VIRY.CZ

Zdravim,
zadam Vas o kontrolu sveho logu RSIT k preventivni kontrole, nejaky ten den co pocitac se zacal zpomalovat, doslo to az k obcasnemu zpomaleni zvuku, videa i otevirani oken slozek v PC. Teploty sou stabilni pocitac se cistil, tak zkousim posledni moznost zda nema nejaky haveti.
Diky za pripadnou pomoc.

Scorpione

Logfile of random's system information tool 1.09 (written by random/random)
Run by Marco at 2014-01-23 20:44:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 19 GB (6%) free of 303 GB
Total RAM: 3552 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:44:47, on 23.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Users\Marco\AppData\Local\Facebook\Update\FacebookUpdate.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files\trend micro\Marco.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.audio4fun.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.audio4fun.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [NCUpdateHelper] C:\Program Files (x86)\NCWest\NCLauncher\NCUpdateHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files (x86)\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\RunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\e17805d3-7cc9-4edd-ae66-baed244a5827.exe /check
O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~2\INSTAL~1\{E35A3~1\setup.exe -rebootC:\PROGRA~2\INSTAL~1\{E35A3~1\reboot.ini
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: AML Device Install.lnk = C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe
O8 - Extra context menu item: Free YouTube Download - C:\Users\Marco\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wtfastdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wtfastdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wtfastdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wtfastdrv.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wtfastdrv.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Me ... b56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtlISMServ - Realtek - C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Moje\Tunngle\TnglCtrl.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 15062 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\system32\WLANExt.exe 25503552
\??\C:\windows\system32\conhost.exe "-4195546231819601901725358798-1529271179-293448894-1877180829-1092365497-1007919326
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3356
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe" /i
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
taskeng.exe {06CFDB82-AD86-4A10-94C3-5D8F378050CE}
C:\Users\Marco\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe" "Microsoft Word Starter 2010 9014006604050000" /n "C:\Users\Marco\Downloads\smestr=simulace.wbk"
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe" /start IDLE_APP_EVENT_{90140011-0066-0405-0000-0000000FF1CE}
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
C:\windows\system32\svchost.exe -k imgsvc
explorer.exe
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe95_ Global\UsGthrCtrlFltPipeMssGthrPipe95 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\Marco\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForMarco.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-30 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-09-14 64640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-30 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-05-09 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-30 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-30 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-30 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-30 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-03-17 13880]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-05-24 200704]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-07-02 1664000]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"BtTray"=C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [2012-09-14 764544]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-09-14 127616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-01-07 2774256]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2012-12-21 1090040]
"PlayNC Launcher"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"AdobeBridge"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Moje\Gameforge4D\4Story_CZ\PrePatch.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-05-14 318520]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-05-09 12277248]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-05-23 103992]
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-08-09 169528]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-02-14 636032]
"NCUpdateHelper"=C:\Program Files (x86)\NCWest\NCLauncher\NCUpdateHelper.exe [2013-08-29 528360]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"FaxCenterServer"=C:\Program Files (x86)\Lexmark Fax Solutions\fm3032.exe [2007-02-13 312240]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-30 3764024]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2013-12-23 450560]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-11-15 1861968]
""= []
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20131224"=C:\Program Files\AVAST Software\Avast\setup\emupdate\e17805d3-7cc9-4edd-ae66-baed244a5827.exe [2014-01-23 181136]
"InstallShieldSetup"=C:\PROGRA~2\INSTAL~1\{E35A3~1\setup.exe -rebootC:\PROGRA~2\INSTAL~1\{E35A3~1\reboot.ini []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AML Device Install.lnk - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2014-01-23 20:44:37 ----D---- C:\rsit
2014-01-22 22:17:49 ----SHD---- C:\Config.Msi
2014-01-22 22:15:17 ----D---- C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-15 00:06:03 ----A---- C:\windows\system32\drivers\usbport.sys
2014-01-15 00:06:03 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-01-15 00:06:02 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-01-15 00:06:02 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-01-15 00:06:02 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-01-15 00:06:02 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-01-15 00:06:01 ----A---- C:\windows\system32\drivers\usbd.sys
2014-01-15 00:05:59 ----A---- C:\windows\system32\win32k.sys
2014-01-15 00:05:55 ----A---- C:\windows\system32\drivers\netio.sys
2014-01-12 20:57:10 ----D---- C:\ProgramData\boost_interprocess
2014-01-12 20:16:29 ----D---- C:\Program Files\Common Files\Topaz Labs
2014-01-12 20:15:35 ----D---- C:\Program Files (x86)\Topaz Labs
2014-01-12 18:11:45 ----D---- C:\Program Files\Common Files\Adobe
2014-01-11 02:42:12 ----D---- C:\ProgramData\Solidshield
2014-01-11 02:39:34 ----D---- C:\HPSDM
2014-01-10 17:38:11 ----D---- C:\ProgramData\HP
2014-01-07 13:27:17 ----A---- C:\windows\system32\drivers\amd_xata.sys
2014-01-07 13:27:17 ----A---- C:\windows\system32\drivers\amd_sata.sys
2014-01-07 13:24:05 ----A---- C:\windows\system32\drivers\usbfilter.sys
2014-01-07 13:18:51 ----A---- C:\windows\system32\WdfCoInstaller01011.dll
2014-01-07 13:18:50 ----A---- C:\windows\SYSWOW64\SynTPCom.dll
2014-01-07 13:18:50 ----A---- C:\windows\system32\SynTPCo19.dll
2014-01-07 13:18:49 ----A---- C:\windows\system32\SynTPAPI.dll
2014-01-07 13:18:49 ----A---- C:\windows\system32\drivers\SynTP.sys
2014-01-07 13:18:47 ----A---- C:\windows\SYSWOW64\SynCom.dll
2014-01-07 13:18:47 ----A---- C:\windows\system32\SynCOM.dll
2014-01-06 17:45:16 ----D---- C:\Users\Marco\AppData\Roaming\DivX
2014-01-06 17:44:37 ----D---- C:\Program Files\DivX
2014-01-06 17:37:54 ----D---- C:\Program Files (x86)\DivX
2014-01-06 17:36:25 ----D---- C:\ProgramData\DivX
2014-01-01 13:52:44 ----D---- C:\Users\Marco\AppData\Roaming\Rovio
2014-01-01 13:51:17 ----D---- C:\Users\Marco\AppData\Roaming\Rovio Entertainment Ltd
2013-12-30 20:55:18 ----D---- C:\Users\Marco\AppData\Roaming\AVAST Software
2013-12-30 20:38:18 ----A---- C:\windows\system32\drivers\aswstm.sys
2013-12-24 03:01:37 ----A---- C:\windows\system32\ieetwcollectorres.dll
2013-12-24 03:01:35 ----A---- C:\windows\system32\ieui.dll
2013-12-24 03:01:34 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2013-12-24 03:01:34 ----A---- C:\windows\SYSWOW64\ieui.dll
2013-12-24 03:01:34 ----A---- C:\windows\system32\jsproxy.dll
2013-12-24 03:01:33 ----A---- C:\windows\system32\ieUnatt.exe
2013-12-24 03:01:33 ----A---- C:\windows\system32\ie4uinit.exe
2013-12-24 03:01:32 ----A---- C:\windows\system32\iesetup.dll
2013-12-24 03:01:32 ----A---- C:\windows\system32\iernonce.dll
2013-12-24 03:01:31 ----A---- C:\windows\system32\ieetwproxystub.dll
2013-12-24 03:01:31 ----A---- C:\windows\system32\ieetwcollector.exe
2013-12-24 03:01:29 ----A---- C:\windows\system32\mshtml.dll
2013-12-24 03:01:28 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2013-12-24 03:01:28 ----A---- C:\windows\system32\jscript9diag.dll
2013-12-24 03:01:27 ----A---- C:\windows\system32\ieapfltr.dll
2013-12-24 03:01:26 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2013-12-24 03:01:23 ----A---- C:\windows\system32\iertutil.dll
2013-12-24 03:01:22 ----A---- C:\windows\SYSWOW64\iertutil.dll
2013-12-24 03:01:21 ----A---- C:\windows\SYSWOW64\wininet.dll
2013-12-24 03:01:20 ----A---- C:\windows\SYSWOW64\urlmon.dll
2013-12-24 03:01:20 ----A---- C:\windows\system32\wininet.dll
2013-12-24 03:01:19 ----A---- C:\windows\system32\urlmon.dll
2013-12-24 03:01:16 ----A---- C:\windows\system32\ieframe.dll
2013-12-24 03:01:13 ----A---- C:\windows\SYSWOW64\ieframe.dll
2013-12-24 03:01:10 ----A---- C:\windows\SYSWOW64\mshtml.dll
2013-12-24 03:01:08 ----A---- C:\windows\SYSWOW64\jscript9.dll
2013-12-24 03:01:06 ----A---- C:\windows\system32\jscript9.dll
2013-12-23 03:40:42 ----A---- C:\windows\system32\wmploc.DLL
2013-12-23 03:40:40 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2013-12-23 03:40:38 ----A---- C:\windows\SYSWOW64\wmp.dll
2013-12-23 03:40:33 ----A---- C:\windows\system32\wmp.dll
2013-12-23 03:38:42 ----A---- C:\windows\system32\IEUDINIT.EXE
2013-12-23 03:23:46 ----A---- C:\windows\SYSWOW64\elshyph.dll
2013-12-23 03:23:46 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\wextract.exe
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\webcheck.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\vbscript.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\url.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\pngfilt.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\msrating.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\msls31.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\licmgr10.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\jsIntl.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\inseng.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\iexpress.exe
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\iesetup.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\iernonce.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\ieapfltr.dat
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\icardie.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2013-12-23 03:23:36 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2013-12-23 03:23:36 ----A---- C:\windows\system32\elshyph.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\occache.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\mshtmler.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\mshta.exe
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\jscript.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\imgutil.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\iesysprep.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\iepeers.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2013-12-23 03:23:35 ----A---- C:\windows\SYSWOW64\IEAdvpack.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\wextract.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\webcheck.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\vbscript.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\url.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\pngfilt.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\occache.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\msrating.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\msls31.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\mshtmlmedia.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\mshtmler.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\mshtmled.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\MshtmlDac.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\mshta.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\msfeedssync.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\msfeedsbs.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\msfeeds.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\licmgr10.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\jsIntl.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\jscript.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\inseng.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\imgutil.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\iexpress.exe
2013-12-23 03:23:35 ----A---- C:\windows\system32\iesysprep.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\iepeers.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\iedkcs32.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\ieapfltr.dat
2013-12-23 03:23:35 ----A---- C:\windows\system32\IEAdvpack.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\icardie.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\dxtrans.dll
2013-12-23 03:23:35 ----A---- C:\windows\system32\dxtmsft.dll
2013-12-22 05:49:21 ----A---- C:\windows\SYSWOW64\msieftp.dll
2013-12-22 05:49:21 ----A---- C:\windows\system32\msieftp.dll
2013-12-22 05:42:47 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2013-12-22 05:42:47 ----A---- C:\windows\system32\WMPhoto.dll
2013-12-22 05:42:32 ----A---- C:\windows\system32\imagehlp.dll
2013-12-22 05:42:31 ----A---- C:\windows\SYSWOW64\imagehlp.dll
2013-12-22 05:42:11 ----A---- C:\windows\system32\tzres.dll
2013-12-22 05:42:10 ----A---- C:\windows\SYSWOW64\tzres.dll
2013-12-22 05:41:16 ----A---- C:\windows\system32\drivers\portcls.sys
2013-12-22 05:41:15 ----A---- C:\windows\system32\drivers\drmk.sys
2013-12-22 05:40:29 ----A---- C:\windows\system32\scrrun.dll
2013-12-22 05:40:29 ----A---- C:\windows\system32\cscript.exe
2013-12-22 05:40:28 ----A---- C:\windows\SYSWOW64\wscript.exe
2013-12-22 05:40:28 ----A---- C:\windows\system32\wscript.exe
2013-12-22 05:40:27 ----A---- C:\windows\SYSWOW64\scrrun.dll
2013-12-22 05:40:26 ----A---- C:\windows\SYSWOW64\cscript.exe
2013-12-07 20:15:11 ----D---- C:\ProgramData\Steam
2013-12-05 03:25:59 ----A---- C:\windows\SYSWOW64\crypt32.dll
2013-12-05 03:25:58 ----A---- C:\windows\system32\crypt32.dll
2013-11-26 03:36:42 ----A---- C:\windows\system32\drivers\afd.sys
2013-11-26 03:35:26 ----A---- C:\windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-11-26 03:35:25 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2013-11-26 03:35:24 ----A---- C:\windows\SYSWOW64\credui.dll
2013-11-26 03:35:22 ----A---- C:\windows\system32\credui.dll
2013-11-26 03:35:19 ----A---- C:\windows\SYSWOW64\authui.dll
2013-11-26 03:35:17 ----A---- C:\windows\system32\authui.dll
2013-11-25 03:05:10 ----A---- C:\windows\SYSWOW64\comctl32.dll
2013-11-25 03:05:09 ----A---- C:\windows\system32\comctl32.dll
2013-11-25 03:05:02 ----A---- C:\windows\system32\drivers\usbser.sys
2013-11-25 03:04:46 ----A---- C:\windows\SYSWOW64\dciman32.dll
2013-11-25 03:04:46 ----A---- C:\windows\system32\fontsub.dll
2013-11-25 03:04:45 ----A---- C:\windows\SYSWOW64\lpk.dll
2013-11-25 03:04:45 ----A---- C:\windows\SYSWOW64\fontsub.dll
2013-11-25 03:04:45 ----A---- C:\windows\SYSWOW64\atmlib.dll
2013-11-25 03:04:45 ----A---- C:\windows\SYSWOW64\atmfd.dll
2013-11-25 03:04:45 ----A---- C:\windows\system32\lpk.dll
2013-11-25 03:04:45 ----A---- C:\windows\system32\dciman32.dll
2013-11-25 03:04:44 ----A---- C:\windows\system32\atmlib.dll
2013-11-25 03:04:44 ----A---- C:\windows\system32\atmfd.dll
2013-11-25 03:04:25 ----A---- C:\windows\SYSWOW64\schannel.dll
2013-11-25 03:04:24 ----A---- C:\windows\SYSWOW64\sspicli.dll
2013-11-25 03:04:24 ----A---- C:\windows\SYSWOW64\secur32.dll
2013-11-25 03:04:24 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2013-11-25 03:04:24 ----A---- C:\windows\system32\secur32.dll
2013-11-25 03:04:24 ----A---- C:\windows\system32\lsass.exe
2013-11-25 03:04:23 ----A---- C:\windows\system32\sspisrv.dll
2013-11-25 03:04:23 ----A---- C:\windows\system32\sspicli.dll
2013-11-25 03:04:23 ----A---- C:\windows\system32\schannel.dll
2013-11-25 03:04:23 ----A---- C:\windows\system32\lsasrv.dll
2013-11-25 03:04:23 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2013-11-25 03:04:23 ----A---- C:\windows\system32\drivers\ksecdd.sys
2013-11-25 03:04:22 ----A---- C:\windows\system32\ncrypt.dll
2013-11-25 03:04:22 ----A---- C:\windows\system32\drivers\cng.sys
2013-11-25 03:04:16 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2013-11-25 03:04:10 ----A---- C:\windows\system32\drivers\usbvideo.sys
2013-11-25 03:04:10 ----A---- C:\windows\system32\drivers\usbcir.sys
2013-11-25 03:04:03 ----A---- C:\windows\system32\drivers\hidparse.sys
2013-11-25 03:04:02 ----A---- C:\windows\system32\drivers\hidclass.sys
2013-11-25 03:03:54 ----A---- C:\windows\system32\drivers\mrxdav.sys
2013-11-25 03:03:53 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2013-11-25 03:03:53 ----A---- C:\windows\system32\WebClnt.dll
2013-11-25 03:03:53 ----A---- C:\windows\system32\davclnt.dll
2013-11-25 03:03:52 ----A---- C:\windows\SYSWOW64\davclnt.dll
2013-11-25 03:03:39 ----A---- C:\windows\SYSWOW64\mswsock.dll
2013-11-25 03:03:39 ----A---- C:\windows\system32\mswsock.dll
2013-11-25 03:03:37 ----A---- C:\windows\system32\drivers\tcpip.sys
2013-11-25 03:03:16 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2013-11-25 03:03:09 ----A---- C:\windows\SYSWOW64\user.exe
2013-11-25 03:03:06 ----A---- C:\windows\SYSWOW64\wow32.dll
2013-11-25 03:03:05 ----A---- C:\windows\SYSWOW64\advapi32.dll
2013-11-25 03:03:05 ----A---- C:\windows\system32\advapi32.dll
2013-11-25 03:03:03 ----A---- C:\windows\SYSWOW64\tdh.dll
2013-11-25 03:03:03 ----A---- C:\windows\SYSWOW64\instnm.exe
2013-11-25 03:03:03 ----A---- C:\windows\system32\tdh.dll
2013-11-25 03:03:02 ----A---- C:\windows\SYSWOW64\setup16.exe
2013-11-25 03:03:02 ----A---- C:\windows\SYSWOW64\ntdll.dll
2013-11-25 03:03:00 ----A---- C:\windows\system32\wow64.dll
2013-11-25 03:03:00 ----A---- C:\windows\system32\ntdll.dll
2013-11-25 03:02:57 ----A---- C:\windows\system32\ntoskrnl.exe
2013-11-25 03:02:56 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2013-11-25 03:02:54 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2013-11-25 03:02:29 ----A---- C:\windows\SYSWOW64\gdi32.dll
2013-11-25 03:02:29 ----A---- C:\windows\system32\gdi32.dll
2013-11-25 03:02:23 ----A---- C:\windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-25 03:02:23 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-25 03:02:18 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2013-11-25 03:02:12 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2013-11-25 03:02:12 ----A---- C:\windows\system32\IKEEXT.DLL
2013-11-25 03:02:11 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2013-11-25 03:02:11 ----A---- C:\windows\system32\FWPUCLNT.DLL
2013-11-25 03:02:10 ----A---- C:\windows\system32\nshwfp.dll
2013-11-25 03:02:00 ----A---- C:\windows\system32\scavengeui.dll
2013-11-16 01:26:03 ----A---- C:\windows\SYSWOW64\javaws.exe
2013-11-16 01:25:48 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-11-16 01:25:48 ----A---- C:\windows\SYSWOW64\javaw.exe
2013-11-16 01:25:48 ----A---- C:\windows\SYSWOW64\java.exe
2013-10-29 13:43:44 ----D---- C:\Users\Marco\AppData\Roaming\Kalypso Media

======List of files/folders modified in the last 3 months======

2014-01-23 20:44:47 ----D---- C:\windows\Prefetch
2014-01-23 20:44:45 ----D---- C:\windows\Temp
2014-01-23 20:44:43 ----D---- C:\Program Files\trend micro
2014-01-23 20:42:08 ----D---- C:\Users\Marco\AppData\Roaming\DAEMON Tools Lite
2014-01-23 20:42:07 ----D---- C:\Users\Marco\AppData\Roaming\Winamp
2014-01-23 20:41:36 ----D---- C:\windows\System32
2014-01-23 20:41:35 ----D---- C:\windows\inf
2014-01-23 20:41:30 ----D---- C:\Windows
2014-01-23 19:29:18 ----D---- C:\Users\Marco\AppData\Roaming\uTorrent
2014-01-23 12:53:23 ----D---- C:\windows\system32\config
2014-01-22 22:42:52 ----D---- C:\Users\Marco\AppData\Roaming\Skype
2014-01-22 22:24:14 ----D---- C:\windows\system32\Tasks
2014-01-22 22:24:13 ----D---- C:\windows\Tasks
2014-01-22 22:23:50 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-22 22:23:41 ----D---- C:\windows\Help
2014-01-22 22:23:35 ----D---- C:\windows\winsxs
2014-01-22 22:23:09 ----SHD---- C:\System Volume Information
2014-01-22 22:20:35 ----SHD---- C:\windows\Installer
2014-01-22 22:20:26 ----RSD---- C:\windows\assembly
2014-01-22 22:18:52 ----D---- C:\Program Files (x86)\Hewlett-Packard
2014-01-22 22:15:17 ----AHD---- C:\ProgramData
2014-01-22 22:12:58 ----D---- C:\ProgramData\Hewlett-Packard
2014-01-22 22:11:58 ----D---- C:\swsetup
2014-01-22 19:12:38 ----D---- C:\ProgramData\PDFC
2014-01-22 04:15:38 ----D---- C:\Moje
2014-01-21 12:59:12 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-18 17:58:09 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-01-18 17:39:51 ----D---- C:\windows\Logs
2014-01-18 06:16:27 ----D---- C:\windows\SoftwareDistribution
2014-01-17 19:21:28 ----D---- C:\Users\Marco\AppData\Roaming\TS3Client
2014-01-16 21:59:38 ----D---- C:\windows\SysWOW64
2014-01-16 07:57:58 ----D---- C:\windows\debug
2014-01-15 06:25:52 ----D---- C:\windows\system32\drivers
2014-01-15 06:25:51 ----D---- C:\windows\system32\DriverStore
2014-01-15 05:57:37 ----D---- C:\windows\system32\MRT
2014-01-15 05:57:25 ----A---- C:\windows\system32\MRT.exe
2014-01-15 00:05:43 ----D---- C:\windows\system32\catroot2
2014-01-15 00:05:43 ----D---- C:\windows\system32\catroot
2014-01-12 20:24:08 ----D---- C:\Users\Marco\AppData\Roaming\Adobe
2014-01-12 20:16:29 ----D---- C:\Program Files\Common Files
2014-01-12 20:15:35 ----RD---- C:\Program Files (x86)
2014-01-12 20:15:35 ----D---- C:\Program Files (x86)\Common Files
2014-01-12 18:26:43 ----D---- C:\Program Files\Adobe
2014-01-12 18:21:41 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-01-12 18:18:17 ----D---- C:\Program Files (x86)\Adobe
2014-01-12 18:16:42 ----RSD---- C:\windows\Fonts
2014-01-12 18:14:31 ----D---- C:\ProgramData\Adobe
2014-01-12 16:23:28 ----D---- C:\windows\system32\NDF
2014-01-11 20:21:09 ----D---- C:\windows\Minidump
2014-01-11 20:00:56 ----RD---- C:\Program Files
2014-01-11 07:32:36 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2014-01-07 13:58:15 ----D---- C:\Program Files\Hewlett-Packard
2014-01-07 13:48:17 ----D---- C:\Users\Marco\AppData\Roaming\hpqLog
2014-01-07 13:24:05 ----DC---- C:\windows\system32\DRVSTORE
2014-01-03 19:20:40 ----D---- C:\AdwCleaner
2014-01-03 19:20:07 ----D---- C:\ProgramData\Hotspot Shield
2013-12-30 20:36:58 ----A---- C:\windows\system32\aswBoot.exe
2013-12-30 20:23:41 ----D---- C:\ProgramData\AVAST Software
2013-12-24 23:35:27 ----D---- C:\windows\Panther
2013-12-24 03:19:51 ----D---- C:\Program Files\Internet Explorer
2013-12-24 03:19:51 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-23 04:40:44 ----D---- C:\windows\rescache
2013-12-23 04:00:09 ----D---- C:\windows\SYSWOW64\cs-CZ
2013-12-23 04:00:09 ----D---- C:\Program Files\Windows Media Player
2013-12-23 04:00:09 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-23 04:00:08 ----D---- C:\windows\system32\cs-CZ
2013-12-23 04:00:07 ----D---- C:\windows\SYSWOW64\migration
2013-12-23 04:00:07 ----D---- C:\windows\SYSWOW64\en-US
2013-12-23 04:00:06 ----D---- C:\windows\system32\migration
2013-12-23 04:00:06 ----D---- C:\windows\system32\en-US
2013-12-23 04:00:06 ----D---- C:\windows\PolicyDefinitions
2013-12-22 04:42:05 ----D---- C:\Users\Marco\AppData\Roaming\Ubisoft
2013-12-22 04:23:50 ----D---- C:\windows\ModemLogs
2013-12-22 04:21:06 ----D---- C:\Program Files\CCleaner
2013-12-19 18:18:43 ----D---- C:\Program Files (x86)\Google
2013-12-18 06:13:56 ----N---- C:\windows\system32\MpSigStub.exe
2013-12-17 18:24:11 ----D---- C:\Users\Marco\AppData\Roaming\Atheros
2013-12-05 05:50:55 ----D---- C:\windows\Microsoft.NET
2013-12-05 03:45:20 ----D---- C:\Program Files\Microsoft Silverlight
2013-12-05 03:45:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-12-05 03:20:54 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2013-11-25 03:23:21 ----D---- C:\windows\AppPatch
2013-11-16 01:26:10 ----D---- C:\ProgramData\Oracle
2013-11-16 01:25:47 ----D---- C:\Program Files (x86)\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\windows\system32\drivers\amd_sata.sys [2014-01-07 82600]
R0 amd_xata;amd_xata; C:\windows\system32\drivers\amd_xata.sys [2014-01-07 42664]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2013-12-30 65776]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2013-12-30 207904]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-02-28 29976]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-05-24 158280]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; \??\C:\windows\system32\drivers\aswKbd.sys [2013-12-30 28184]
R1 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys [2014-01-08 439648]
R1 aswRdr;aswRdr; \??\C:\windows\system32\drivers\aswRdr2.sys [2013-12-30 92544]
R1 aswSnx;aswSnx; \??\C:\windows\system32\drivers\aswSnx.sys [2013-12-30 1034464]
R1 aswSP;aswSP; \??\C:\windows\system32\drivers\aswSP.sys [2013-12-30 422216]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-18 279616]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\windows\system32\DRIVERS\hssdrv6.sys [2013-09-17 46792]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-01-03 55936]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2013-12-30 78648]
R2 cpuz135;cpuz135; \??\C:\windows\system32\drivers\cpuz135_x64.sys [2010-11-09 21992]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-02-28 43800]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\amdhub30.sys [2013-07-02 107688]
R3 amdiox64;AMD IO Driver; C:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2012-02-15 10856960]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2012-02-15 327680]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\amdxhc.sys [2013-07-02 228008]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 aswStm;aswStm; \??\C:\windows\system32\drivers\aswStm.sys [2013-12-30 79672]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2012-12-20 3837440]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2012-09-14 33944]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\drivers\HpqKbFiltr.sys [2011-05-14 25912]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2013-07-02 175928]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-07-02 708200]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2011-04-08 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-07-02 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2014-01-07 524016]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
R3 taphss6;Anchorfree HSS VPN Adapter; C:\windows\system32\DRIVERS\taphss6.sys [2013-04-24 42184]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2014-01-07 58536]
S3 AF15BDA;AF9015 BDA Device; C:\windows\system32\DRIVERS\AF15BDA.sys [2009-06-02 507392]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-09-14 88728]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\windows\System32\Drivers\AthDfu.sys [2012-09-14 55448]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-09-14 344216]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-09-14 114840]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2012-09-14 178840]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-09-14 77464]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2012-09-14 135832]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-09-14 575128]
S3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-05-09 64312]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 KMWDFILTER;HIDServiceDesc; C:\windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 msvad_simple;Profound Sound Audio Device; C:\windows\system32\drivers\ProfoundSound.sys [2012-09-25 35104]
S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-10 620544]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2012-11-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2012-11-09 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2012-11-09 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-11-19 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 taphss;Anchorfree HSS Adapter; C:\windows\system32\DRIVERS\taphss.sys [2011-11-15 37888]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2012-11-19 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-11-19 30208]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-11-09 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-11-09 9216]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-07-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2012-02-15 235520]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-02-14 361984]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-09-14 216192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-30 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-12-30 113704]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-03-17 132152]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-03-23 133688]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-05-09 320512]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-05-14 317496]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-02-28 31000]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-05-24 1318912]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-04-22 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2012-09-21 76888]
R2 RtlISMServ;RtlISMServ; C:\Program Files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [2011-05-30 40960]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-07-02 323072]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-03-24 3161904]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-05-23 1098296]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-05-19 485712]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 136176]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2013-05-13 270624]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-07-25 162672]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-05-09 464440]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 136176]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-12-19 732648]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-06-06 543656]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TunngleService;TunngleService; C:\Moje\Tunngle\TnglCtrl.exe [2013-03-20 746392]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Pridavam rovnou i log ze scanu AdwCleaner

# AdwCleaner v3.017 - Report created 23/01/2014 at 23:17:12
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Marco - SCORPITHEGOD
# Running from : C:\Users\Marco\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\END
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\hotspot shield
Folder Found C:\Users\Marco\AppData\Local\genienext
Folder Found C:\Users\Marco\AppData\Local\Mobogenie
Folder Found C:\Users\Marco\AppData\LocalLow\boost_interprocess
Folder Found C:\Users\Marco\Documents\Mobogenie

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\UpdateStar
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\UpdateStar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ File : C:\Users\Marco\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0\prefs.js ]


-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2377 octets] - [22/09/2013 01:29:12]
AdwCleaner[R1].txt - [1075 octets] - [07/10/2013 10:01:07]
AdwCleaner[R2].txt - [1307 octets] - [23/11/2013 00:54:18]
AdwCleaner[R3].txt - [1426 octets] - [24/12/2013 23:38:56]
AdwCleaner[R4].txt - [2339 octets] - [03/01/2014 18:50:30]
AdwCleaner[R5].txt - [2075 octets] - [23/01/2014 23:14:17]
AdwCleaner[R6].txt - [1743 octets] - [23/01/2014 23:17:12]
AdwCleaner[S0].txt - [2433 octets] - [22/09/2013 01:38:30]
AdwCleaner[S1].txt - [1098 octets] - [07/10/2013 10:02:39]
AdwCleaner[S2].txt - [1331 octets] - [23/11/2013 00:55:55]
AdwCleaner[S3].txt - [2314 octets] - [03/01/2014 19:19:58]

########## EOF - C:\AdwCleaner\AdwCleaner[R6].txt - [2043 octets] ##########

Zdravím, v HJT fixni :

O4 - HKLM\..\Run: [NCUpdateHelper] C:\Program Files (x86)\NCWest\NCLauncher\NCUpdateHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\RunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\e17805d3-7cc9-4edd-ae66-baed244a5827.exe /check
O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~2\INSTAL~1\{E35A3~1\setup.exe -rebootC:\PROGRA~2\INSTAL~1\{E35A3~1\reboot.ini
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray

HJT najdeš zde :

C:\Program Files\trend micro\Marco.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


V Plánovači úloh zakaž Google Update bude to tam několikrát.


Znovu spusť AdwCleaner ale tentokrát klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zase zkopíruj Report.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

Zdravím,

bod 1.
Tak v HJT fixnuto, ovsem nenalezlo mi to tyto 2 radky - hledal jsem je tam dlouze ale nic.. spusteno jako spravce jsem to mel.

O4 - HKLM\..\RunOnce: [20131224] C:\Program Files\AVAST Software\Avast\setup\emupdate\e17805d3-7cc9-4edd-ae66-baed244a5827.exe /check
O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~2\INSTAL~1\{E35A3~1\setup.exe -rebootC:\PROGRA~2\INSTAL~1\{E35A3~1\reboot.ini

bod 2.
V services jsem zakazal ty 2 google updatery, vypnute jiz byly

bod 3.
V plánovaci zakazany - Google updater and installer, GoogleUpdateTaskMachineCore a GoogleUpdateTaskMachineUA

bod 4.
Ccleanerem procisteno - vyuzivam jej i bezne.

bod 5.
log z AdwCleaner

# AdwCleaner v3.017 - Report created 25/01/2014 at 07:43:21
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Marco - SCORPITHEGOD
# Running from : C:\Users\Marco\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\hotspot shield
Folder Deleted : C:\Users\Marco\AppData\Local\genienext
Folder Deleted : C:\Users\Marco\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Marco\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Marco\Documents\Mobogenie
File Deleted : C:\END

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ File : C:\Users\Marco\AppData\Roaming\Mozilla\Firefox\Profiles\[opt]rs0\prefs.js ]


-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2377 octets] - [22/09/2013 01:29:12]
AdwCleaner[R1].txt - [1075 octets] - [07/10/2013 10:01:07]
AdwCleaner[R2].txt - [1307 octets] - [23/11/2013 00:54:18]
AdwCleaner[R3].txt - [1426 octets] - [24/12/2013 23:38:56]
AdwCleaner[R4].txt - [2339 octets] - [03/01/2014 18:50:30]
AdwCleaner[R5].txt - [2075 octets] - [23/01/2014 23:14:17]
AdwCleaner[R6].txt - [2135 octets] - [23/01/2014 23:17:12]
AdwCleaner[R7].txt - [2195 octets] - [25/01/2014 07:40:06]
AdwCleaner[S0].txt - [2433 octets] - [22/09/2013 01:38:30]
AdwCleaner[S1].txt - [1098 octets] - [07/10/2013 10:02:39]
AdwCleaner[S2].txt - [1331 octets] - [23/11/2013 00:55:55]
AdwCleaner[S3].txt - [2314 octets] - [03/01/2014 19:19:58]
AdwCleaner[S4].txt - [2061 octets] - [25/01/2014 07:43:21]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [2121 octets] ##########

bod 6.
Log z KomboFix

ComboFix 14-01-23.02 - Marco 25.01.2014 8:09.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3552.1971 [GMT 1:00]
Spuštěný z: c:\users\Marco\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Marco\AppData\Local\assembly\tmp
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\DEBUG.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-25 do 2014-01-25 )))))))))))))))))))))))))))))))
.
.
2014-01-23 19:44 . 2014-01-23 19:45 -------- d-----w- C:\rsit
2014-01-22 21:15 . 2014-01-22 21:15 -------- d-----w- c:\programdata\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-22 00:56 . 2014-01-25 07:12 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{507DF69A-F32F-438C-9957-47134C61D9C0}\offreg.dll
2014-01-21 22:03 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{507DF69A-F32F-438C-9957-47134C61D9C0}\mpengine.dll
2014-01-14 23:06 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-14 23:06 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-14 23:06 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-14 23:06 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-14 23:06 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-14 23:06 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-14 23:06 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-14 23:05 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-14 23:05 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-12 19:16 . 2014-01-12 19:52 -------- d-----w- c:\program files\Common Files\Topaz Labs
2014-01-12 19:15 . 2014-01-12 19:15 -------- d-----w- c:\program files (x86)\Common Files\Topaz Labs
2014-01-12 19:15 . 2014-01-12 19:15 -------- d-----w- c:\program files (x86)\Topaz Labs
2014-01-12 17:11 . 2014-01-12 17:21 -------- d-----w- c:\program files\Common Files\Adobe
2014-01-11 19:05 . 2014-01-11 19:05 -------- d-----w- c:\users\Marco\.android
2014-01-11 19:05 . 2014-01-11 19:05 -------- d-----w- c:\users\Marco\AppData\Local\cache
2014-01-11 01:42 . 2014-01-11 01:42 -------- d-----w- c:\programdata\Solidshield
2014-01-11 01:39 . 2014-01-11 01:39 -------- d-----w- C:\HPSDM
2014-01-10 16:38 . 2014-01-10 16:38 -------- d-----w- c:\programdata\HP
2014-01-07 12:44 . 2014-01-07 12:44 -------- d-----w- c:\users\Marco\AppData\Local\Downloaded Installations
2014-01-07 12:27 . 2014-01-07 12:27 82600 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-01-07 12:27 . 2014-01-07 12:27 42664 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-01-07 12:24 . 2014-01-07 12:23 58536 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-01-07 12:18 . 2014-01-07 12:18 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2014-01-07 12:18 . 2014-01-07 12:18 169712 ----a-w- c:\windows\SysWow64\SynTPCom.dll
2014-01-07 12:18 . 2014-01-07 12:18 421616 ----a-w- c:\windows\system32\SynTPCo19.dll
2014-01-07 12:18 . 2014-01-07 12:18 524016 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-01-07 12:18 . 2014-01-07 12:18 251632 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-01-07 12:18 . 2014-01-07 12:18 722160 ----a-w- c:\windows\system32\SynCOM.dll
2014-01-07 12:18 . 2014-01-07 12:18 400112 ----a-w- c:\windows\SysWow64\SynCom.dll
2014-01-07 12:18 . 2014-01-07 12:18 26416 ----a-w- c:\windows\system32\pca-manta.bin
2014-01-07 12:18 . 2014-01-07 12:18 92 ----a-w- c:\windows\system32\calibration.bin
2014-01-06 19:01 . 2014-01-06 19:01 -------- d-----w- c:\users\Marco\AppData\Local\DDMSettings
2014-01-06 16:45 . 2014-01-11 07:41 -------- d-----w- c:\users\Marco\AppData\Roaming\DivX
2014-01-06 16:44 . 2014-01-06 16:45 -------- d-----w- c:\program files\DivX
2014-01-06 16:44 . 2014-01-06 16:45 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2014-01-06 16:37 . 2014-01-06 16:46 -------- d-----w- c:\program files (x86)\DivX
2014-01-06 16:36 . 2014-01-06 16:46 -------- d-----w- c:\programdata\DivX
2014-01-01 21:22 . 2014-01-11 03:20 -------- d-----w- c:\users\Marco\AppData\Local\EA Games
2014-01-01 12:52 . 2014-01-01 12:52 -------- d-----w- c:\users\Marco\AppData\Roaming\Rovio
2014-01-01 12:51 . 2014-01-01 12:53 -------- d-----w- c:\users\Marco\AppData\Roaming\Rovio Entertainment Ltd
2013-12-30 19:55 . 2013-12-30 19:55 -------- d-----w- c:\users\Marco\AppData\Roaming\AVAST Software
2013-12-30 19:38 . 2013-12-30 20:10 79672 ----a-w- c:\windows\system32\drivers\aswstm.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-15 04:57 . 2012-07-06 13:31 86054176 ----a-w- c:\windows\system32\MRT.exe
2014-01-11 06:32 . 2012-04-03 15:33 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-11 06:32 . 2011-08-27 01:58 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-08 19:38 . 2013-05-09 00:43 439648 ----a-w- c:\windows\system32\drivers\aswndisflt.sys
2013-12-30 19:37 . 2013-05-05 11:22 207904 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-12-30 19:37 . 2013-05-05 11:22 1034464 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-12-30 19:37 . 2013-05-05 11:22 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-12-30 19:36 . 2013-05-05 11:22 422216 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-12-30 19:36 . 2013-05-05 11:22 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-12-30 19:36 . 2013-05-05 11:22 78648 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-12-30 19:36 . 2013-05-05 11:22 334136 ----a-w- c:\windows\system32\aswBoot.exe
2013-12-30 19:36 . 2013-05-05 11:22 43152 ----a-w- c:\windows\avastSS.scr
2013-12-30 19:36 . 2013-05-09 00:43 28184 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-12-23 02:23 . 2013-12-23 02:23 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-12-23 02:23 . 2013-12-23 02:23 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-12-23 02:23 . 2013-12-23 02:23 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-23 02:23 . 2013-12-23 02:23 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-12-23 02:23 . 2013-12-23 02:23 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-12-23 02:23 . 2013-12-23 02:23 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-12-23 02:23 . 2013-12-23 02:23 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-23 02:23 . 2013-12-23 02:23 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-12-23 02:23 . 2013-12-23 02:23 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-12-23 02:23 . 2013-12-23 02:23 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-12-23 02:23 . 2013-12-23 02:23 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-12-23 02:23 . 2013-12-23 02:23 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-12-23 02:23 . 2013-12-23 02:23 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-12-23 02:23 . 2013-12-23 02:23 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-12-23 02:23 . 2013-12-23 02:23 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-12-23 02:23 . 2013-12-23 02:23 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-12-23 02:23 . 2013-12-23 02:23 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-12-23 02:23 . 2013-12-23 02:23 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-12-23 02:23 . 2013-12-23 02:23 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-12-23 02:23 . 2013-12-23 02:23 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-12-23 02:23 . 2013-12-23 02:23 81408 ----a-w- c:\windows\system32\icardie.dll
2013-12-23 02:23 . 2013-12-23 02:23 774144 ----a-w- c:\windows\system32\jscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-12-23 02:23 . 2013-12-23 02:23 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-23 02:23 . 2013-12-23 02:23 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-12-23 02:23 . 2013-12-23 02:23 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-12-23 02:23 . 2013-12-23 02:23 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-12-23 02:23 . 2013-12-23 02:23 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-12-23 02:23 . 2013-12-23 02:23 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-12-23 02:23 . 2013-12-23 02:23 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-12-23 02:23 . 2013-12-23 02:23 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-12-23 02:23 . 2013-12-23 02:23 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-12-23 02:23 . 2013-12-23 02:23 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-12-23 02:23 . 2013-12-23 02:23 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-12-23 02:23 . 2013-12-23 02:23 413696 ----a-w- c:\windows\system32\html.iec
2013-12-23 02:23 . 2013-12-23 02:23 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-23 02:23 . 2013-12-23 02:23 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-12-23 02:23 . 2013-12-23 02:23 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-12-23 02:23 . 2013-12-23 02:23 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-12-23 02:23 . 2013-12-23 02:23 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-12-23 02:23 . 2013-12-23 02:23 247808 ----a-w- c:\windows\system32\msls31.dll
2013-12-23 02:23 . 2013-12-23 02:23 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-12-23 02:23 . 2013-12-23 02:23 235520 ----a-w- c:\windows\system32\url.dll
2013-12-23 02:23 . 2013-12-23 02:23 195584 ----a-w- c:\windows\system32\msrating.dll
2013-12-23 02:23 . 2013-12-23 02:23 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-12-23 02:23 . 2013-12-23 02:23 147968 ----a-w- c:\windows\system32\occache.dll
2013-12-23 02:23 . 2013-12-23 02:23 143872 ----a-w- c:\windows\system32\wextract.exe
2013-12-23 02:23 . 2013-12-23 02:23 13824 ----a-w- c:\windows\system32\mshta.exe
2013-12-23 02:23 . 2013-12-23 02:23 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-12-23 02:23 . 2013-12-23 02:23 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-12-23 02:23 . 2013-12-23 02:23 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-12-23 02:23 . 2013-12-23 02:23 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-12-23 02:23 . 2013-12-23 02:23 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-12-23 02:23 . 2013-12-23 02:23 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-12-23 02:23 . 2013-12-23 02:23 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-12-23 02:23 . 2013-12-23 02:23 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-12-23 02:23 . 2013-12-23 02:23 101376 ----a-w- c:\windows\system32\inseng.dll
2013-12-19 13:11 . 2013-05-05 11:22 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-12-19 13:11 . 2013-06-08 11:51 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-12-19 13:11 . 2013-06-08 11:51 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-12-18 06:11 . 2013-12-18 06:11 354656 ----a-w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
2013-12-18 05:13 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-11-26 11:54 . 2013-12-24 02:01 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-24 02:01 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-24 02:01 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-24 02:01 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-24 02:01 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-24 02:01 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-24 02:01 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-24 02:01 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-24 02:01 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-24 02:01 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-24 02:01 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-24 02:01 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-24 02:01 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-24 02:01 218624 ----a-w- c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-24 02:01 5769216 ----a-w- c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-24 02:01 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-24 02:01 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-24 02:01 1995264 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-24 02:01 12996608 ----a-w- c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-24 02:01 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-24 02:01 2334208 ----a-w- c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-24 02:01 1395200 ----a-w- c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-24 02:01 817664 ----a-w- c:\windows\system32\ieapfltr.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-05-14 318520]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2011-05-09 12277248]
"DTRun"="c:\program files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2010-11-24 517456]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-05-23 103992]
"HPQuickWebProxy"="c:\program files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" [2011-08-08 169528]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 636032]
"FaxCenterServer"="c:\program files (x86)\Lexmark Fax Solutions\fm3032.exe" [2007-02-13 312240]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-30 3764024]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AML Device Install.lnk - c:\program files (x86)\AMD AVT\bin\kdbsync.exe aml [2012-1-31 10752]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2011-05-09 22:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe;c:\program files (x86)\Xobni\XobniService.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM;c:\windows\system32\Drivers\AthDfu.sys;c:\windows\SYSNATIVE\Drivers\AthDfu.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TunngleService;TunngleService;c:\moje\Tunngle\TnglCtrl.exe;c:\moje\Tunngle\TnglCtrl.exe [x]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 MfeEpePc;MfeEpePc; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys;c:\windows\SYSNATIVE\drivers\cpuz135_x64.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S2 RtlISMServ;RtlISMServ;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-16 13:48 1211672 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 14:38]
.
2014-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 14:38]
.
2014-01-23 c:\windows\Tasks\HPCeeScheduleForMarco.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 03:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-30 19:36 287280 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-03-17 13880]
"MfeEpePcMonitor"="c:\program files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe" [2011-05-24 200704]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-07-02 1664000]
"NUSB3MON"="c:\program files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe" [2012-04-11 97280]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2012-09-14 764544]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-09-14 127616]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.audio4fun.com/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube Download - c:\users\Marco\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
LSP: %SystemRoot%\system32\WTFastDrv.dll
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{100B8348-9367-43A7-B67F-79DDA9AD5AEB} - c:\progra~3\INSTAL~2\{7D4C5~1\Setup.exe
AddRemove-{56C4C4DA-9D40-612A-4361-76CFD7EE1CE4} - c:\progra~3\INSTAL~2\{E024B~1\Setup.exe
AddRemove-{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} - c:\program files (x86)\InstallShield Installation Information\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*€ *]
@="\010\01"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\**ú;]
@="\1f??"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\5:C€V*€*]
@="j???\02"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\* ]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\/*]
@="?/"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\ć‘"}é*ˆ]
@="????"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtWlan.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
.
**************************************************************************
.
Celkový čas: 2014-01-25 08:36:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-25 07:36
.
Před spuštěním: Volných bajtů: 21 392 027 648
Po spuštění: Volných bajtů: 25 905 790 976
.
- - End Of File - - DF3B59A4C6A2B957900C3C2DE4DF258A
A36C5E4F47E84449FF07ED3517B43A31

Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:
ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:



Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci

Log z ComboFix

ComboFix 14-01-23.02 - Marco 26.01.2014 0:11.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3552.1917 [GMT 1:00]
Spuštěný z: c:\users\Marco\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Marco\Desktop\CFScript.txt
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-25 do 2014-01-25 )))))))))))))))))))))))))))))))
.
.
2014-01-25 23:54 . 2014-01-25 23:54 -------- d-----w- c:\users\fbwuser\AppData\Local\temp
2014-01-25 23:54 . 2014-01-25 23:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-25 11:45 . 2014-01-25 11:45 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4CB48A88-B982-4C7A-B10D-9FF68652B9AC}\offreg.dll
2014-01-25 07:34 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4CB48A88-B982-4C7A-B10D-9FF68652B9AC}\mpengine.dll
2014-01-23 19:44 . 2014-01-23 19:45 -------- d-----w- C:\rsit
2014-01-22 21:15 . 2014-01-22 21:15 -------- d-----w- c:\programdata\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-14 23:06 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-14 23:06 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-14 23:06 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-14 23:06 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-14 23:06 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-14 23:06 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-14 23:06 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-14 23:05 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-14 23:05 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-12 19:16 . 2014-01-12 19:52 -------- d-----w- c:\program files\Common Files\Topaz Labs
2014-01-12 19:15 . 2014-01-12 19:15 -------- d-----w- c:\program files (x86)\Common Files\Topaz Labs
2014-01-12 19:15 . 2014-01-12 19:15 -------- d-----w- c:\program files (x86)\Topaz Labs
2014-01-12 17:11 . 2014-01-12 17:21 -------- d-----w- c:\program files\Common Files\Adobe
2014-01-11 19:05 . 2014-01-11 19:05 -------- d-----w- c:\users\Marco\.android
2014-01-11 19:05 . 2014-01-11 19:05 -------- d-----w- c:\users\Marco\AppData\Local\cache
2014-01-11 01:42 . 2014-01-11 01:42 -------- d-----w- c:\programdata\Solidshield
2014-01-11 01:39 . 2014-01-11 01:39 -------- d-----w- C:\HPSDM
2014-01-10 16:38 . 2014-01-10 16:38 -------- d-----w- c:\programdata\HP
2014-01-07 12:44 . 2014-01-07 12:44 -------- d-----w- c:\users\Marco\AppData\Local\Downloaded Installations
2014-01-07 12:27 . 2014-01-07 12:27 82600 ----a-w- c:\windows\system32\drivers\amd_sata.sys
2014-01-07 12:27 . 2014-01-07 12:27 42664 ----a-w- c:\windows\system32\drivers\amd_xata.sys
2014-01-07 12:24 . 2014-01-07 12:23 58536 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2014-01-07 12:18 . 2014-01-07 12:18 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2014-01-07 12:18 . 2014-01-07 12:18 169712 ----a-w- c:\windows\SysWow64\SynTPCom.dll
2014-01-07 12:18 . 2014-01-07 12:18 421616 ----a-w- c:\windows\system32\SynTPCo19.dll
2014-01-07 12:18 . 2014-01-07 12:18 524016 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-01-07 12:18 . 2014-01-07 12:18 251632 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-01-07 12:18 . 2014-01-07 12:18 722160 ----a-w- c:\windows\system32\SynCOM.dll
2014-01-07 12:18 . 2014-01-07 12:18 400112 ----a-w- c:\windows\SysWow64\SynCom.dll
2014-01-07 12:18 . 2014-01-07 12:18 26416 ----a-w- c:\windows\system32\pca-manta.bin
2014-01-07 12:18 . 2014-01-07 12:18 92 ----a-w- c:\windows\system32\calibration.bin
2014-01-06 19:01 . 2014-01-06 19:01 -------- d-----w- c:\users\Marco\AppData\Local\DDMSettings
2014-01-06 16:45 . 2014-01-11 07:41 -------- d-----w- c:\users\Marco\AppData\Roaming\DivX
2014-01-06 16:44 . 2014-01-06 16:45 -------- d-----w- c:\program files\DivX
2014-01-06 16:44 . 2014-01-06 16:45 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2014-01-06 16:37 . 2014-01-06 16:46 -------- d-----w- c:\program files (x86)\DivX
2014-01-06 16:36 . 2014-01-06 16:46 -------- d-----w- c:\programdata\DivX
2014-01-01 21:22 . 2014-01-11 03:20 -------- d-----w- c:\users\Marco\AppData\Local\EA Games
2014-01-01 12:52 . 2014-01-01 12:52 -------- d-----w- c:\users\Marco\AppData\Roaming\Rovio
2014-01-01 12:51 . 2014-01-01 12:53 -------- d-----w- c:\users\Marco\AppData\Roaming\Rovio Entertainment Ltd
2013-12-30 19:55 . 2013-12-30 19:55 -------- d-----w- c:\users\Marco\AppData\Roaming\AVAST Software
2013-12-30 19:38 . 2013-12-30 20:10 79672 ----a-w- c:\windows\system32\drivers\aswstm.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-15 04:57 . 2012-07-06 13:31 86054176 ----a-w- c:\windows\system32\MRT.exe
2014-01-11 06:32 . 2012-04-03 15:33 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-11 06:32 . 2011-08-27 01:58 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-08 19:38 . 2013-05-09 00:43 439648 ----a-w- c:\windows\system32\drivers\aswndisflt.sys
2013-12-30 19:37 . 2013-05-05 11:22 207904 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-12-30 19:37 . 2013-05-05 11:22 1034464 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-12-30 19:37 . 2013-05-05 11:22 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-12-30 19:36 . 2013-05-05 11:22 422216 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-12-30 19:36 . 2013-05-05 11:22 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-12-30 19:36 . 2013-05-05 11:22 78648 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-12-30 19:36 . 2013-05-05 11:22 334136 ----a-w- c:\windows\system32\aswBoot.exe
2013-12-30 19:36 . 2013-05-05 11:22 43152 ----a-w- c:\windows\avastSS.scr
2013-12-30 19:36 . 2013-05-09 00:43 28184 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-12-23 02:23 . 2013-12-23 02:23 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-12-23 02:23 . 2013-12-23 02:23 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-12-23 02:23 . 2013-12-23 02:23 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-23 02:23 . 2013-12-23 02:23 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-12-23 02:23 . 2013-12-23 02:23 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-12-23 02:23 . 2013-12-23 02:23 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-12-23 02:23 . 2013-12-23 02:23 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-23 02:23 . 2013-12-23 02:23 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-12-23 02:23 . 2013-12-23 02:23 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-12-23 02:23 . 2013-12-23 02:23 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-12-23 02:23 . 2013-12-23 02:23 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-12-23 02:23 . 2013-12-23 02:23 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-12-23 02:23 . 2013-12-23 02:23 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-12-23 02:23 . 2013-12-23 02:23 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-12-23 02:23 . 2013-12-23 02:23 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-12-23 02:23 . 2013-12-23 02:23 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-12-23 02:23 . 2013-12-23 02:23 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-12-23 02:23 . 2013-12-23 02:23 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-12-23 02:23 . 2013-12-23 02:23 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-12-23 02:23 . 2013-12-23 02:23 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-12-23 02:23 . 2013-12-23 02:23 81408 ----a-w- c:\windows\system32\icardie.dll
2013-12-23 02:23 . 2013-12-23 02:23 774144 ----a-w- c:\windows\system32\jscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-12-23 02:23 . 2013-12-23 02:23 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-23 02:23 . 2013-12-23 02:23 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-12-23 02:23 . 2013-12-23 02:23 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-12-23 02:23 . 2013-12-23 02:23 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-12-23 02:23 . 2013-12-23 02:23 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-12-23 02:23 . 2013-12-23 02:23 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-12-23 02:23 . 2013-12-23 02:23 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-12-23 02:23 . 2013-12-23 02:23 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-12-23 02:23 . 2013-12-23 02:23 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-12-23 02:23 . 2013-12-23 02:23 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-12-23 02:23 . 2013-12-23 02:23 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-12-23 02:23 . 2013-12-23 02:23 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-12-23 02:23 . 2013-12-23 02:23 413696 ----a-w- c:\windows\system32\html.iec
2013-12-23 02:23 . 2013-12-23 02:23 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-23 02:23 . 2013-12-23 02:23 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-12-23 02:23 . 2013-12-23 02:23 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-12-23 02:23 . 2013-12-23 02:23 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-12-23 02:23 . 2013-12-23 02:23 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-12-23 02:23 . 2013-12-23 02:23 247808 ----a-w- c:\windows\system32\msls31.dll
2013-12-23 02:23 . 2013-12-23 02:23 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-12-23 02:23 . 2013-12-23 02:23 235520 ----a-w- c:\windows\system32\url.dll
2013-12-23 02:23 . 2013-12-23 02:23 195584 ----a-w- c:\windows\system32\msrating.dll
2013-12-23 02:23 . 2013-12-23 02:23 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-12-23 02:23 . 2013-12-23 02:23 147968 ----a-w- c:\windows\system32\occache.dll
2013-12-23 02:23 . 2013-12-23 02:23 143872 ----a-w- c:\windows\system32\wextract.exe
2013-12-23 02:23 . 2013-12-23 02:23 13824 ----a-w- c:\windows\system32\mshta.exe
2013-12-23 02:23 . 2013-12-23 02:23 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-12-23 02:23 . 2013-12-23 02:23 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-12-23 02:23 . 2013-12-23 02:23 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-12-23 02:23 . 2013-12-23 02:23 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-12-23 02:23 . 2013-12-23 02:23 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-12-23 02:23 . 2013-12-23 02:23 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-12-23 02:23 . 2013-12-23 02:23 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-12-23 02:23 . 2013-12-23 02:23 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-12-23 02:23 . 2013-12-23 02:23 101376 ----a-w- c:\windows\system32\inseng.dll
2013-12-19 13:11 . 2013-05-05 11:22 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-12-19 13:11 . 2013-06-08 11:51 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-12-19 13:11 . 2013-06-08 11:51 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-12-18 06:11 . 2013-12-18 06:11 354656 ----a-w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
2013-12-18 05:13 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2013-11-26 11:54 . 2013-12-24 02:01 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-24 02:01 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-24 02:01 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-24 02:01 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-24 02:01 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-24 02:01 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-24 02:01 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-24 02:01 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-24 02:01 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-24 02:01 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-24 02:01 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-24 02:01 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-24 02:01 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-24 02:01 218624 ----a-w- c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-24 02:01 5769216 ----a-w- c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-24 02:01 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-24 02:01 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-24 02:01 1995264 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-24 02:01 12996608 ----a-w- c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-24 02:01 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-24 02:01 2334208 ----a-w- c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-24 02:01 1395200 ----a-w- c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-24 02:01 817664 ----a-w- c:\windows\system32\ieapfltr.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2012-12-21 1090040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-05-14 318520]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2011-05-09 12277248]
"DTRun"="c:\program files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2010-11-24 517456]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-05-23 103992]
"HPQuickWebProxy"="c:\program files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" [2011-08-08 169528]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 636032]
"FaxCenterServer"="c:\program files (x86)\Lexmark Fax Solutions\fm3032.exe" [2007-02-13 312240]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-30 3764024]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AML Device Install.lnk - c:\program files (x86)\AMD AVT\bin\kdbsync.exe aml [2012-1-31 10752]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2011-05-09 22:43 75320 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe;c:\program files (x86)\Xobni\XobniService.exe [x]
R3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM;c:\windows\system32\Drivers\AthDfu.sys;c:\windows\SYSNATIVE\Drivers\AthDfu.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys;c:\windows\SYSNATIVE\DRIVERS\DAMDrv64.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe;c:\windows\SysWOW64\flcdlock.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TunngleService;TunngleService;c:\moje\Tunngle\TnglCtrl.exe;c:\moje\Tunngle\TnglCtrl.exe [x]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 MfeEpePc;MfeEpePc; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys;c:\windows\SYSNATIVE\drivers\cpuz135_x64.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [x]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [x]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
S2 RtlISMServ;RtlISMServ;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe;c:\program files (x86)\Hewlett-Packard\HP Internet Sharing Manager\HP_UI\RtlService.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [x]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
S2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys;c:\windows\SYSNATIVE\DRIVERS\ArcSoftVCapture.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys;c:\windows\SYSNATIVE\DRIVERS\jmcr.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-16 13:48 1211672 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 14:38]
.
2014-01-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-16 14:38]
.
2014-01-23 c:\windows\Tasks\HPCeeScheduleForMarco.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 03:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-30 19:36 287280 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-03-17 13880]
"MfeEpePcMonitor"="c:\program files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe" [2011-05-24 200704]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2013-07-02 1664000]
"NUSB3MON"="c:\program files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe" [2012-04-11 97280]
"BtTray"="c:\program files (x86)\Bluetooth Suite\BtTray.exe" [2012-09-14 764544]
"BtvStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2012-09-14 127616]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://search.audio4fun.com/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Free YouTube Download - c:\users\Marco\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
LSP: %SystemRoot%\system32\WTFastDrv.dll
TCP: DhcpNameServer = 10.0.0.138
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-{100B8348-9367-43A7-B67F-79DDA9AD5AEB} - c:\progra~3\INSTAL~2\{7D4C5~1\Setup.exe
AddRemove-{56C4C4DA-9D40-612A-4361-76CFD7EE1CE4} - c:\progra~3\INSTAL~2\{E024B~1\Setup.exe
AddRemove-{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} - c:\program files (x86)\InstallShield Installation Information\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*€ *]
@="\010\01"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\**ú;]
@="\1f??"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\5:C€V*€*]
@="j???\02"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\* ]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\*]
@="?"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\/*]
@="?/"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Hewlett-Packard\HP Software Framework\{F7A31DE6-534B-4564-808A-7D170A9F74A1}\DeviceDbcc\ć‘"}é*ˆ]
@="????"
.
Celkový čas: 2014-01-26 01:00:15
ComboFix-quarantined-files.txt 2014-01-26 00:00
ComboFix2.txt 2014-01-25 07:36
.
Před spuštěním: Volných bajtů: 27 216 367 616
Po spuštění: Volných bajtů: 26 820 702 208
.
- - End Of File - - 44CEDBF01B0BFBC5E4F9B4F9B2CD0EDB
A36C5E4F47E84449FF07ED3517B43A31

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Pak dej vědět jaký je stav PC.

Zdravim,

pomerne pocitac hlavne pri startu zrychlil a otevirani oken v poradku. Jedine co zustalo je po case spusteneho notase sekani zvuku a videa.. co jsem si vsiml tak se to deje hlavne pri otevirani jinych aplikaci ci internetovych stranek a v ten moment skoci vyssi vyuziti CPU - takze asi problem bude i jinde.

Ale i tak diky za pomoc aspon ze neco uz se zlepsilo

Scorpione píše:Jedine co zustalo je po case spusteneho notase sekani zvuku a videa.. co jsem si vsiml tak se to deje hlavne pri otevirani jinych aplikaci ci internetovych stranek a v ten moment skoci vyssi vyuziti CPU - takze asi problem bude i jinde

Tohle spíše vypadá na chybu hardware, v rámci možností se na to můžeme mrknout.


Stáhni HD Tune a otestuj HDD.

Benchmark - Test disku Klikni na tlačítko Start a vyčkej dokud se nezaplní celý graf. Poté se dozvíš přenosovou rychlost a přístupový čas pevného disku.

Info Přesná kapacita, souborový systém, podporované funkce, verze firmware, sériové číslo a typ zapojení disků.

Health - Kondice Seznam důležitých parametrů a jejich hodnoty. Ideální je mít všude OK.

Když je nějaká položka žlutá pravděpodobně brzy změní status na failed. Když je červená má status failed, to by znamenalo výměnu disku.

Error Scan - Hledání chyb Klikni na tlačítko Start a program prozkoumá disk zda na něm nejsou vadné bloky.

Pokud na konci testu jsou všechny zelené, je vše v pořádku. Když je byť jeden z nich červený, doporučuji zazálohovat data a počítat s výměnou disku.

Teplota Teploměr nahoře a číslo vedle něj znázorňují teplotu disku. Normální hodnota je pod 50°C. Teplota ale nesmí přesáhnout 60°C, program upozorní když dosáhne hranice 55°C.


Stáhni MEMTEST

soubor rozbal a spusť exe soubor.

Připoj flashdisk pozor vše co na něm je bude smazáno !,

v okénku Select your USB Flash Drive vyber tento disk a dej Create.

Během chvilky se Memtest nainstaluje.

Flashdisk nech v USB, restartuj PC a nabootuj z něj.

Před tím samozřemě musíš v Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav Flashdisk,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.


Pak dej vědět jak to dopadlo.

Zdravim,
diky za tip

benchmark dopadl zlute zobrazeno u access time - 17,2ms
info sem nepochopil zda mi to neco ukazuje
health - prazdno, nic tam neni zobrazene... nechapu -.-

Error scan - vse zelene

Ten dalsi program jeste jsem nevyzkousel..

Počkám si na výsledek RAMek.

Zdravim - dnes vecer se pustim do tech ramek - kvuli praci sem se k tomu driv nedostal.

Scorpione píše:Zdravim - dnes vecer se pustim do tech ramek - kvuli praci sem se k tomu driv nedostal.

V pohodě, času dost