Zatím sem nic nemazal pouze Avast automaticky přesunul do karantény soubor 05nOinxn.exe.part (Win32:Malware-gen).
Pěkně prosím o pomoc. Děkuji.
______________________
Logfile of random's system information tool 1.09 (written by random/random)
Run by Michal Skopik at 2014-01-26 14:18:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 47 GB (7%) free of 670 GB
Total RAM: 7654 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:18:04, on 26.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Michal Skopik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.tyn.elsat.cz:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
F2 - REG:system.ini: UserInit=%windows%\system32\userinit.exe,
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [NextLive] C:\windows\SysWOW64\rundll32.exe "C:\Users\Michal Skopik\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{5BF2F48C-4A51-4E63-960A-A5B6FE7D068A}: NameServer = 81.90.168.3,10.72.250.10
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AODService - Unknown owner - C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Unknown owner - C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10074 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
taskeng.exe {1E17AA26-EE17-4F04-B1EE-D1098D7E3D45}
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
taskeng.exe {0600FB3A-74D8-4951-AF20-8412B808CC17}
C:\windows\Explorer.EXE
C:\windows\SysWOW64\rundll32.exe "C:\Program Files (x86)\Garena Plus\ggspawn.dll",rundll_entry -p 0
C:\windows\system32\svchost.exe -k apphost
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe"
C:\windows\System32\tcpsvcs.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\svchost.exe -k iissvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
WLIDSvcM.exe 1436
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Windows\SysWOW64\rundll32.exe" "C:\Users\Michal Skopik\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\alg.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\Michal Skopik\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
=========Mozilla firefox=========
ProfilePath - C:\Users\Michal Skopik\AppData\Roaming\Mozilla\Firefox\Profiles\iglw7od7.default
prefs.js - "browser.search.useDBForOrder" - "false"
prefs.js - "browser.startup.homepage" - "https://www.google.cz/"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =800236&p="
"{336D0C35-8A85-403a-B9D2-65C292C39087}"=C:\Program Files\Web Assistant\Firefox
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/SAFFPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pages.tvunetworks.com/WebPlayer]
"Description"=TVU Web Player Plugin
"Path"=C:\windows\system32\TVUAx\npTVUAx.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk]
"Description"=Garena Talk Plugin
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
yahoo.xml
C:\Users\Michal Skopik\AppData\Roaming\Mozilla\Firefox\Profiles\iglw7od7.default\extensions\
artur.dubovoy@gmail.com
battlefieldplay4free@ea.com
WebSiteRecommendation@weliketheweb.com
youtubeunblocker@unblocker.yt
{ec9032c7-c20a-464f-7b0e-13a3a9e97385}
C:\Users\Michal Skopik\AppData\Roaming\Mozilla\Firefox\Profiles\iglw7od7.default\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-26 1390368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-02 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-26 1143168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-02 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-26 1390368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-26 1143168]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-04-22 11831400]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2011-10-19 5908928]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2011-10-19 9769888]
"Lenovo EE Boot Optimizer"=C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [2011-10-19 206176]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2011-10-19 789920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
"NextLive"=C:\windows\SysWOW64\rundll32.exe [2009-07-14 44544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Keyboard Inf.]
C:\Users\Michal Skopik\AppData\Roaming\Lenovo\msdn.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RazerGameBooster]
C:\Program Files (x86)\Razer\Razer Game Booster\RazerGameBooster.exe [2013-11-22 61152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-22 2538280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2013-09-14 295512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]
C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GShortCut]
C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\Lenovo\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\5.0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePRCShortCut]
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [2009-05-13 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-06-17 802136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeriFaceManager]
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Mirage]
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29 136488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Tray]
C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [2011-01-29 228448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\Lenovo\BLUETO~1\BTTray.exe [2011-01-13 1138464]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-12-06 766208]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-01-26 3767096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-01-26 12:36:13 ----D---- C:\Program Files\trend micro
2014-01-26 12:36:12 ----DC---- C:\rsit
2014-01-26 01:49:24 ----D---- C:\Users\Michal Skopik\AppData\Roaming\AVAST Software
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswVmm.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswStm.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswSP.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswSnx.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswRvrt.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswRdr2.sys
2014-01-26 01:48:30 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2014-01-26 01:48:29 ----A---- C:\windows\system32\aswBoot.exe
2014-01-26 01:48:27 ----A---- C:\windows\avastSS.scr
2014-01-26 01:44:53 ----D---- C:\Program Files\AVAST Software
2014-01-26 01:41:43 ----D---- C:\ProgramData\AVAST Software
2014-01-25 23:58:10 ----A---- C:\windows\system32\FNTCACHE.DAT
2014-01-25 23:54:44 ----DC---- C:\AMD
2014-01-25 23:54:43 ----DC---- C:\Drivers
2014-01-25 23:54:41 ----D---- C:\Users\Michal Skopik\AppData\Roaming\newnext.me
2014-01-25 23:54:41 ----A---- C:\windows\SYSWOW64\TCPSVCS.EXE
2014-01-25 23:54:41 ----A---- C:\windows\SYSWOW64\msiexec.exe
2014-01-25 23:54:39 ----D---- C:\Users\Michal Skopik\AppData\Roaming\OpenCandy
2014-01-25 23:54:39 ----A---- C:\windows\SYSWOW64\dllhost.exe
2014-01-25 23:54:38 ----A---- C:\windows\SYSWOW64\SEARCHINDEXER.EXE
2014-01-25 23:53:30 ----DC---- C:\MATS
2014-01-25 15:04:28 ----D---- C:\Users\Michal Skopik\AppData\Roaming\SUPERAntiSpyware.com
2014-01-25 15:03:34 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2014-01-25 15:03:34 ----D---- C:\Program Files\SUPERAntiSpyware
2014-01-24 13:50:34 ----D---- C:\ProgramData\McAfee
2014-01-22 22:43:29 ----DC---- C:\local
2014-01-22 22:38:17 ----D---- C:\Program Files (x86)\State Of Decay
2014-01-15 12:13:26 ----D---- C:\ProgramData\ATI
2014-01-15 12:06:38 ----D---- C:\Program Files (x86)\AMD AVT
2014-01-15 12:03:48 ----D---- C:\Program Files (x86)\ATI Technologies
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\OVDecode.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\OpenVideo.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\ativvsvl.dat
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\ativvsva.dat
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\atiuxpag.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\atiumdva.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\atiumdag.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\atiu9pag.dll
2014-01-15 12:02:16 ----A---- C:\windows\SYSWOW64\atipblag.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\OVDecode64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\OpenVideo64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\coinst_13.251.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\ativvsvl.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\ativvsva.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\ativvaxy_cik_nd.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\ativvaxy_cik.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\ativce02.dat
2014-01-15 12:02:16 ----A---- C:\windows\system32\atiuxp64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\atiumd6a.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\atiumd64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\atiu9p64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\atitmm64.dll
2014-01-15 12:02:16 ----A---- C:\windows\system32\atipblag.dat
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\atioglxx.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\atimpc32.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\atiglpxx.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\atigktxx.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\atidxx32.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\aticfx32.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\aticalrt.dll
2014-01-15 12:02:15 ----A---- C:\windows\SYSWOW64\amdpcom32.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\drivers\atikmpag.sys
2014-01-15 12:02:15 ----A---- C:\windows\system32\drivers\atikmdag.sys
2014-01-15 12:02:15 ----A---- C:\windows\system32\ATIODE.exe
2014-01-15 12:02:15 ----A---- C:\windows\system32\ATIODCLI.exe
2014-01-15 12:02:15 ----A---- C:\windows\system32\atio6axx.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atimuixx.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atimpc64.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atiicdxx.dat
2014-01-15 12:02:15 ----A---- C:\windows\system32\atiglpxx.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atig6txx.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atig6pxx.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atiesrxx.exe
2014-01-15 12:02:15 ----A---- C:\windows\system32\atieclxx.exe
2014-01-15 12:02:15 ----A---- C:\windows\system32\atidxx64.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\atidemgy.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\aticfx64.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\aticalrt64.dll
2014-01-15 12:02:15 ----A---- C:\windows\system32\amdpcom64.dll
2014-01-15 12:02:14 ----A---- C:\windows\SYSWOW64\aticaldd.dll
2014-01-15 12:02:14 ----A---- C:\windows\SYSWOW64\aticalcl.dll
2014-01-15 12:02:14 ----A---- C:\windows\SYSWOW64\atiadlxy.dll
2014-01-15 12:02:14 ----A---- C:\windows\SYSWOW64\amdocl_ld32.exe
2014-01-15 12:02:14 ----A---- C:\windows\SYSWOW64\amdocl_as32.exe
2014-01-15 12:02:14 ----A---- C:\windows\system32\drivers\ati2erec.dll
2014-01-15 12:02:14 ----A---- C:\windows\system32\aticaldd64.dll
2014-01-15 12:02:14 ----A---- C:\windows\system32\aticalcl64.dll
2014-01-15 12:02:14 ----A---- C:\windows\system32\atibtmon.exe
2014-01-15 12:02:14 ----A---- C:\windows\system32\atiapfxx.exe
2014-01-15 12:02:14 ----A---- C:\windows\system32\atiadlxx.dll
2014-01-15 12:02:14 ----A---- C:\windows\system32\amdocl_ld64.exe
2014-01-15 12:02:14 ----A---- C:\windows\system32\amdocl_as64.exe
2014-01-15 12:02:13 ----A---- C:\windows\SYSWOW64\amdocl.dll
2014-01-15 12:02:13 ----A---- C:\windows\system32\amdocl64.dll
2014-01-15 12:01:15 ----A---- C:\windows\system32\drivers\usbfilter.sys
2014-01-15 12:01:11 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-01-15 12:01:03 ----D---- C:\Program Files\ATI
2014-01-15 12:00:29 ----D---- C:\Program Files\ATI Technologies
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbport.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbd.sys
2014-01-15 11:00:29 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-01-15 11:00:28 ----A---- C:\windows\system32\win32k.sys
2014-01-15 11:00:28 ----A---- C:\windows\system32\drivers\netio.sys
2014-01-15 10:49:08 ----D---- C:\Program Files\AMD
2014-01-15 10:46:40 ----A---- C:\windows\system32\drivers\AtihdW76.sys
2014-01-15 10:46:40 ----A---- C:\windows\system32\DelayAPO.dll
2014-01-15 10:46:39 ----A---- C:\windows\system32\clinfo.exe
2014-01-15 10:46:38 ----A---- C:\windows\SYSWOW64\OpenCL.dll
2014-01-15 10:46:38 ----A---- C:\windows\system32\OpenCL.dll
2014-01-15 01:14:33 ----D---- C:\ProgramData\AMD
2014-01-13 21:35:15 ----DC---- C:\Thief - Deadly Shadows
2014-01-12 20:02:13 ----D---- C:\windows\DA909E623B454BA18B58FCAEBA4BCEC9.TMP
2014-01-12 19:33:17 ----DC---- C:\R.G. Catalyst
2014-01-09 20:17:35 ----D---- C:\Program Files (x86)\MSI Afterburner
2014-01-09 18:45:05 ----D---- C:\Program Files (x86)\MSI Kombustor 2.5
2014-01-09 12:19:32 ----A---- C:\windows\system32\drivers\amd_xata.sys
2014-01-09 12:19:31 ----A---- C:\windows\system32\drivers\amd_sata.sys
2014-01-09 03:07:37 ----D---- C:\ProgramData\Futuremark
2014-01-09 02:46:48 ----D---- C:\Program Files (x86)\Futuremark
2014-01-09 02:44:37 ----D---- C:\Program Files\Futuremark
2014-01-04 22:08:34 ----D---- C:\ProgramData\Uniblue
2014-01-04 18:03:54 ----D---- C:\Program Files (x86)\AMD
2014-01-04 18:01:10 ----D---- C:\ProgramData\APN
2014-01-04 13:41:50 ----D---- C:\Program Files (x86)\Mobogenie
2014-01-04 13:41:25 ----D---- C:\Program Files (x86)\Driver Fusion
2014-01-04 04:53:10 ----D---- C:\Program Files\CPUID
2014-01-03 14:58:00 ----SHD---- C:\windows\SYSWOW64\AI_RecycleBin
2014-01-03 14:57:58 ----H---- C:\Program Files (x86)\d22df7db.tmp
2014-01-03 14:57:55 ----D---- C:\Users\Michal Skopik\AppData\Roaming\PingPlotter
2014-01-03 14:57:55 ----D---- C:\Program Files (x86)\PingPlotter Standard
2014-01-03 14:57:19 ----D---- C:\Users\Michal Skopik\AppData\Roaming\Downloaded Installations
2014-01-01 21:53:39 ----D---- C:\Program Files (x86)\Viva Media
2014-01-01 21:45:15 ----D---- C:\Program Files (x86)\FutureGames
2014-01-01 20:20:56 ----D---- C:\windows\64467D47FFE44FBCABBAA0DB829A17EB.TMP
2014-01-01 19:10:52 ----D---- C:\Program Files (x86)\Hitman Absolution
2014-01-01 18:03:40 ----D---- C:\Program Files (x86)\SQUARE ENIX
======List of files/folders modified in the last 1 month======
2014-01-26 14:18:03 ----D---- C:\windows\Temp
2014-01-26 13:33:55 ----D---- C:\windows\Prefetch
2014-01-26 13:27:32 ----D---- C:\windows\System32
2014-01-26 13:27:32 ----D---- C:\windows\inf
2014-01-26 13:27:32 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-01-26 13:22:19 ----D---- C:\windows\system32\Tasks
2014-01-26 13:22:18 ----D---- C:\windows\system32\config
2014-01-26 13:21:03 ----D---- C:\windows\registration
2014-01-26 12:36:13 ----RD---- C:\Program Files
2014-01-26 02:11:04 ----D---- C:\Windows
2014-01-26 01:48:30 ----D---- C:\windows\system32\drivers
2014-01-26 01:48:29 ----D---- C:\windows\winsxs
2014-01-26 01:44:50 ----SHD---- C:\System Volume Information
2014-01-26 01:41:43 ----HD---- C:\ProgramData
2014-01-26 01:15:48 ----D---- C:\windows\Tasks
2014-01-26 01:15:48 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2014-01-26 00:30:22 ----SHD---- C:\windows\Installer
2014-01-26 00:30:18 ----SHD---- C:\Config.Msi
2014-01-26 00:09:04 ----D---- C:\windows\system32\LogFiles
2014-01-25 23:54:42 ----D---- C:\Program Files (x86)\BisonCam
2014-01-25 23:54:41 ----D---- C:\windows\SysWOW64
2014-01-25 17:09:02 ----D---- C:\Program Files (x86)\WarThunder
2014-01-25 14:23:33 ----D---- C:\Program Files (x86)\Steam
2014-01-25 14:23:32 ----D---- C:\windows\Logs
2014-01-25 14:22:37 ----RD---- C:\Program Files (x86)
2014-01-25 01:19:15 ----DC---- C:\Fraps
2014-01-24 14:55:43 ----D---- C:\windows\SYSWOW64\directx
2014-01-24 14:55:38 ----HD---- C:\windows\msdownld.tmp
2014-01-24 14:55:34 ----D---- C:\Games
2014-01-24 14:24:58 ----D---- C:\Users\Michal Skopik\AppData\Roaming\DAEMON Tools Lite
2014-01-24 00:21:34 ----D---- C:\Program Files (x86)\Little Inferno
2014-01-23 22:26:51 ----D---- C:\Program Files (x86)\Internet Explorer
2014-01-23 13:27:28 ----D---- C:\Program Files (x86)\Lucius
2014-01-23 00:48:44 ----D---- C:\Program Files (x86)\Deadly Premonition The Director's Cut
2014-01-22 23:48:04 ----D---- C:\Program Files\The Witcher 2
2014-01-22 23:40:38 ----N---- C:\windows\SYSWOW64\svchost.exe
2014-01-21 09:31:31 ----D---- C:\windows\system32\catroot2
2014-01-20 22:35:09 ----RSD---- C:\windows\Fonts
2014-01-17 14:12:07 ----D---- C:\windows\debug
2014-01-16 00:30:41 ----D---- C:\Users\Michal Skopik\AppData\Roaming\Wargaming.net
2014-01-15 14:33:13 ----D---- C:\windows\Microsoft.NET
2014-01-15 12:13:26 ----D---- C:\Users\Michal Skopik\AppData\Roaming\ATI
2014-01-15 12:06:32 ----D---- C:\Program Files (x86)\Common Files
2014-01-15 12:05:41 ----D---- C:\windows\system32\catroot
2014-01-15 12:05:38 ----D---- C:\windows\system32\DriverStore
2014-01-15 12:01:15 ----DC---- C:\windows\system32\DRVSTORE
2014-01-15 12:01:11 ----D---- C:\Program Files\Common Files
2014-01-15 11:05:04 ----D---- C:\windows\system32\MRT
2014-01-15 11:01:33 ----A---- C:\windows\system32\MRT.exe
2014-01-13 21:33:31 ----D---- C:\Users\Michal Skopik\AppData\Roaming\Skype
2014-01-13 01:35:00 ----D---- C:\Users\Michal Skopik\AppData\Roaming\Games
2014-01-12 22:13:14 ----A---- C:\windows\SYSWOW64\PnkBstrB.exe
2014-01-09 12:22:01 ----D---- C:\ProgramData\Package Cache
2014-01-09 02:50:14 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-01-07 23:27:51 ----RSD---- C:\windows\assembly
2014-01-03 03:19:36 ----D---- C:\windows\SoftwareDistribution
2014-01-02 11:17:14 ----D---- C:\windows\system32\NDF
2014-01-01 21:55:33 ----A---- C:\windows\SYSWOW64\wrap_oal.dll
2014-01-01 21:55:33 ----A---- C:\windows\SYSWOW64\OpenAL32.dll
2014-01-01 21:55:33 ----A---- C:\windows\system32\wrap_oal.dll
2014-01-01 21:55:33 ----A---- C:\windows\system32\OpenAL32.dll
2014-01-01 21:34:15 ----D---- C:\Program Files (x86)\Iceberg Interactive
2014-01-01 17:32:30 ----D---- C:\ProgramData\DAEMON Tools Lite
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\windows\system32\DRIVERS\amd_sata.sys [2013-06-28 82240]
R0 amd_xata;amd_xata; C:\windows\system32\DRIVERS\amd_xata.sys [2013-06-28 42304]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-01-26 65776]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-01-26 207904]
R0 fbfmon;fbfmon; C:\windows\system32\drivers\fbfmon.sys [2011-10-19 57952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2013-10-18 39008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; \??\C:\windows\system32\drivers\aswRdr2.sys [2014-01-26 92544]
R1 aswSnx;aswSnx; \??\C:\windows\system32\drivers\aswSnx.sys [2014-01-26 1038072]
R1 aswSP;aswSP; \??\C:\windows\system32\drivers\aswSP.sys [2014-01-26 421704]
R1 BPntDrv;BPntDrv; C:\windows\system32\drivers\BPntDrv.sys [2011-10-19 13408]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2013-05-24 58088]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2014-01-26 78648]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2012-06-13 88480]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2012-06-13 46400]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2011-10-19 29792]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2013-12-07 13207552]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2013-12-07 626176]
R3 aswStm;aswStm; \??\C:\windows\system32\drivers\aswStm.sys [2014-01-26 80184]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2011-01-29 31088]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-20 283064]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2011-04-26 2852200]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\windows\system32\DRIVERS\netr28x.sys [2013-02-25 2426672]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2010-11-30 307304]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 185344]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-12-22 1407024]
R3 usbfilter;AMD USB Filter Driver; C:\windows\system32\DRIVERS\usbfilter.sys [2011-08-17 53376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S0 sptd;sptd; C:\windows\system32\drivers\sptd.sys []
S2 athsgt;athsgt; C:\windows\system32\DRIVERS\athsgt.sys []
S2 ithsgt;ithsgt; C:\windows\system32\DRIVERS\ithsgt.sys []
S2 lilsgt;lilsgt; C:\windows\system32\DRIVERS\lilsgt.sys []
S2 limsgt;limsgt; C:\windows\system32\DRIVERS\limsgt.sys []
S3 amdiox64;AMD IO Driver; C:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 atillk64;atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTWAMPFL;btwampfl; C:\windows\system32\DRIVERS\btwampfl.sys [2011-01-13 349736]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2011-01-13 106536]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2011-01-13 138280]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2011-01-13 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2011-01-13 21416]
S3 cpuz130;cpuz130; \??\C:\Users\MICHAL~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\windows\system32\DRIVERS\VBoxNetAdp.sys [2012-04-12 147248]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 wdmirror;wdmirror; C:\windows\system32\DRIVERS\WDMirror.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2013-12-07 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-01-26 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2011-01-13 956192]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
R2 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2013-10-05 76888]
R2 RaMediaServer;Ralink UPnP Media Server; C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe [2010-05-19 454656]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 RzKLService;RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2013-11-22 105448]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\windows\system32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 27136]
S2 AODService;AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2013-05-24 137256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2013-02-17 137336]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-01-07 569768]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-11-29 1255736]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2014-01-25 180224]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
a mejte se hezky 
Přispějete na provoz fóra?