdata\NVIDIA
2014-01-10 10:47 . 2013-12-19 18:53 6671648 ----a-w- c:\windows\system32\nvcpl.dll
2014-01-10 10:47 . 2013-12-19 18:53 3490080 ----a-w- c:\windows\system32\nvsvc64.dll
2014-01-10 10:47 . 2013-12-19 18:53 922912 ----a-w- c:\windows\system32\nvvsvc.exe
2014-01-10 10:47 . 2013-12-19 18:53 63776 ----a-w- c:\windows\system32\nvshext.dll
2014-01-10 10:47 . 2013-12-19 18:53 386336 ----a-w- c:\windows\system32\nvmctray.dll
2014-01-10 10:47 . 2013-12-19 05:01 3539040 ----a-w- c:\windows\system32\nvcoproc.bin
2014-01-10 10:04 . 2014-01-10 10:49 -------- d-----w- c:\program files\NVIDIA Corporation
2014-01-10 09:41 . 2014-01-10 10:52 -------- d-----w- c:\programdata\NVIDIA Corporation
2014-01-09 14:52 . 2014-01-09 14:52 -------- d-----w- c:\program files (x86)\AMD APP
2014-01-09 14:52 . 2000-01-01 00:00 56448 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-01-09 14:52 . 2014-01-09 14:52 -------- d-----w- c:\program files\ATI
2014-01-09 14:52 . 2000-01-01 00:00 82560 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-01-09 14:52 . 2000-01-01 00:00 42624 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-01-09 14:52 . 2000-01-01 00:00 16552 ----a-w- c:\windows\system32\drivers\AtiPcie64.sys
2014-01-09 14:49 . 2014-01-09 14:52 -------- d-----w- C:\ATI Technologies
2014-01-09 14:19 . 2014-01-09 14:59 16152 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2014-01-09 14:19 . 2014-01-09 14:19 -------- d-----w- c:\users\OEM\AppData\Local\SlimWare Utilities Inc
2014-01-09 14:19 . 2014-01-09 14:19 -------- d-----w- c:\program files (x86)\SlimDrivers
2014-01-08 16:43 . 2014-01-08 16:43 -------- d-----w- c:\users\OEM\.android
2014-01-08 16:43 . 2014-01-08 16:43 -------- d-----w- c:\users\OEM\AppData\Local\cache
2014-01-08 16:42 . 2014-01-08 17:01 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-01-07 16:16 . 2014-01-07 16:16 884952 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-07 16:16 . 2014-01-07 16:16 74456 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-07 16:08 . 2014-01-07 16:08 1884448 ----a-w- c:\windows\system32\nvdispco6433182.dll
2014-01-07 16:08 . 2014-01-07 16:08 1511712 ----a-w- c:\windows\system32\nvdispgenco6433182.dll
2014-01-07 15:23 . 2013-06-27 17:05 27456 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-01-07 14:07 . 2014-01-14 15:03 -------- d-----w- c:\programdata\ProductData
2014-01-07 14:07 . 2014-01-07 14:07 -------- d-----w- c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-01-07 13:50 . 2014-01-07 14:08 -------- d-----w- c:\users\OEM\AppData\Roaming\Apple Computer
2014-01-07 13:37 . 2014-01-07 13:37 -------- d-----w- c:\programdata\Oracle
2014-01-07 13:36 . 2014-01-07 13:36 312744 ----a-w- c:\windows\system32\javaws.exe
2014-01-07 13:36 . 2014-01-07 13:36 189352 ----a-w- c:\windows\system32\javaw.exe
2014-01-07 13:36 . 2014-01-07 13:36 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-01-07 13:36 . 2014-01-07 13:36 189352 ----a-w- c:\windows\system32\java.exe
2014-01-07 13:36 . 2014-01-07 13:36 -------- d-----w- c:\program files\Java
2014-01-07 13:10 . 2014-01-09 21:09 -------- d-----w- c:\program files (x86)\IObit
2014-01-06 22:04 . 2014-01-06 22:04 -------- d-----w- c:\users\OEM\AppData\Roaming\SUPERAntiSpyware.com
2014-01-06 21:45 . 2014-01-14 18:23 -------- d-----w- c:\programdata\Spyware Terminator
2014-01-06 21:45 . 2014-01-06 21:45 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2014-01-06 21:45 . 2014-01-06 21:45 -------- d-----w- c:\users\OEM\AppData\Roaming\Spyware Terminator
2014-01-06 21:45 . 2014-01-06 21:46 -------- d-----w- c:\program files (x86)\Spyware Terminator
2014-01-04 01:30 . 2014-01-07 15:40 -------- d-----w- c:\users\OEM\AppData\Roaming\HLSW
2014-01-03 23:49 . 2014-01-03 23:49 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2014-01-03 23:49 . 2014-01-03 23:49 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2014-01-03 23:49 . 2002-12-05 13:12 692224 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2014-01-03 23:49 . 2002-12-05 13:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2014-01-03 23:49 . 2002-12-02 14:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2014-01-03 23:49 . 2002-12-02 12:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2014-01-03 23:49 . 2002-12-02 12:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2014-01-03 23:47 . 2014-01-03 23:47 -------- d-sh--w- c:\windows\ftpcache
2013-12-19 11:20 . 2013-12-19 11:20 590112 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-12-16 18:52 . 2001-06-19 16:53 266293 ----a-w- c:\windows\SysWow64\temp.001
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-14 14:59 . 2013-07-05 20:28 52360 ----a-w- c:\windows\SysWow64\drivers\OAmon.sys
2014-01-14 14:59 . 2013-07-05 20:28 64720 ----a-w- c:\windows\SysWow64\drivers\OADriver.sys
2014-01-14 14:58 . 2013-07-05 20:28 62008 ----a-w- c:\windows\SysWow64\drivers\oahlp64.sys
2014-01-07 16:16 . 2011-03-31 09:16 108760 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-12-17 12:46 . 2013-07-05 20:24 84720 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-12-17 12:46 . 2013-07-05 20:17 131576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-12-17 12:46 . 2013-07-05 20:17 108440 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-12-11 11:16 . 2011-04-08 15:56 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-10 23:35 . 2012-04-08 08:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 23:35 . 2011-05-22 19:28 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-11-26 11:54 . 2013-12-11 11:18 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-11 11:18 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-11 11:18 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-11 11:18 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-11 11:18 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-11 11:18 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-11 11:18 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-11 11:18 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-11 11:18 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-11 11:18 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-11 11:18 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-11 11:18 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-11 11:18 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-11 11:18 218624 ----a-w- c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-11 11:18 5769216 ----a-w- c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-11 11:18 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-11 11:18 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-11 11:18 1995264 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-11 11:18 12996608 ----a-w- c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-11 11:18 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-11 11:18 2334208 ----a-w- c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-11 11:18 1395200 ----a-w- c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-11 11:18 817664 ----a-w- c:\windows\system32\ieapfltr.dll
2013-11-26 06:33 . 2013-12-11 11:18 1820160 ----a-w- c:\windows\SysWow64\wininet.dll
2013-11-23 18:26 . 2013-12-11 11:15 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-11 11:15 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-19 02:33 . 2011-03-31 09:20 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-17 12:06 . 2013-11-17 12:06 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-17 12:06 . 2013-11-17 12:06 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-17 12:06 . 2013-11-17 12:06 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-17 12:06 . 2013-11-17 12:06 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-17 12:06 . 2013-11-17 12:06 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-17 12:06 . 2013-11-17 12:06 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-17 12:06 . 2013-11-17 12:06 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-17 12:06 . 2013-11-17 12:06 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-17 12:06 . 2013-11-17 12:06 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-17 12:06 . 2013-11-17 12:06 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-17 12:06 . 2013-11-17 12:06 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-17 12:06 . 2013-11-17 12:06 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-17 12:06 . 2013-11-17 12:06 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-17 12:06 . 2013-11-17 12:06 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-17 12:06 . 2013-11-17 12:06 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-17 12:06 . 2013-11-17 12:06 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-17 12:06 . 2013-11-17 12:06 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-17 12:06 . 2013-11-17 12:06 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-17 12:06 . 2013-11-17 12:06 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-17 12:06 . 2013-11-17 12:06 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-17 12:06 . 2013-11-17 12:06 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-17 12:06 . 2013-11-17 12:06 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-17 12:06 . 2013-11-17 12:06 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-17 12:06 . 2013-11-17 12:06 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-17 12:06 . 2013-11-17 12:06 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-17 12:06 . 2013-11-17 12:06 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-17 12:06 . 2013-11-17 12:06 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-17 12:06 . 2013-11-17 12:06 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-17 12:06 . 2013-11-17 12:06 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-17 12:06 . 2013-11-17 12:06 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-17 12:06 . 2013-11-17 12:06 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-17 12:06 . 2013-11-17 12:06 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-17 12:06 . 2013-11-17 12:06 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-17 12:06 . 2013-11-17 12:06 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-17 12:06 . 2013-11-17 12:06 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-17 12:06 . 2013-11-17 12:06 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-17 12:06 . 2013-11-17 12:06 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-17 12:06 . 2013-11-17 12:06 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-17 12:06 . 2013-11-17 12:06 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-17 12:06 . 2013-11-17 12:06 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-17 12:06 . 2013-11-17 12:06 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-17 12:06 . 2013-11-17 12:06 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-17 12:06 . 2013-11-17 12:06 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-17 12:06 . 2013-11-17 12:06 413696 ----a-w- c:\windows\system32\html.iec
2013-11-17 12:06 . 2013-11-17 12:06 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-17 12:06 . 2013-11-17 12:06 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-17 12:06 . 2013-11-17 12:06 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-17 12:06 . 2013-11-17 12:06 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-17 12:06 . 2013-11-17 12:06 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-17 12:06 . 2013-11-17 12:06 235520 ----a-w- c:\windows\system32\url.dll
2013-11-17 12:06 . 2013-11-17 12:06 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-17 12:06 . 2013-11-17 12:06 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-17 12:06 . 2013-11-17 12:06 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-17 12:06 . 2013-11-17 12:06 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-17 12:06 . 2013-11-17 12:06 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-11-17 12:06 . 2013-11-17 12:06 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-17 12:06 . 2013-11-17 12:06 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-12 02:23 . 2013-12-11 11:15 2048 ----a-w- c:\windows\system32\tzres.dll
2013-11-12 02:07 . 2013-12-11 11:15 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 02:32 . 2013-12-11 11:15 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-10-30 02:19 . 2013-12-11 11:15 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-12-17 684600]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R1 oahlpXX;Online Armor helper driver;c:\windows\syswow64\drivers\oahlp64.sys;c:\windows\syswow64\drivers\oahlp64.sys [x]
R2 AODService;AODService;c:\programy\Deska\AMD\OverDrive\AODAssist.exe;c:\programy\Deska\AMD\OverDrive\AODAssist.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SvcOnlineArmor;Online Armor;c:\programy\Ochrana počítače\Online Armor\oasrv.exe;c:\programy\Ochrana počítače\Online Armor\oasrv.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys;c:\windows\SYSNATIVE\DRIVERS\lvpopf64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 HWiNFO32;HWiNFO32 Kernel Driver;c:\programy\Deska\HWiNFO32\HWiNFO64A.SYS;c:\programy\Deska\HWiNFO32\HWiNFO64A.SYS [x]
S1 OADevice;OADriver;c:\windows\SysWow64\Drivers\OADriver.sys;c:\windows\SysWow64\Drivers\OADriver.sys [x]
S1 OAmon;OAmon;c:\windows\SysWOW64\Drivers\OAmon.sys;c:\windows\SysWOW64\Drivers\OAmon.sys [x]
S1 SASDIFSV;SASDIFSV;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS;c:\programy\Ochrana počítače\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 !SASCORE;SAS Core Service;c:\programy\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE;c:\programy\OCHRANA POČÍTAČE\SUPERANTISPYWARE\SASCORE64.EXE [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe;c:\programy\Úklid počítače\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 AVerRemote;AVerRemote;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe;c:\program files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [x]
S2 AVerScheduleService;AVerScheduleService;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe;c:\program files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 LVPrcS64;Process Monitor;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe;c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OAcat;Online Armor Helper Service;c:\programy\Ochrana počítače\Online Armor\OAcat.exe;c:\programy\Ochrana počítače\Online Armor\OAcat.exe [x]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys;c:\windows\SYSNATIVE\DRIVERS\stflt.sys [x]
S2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 AVerAF35;AVerMedia A867 USB DVB-T;c:\windows\system32\Drivers\AVerAF35.sys;c:\windows\SYSNATIVE\Drivers\AVerAF35.sys [x]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys;c:\windows\SYSNATIVE\DRIVERS\LVPr2M64.sys [x]
S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys;c:\windows\SYSNATIVE\drivers\LVUSBS64.sys [x]
S3 LVUVC64;Logitech QuickCam Pro 5000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 23:35]
.
2014-01-14 c:\windows\Tasks\Driver Booster Update.job
- c:\program files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-01-07 10:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-01-07 14:07 2486592 ----a-w- c:\programy\Úklid počítače\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"@OnlineArmor GUI"="c:\programy\Ochrana počítače\Online Armor\OAui.exe" [2014-01-14 7558464]
"SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [2013-10-22 2777736]
"SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [2013-10-22 3684488]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyServer = localhost:8080
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
Trusted Zone: dell.com
Trusted Zone: samsungsetup.com\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\
FF - prefs.js: browser.startup.homepage - WWW.seznam.cz
FF - prefs.js: network.proxy.http - 199.19.224.188
FF - prefs.js: network.proxy.http_port - 8080
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2014-01-07 16:22; iobitapps@mybrowserbar.com; c:\program files (x86)\IObit Apps Toolbar\FF
FF - ExtSQL: 2014-01-08 13:19; adsremoval@adsremoval.net; c:\users\OEM\AppData\Roaming\Mozilla\Firefox\Profiles\fjlp0uvw.default\extensions\adsremoval@adsremoval.net
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Notify-horvzza - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\programy\Úklid poc:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\programy\Ochrana poc:\program files (x86)\Avira\AntiVir Desktop\sched.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
c:\program files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
.
**************************************************************************
.
Celkový čas: 2014-01-14 22:31:23 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-14 21:31
ComboFix2.txt 2014-01-14 20:10
.
Před spuštěním: Volných bajtů: 704 152 088 576
Po spuštění: Volných bajtů: 704 045 113 344
.
- - End Of File - - 8016CC7E814A2C5DAF0C3D180089EF43
A36C5E4F47E84449FF07ED3517B43A31