VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

USB vir

https://forum.viry.cz:443/viewtopic.php?t=138675

Stránka 1 z 1

USB vir

Napsal: 19 čer 2014 17:16
od slovis
Dobrý den, vyskytl se mi USB vir, na který jsem podle návodu použil UsbFix. Ten smáznul jeden soubor, ale další dva označil, že nebyly smazány. Přikládám LOG a děkuji za pomoc.

############################## | UsbFix V 7.134 | [Deletion]

User: Martin Slovják (Administrator) # C02-613A
Updated 06/09/2013 by El Desaparecido
Started at 17:47:52 | 19/06/2014

Website: http://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload_malware.php
Contact: eldesaparecido@sosvirus.net

PC: Hewlett-Packard (HP ProBook 4530s) (x64-based PC)
CPU: Intel(R) Core(TM) i3-2330M CPU @ 2.20GHz (2200)
RAM -> [Total : 4030 | Free : 1859]
BIOS: Default System BIOS
BOOT: Normal boot

OS: Microsoft Windows 7 Home Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 11.0.9600.17126

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Avira Desktop [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Fixed drive # 379 Gb (266 Mb free - 70%) [] # NTFS
D:\ -> Fixed drive # 195 Gb (95 Mb free - 49%) [Data] # NTFS
E:\ -> Fixed drive # 17 Gb (3 Mb free - 15%) [HP_RECOVERY] # NTFS
F:\ -> Fixed drive # 5 Gb (2 Mb free - 42%) [HP_TOOLS] # FAT32
G:\ -> CD-ROM
H:\ -> CD-ROM

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
HKLM\SOFTWARE | Run : [File Sanitizer] - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE | Run : [NUSB3MON] - "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
HKLM\SOFTWARE | Run : [HPConnectionManager] - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [NWEReboot] -
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [StartCCC] - "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
HKLM\SOFTWARE | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [HPQuickWebProxy] - "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
HKLM\SOFTWARE\wow6432Node | Run : [QLBController] - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
HKLM\SOFTWARE\wow6432Node | Run : [File Sanitizer] - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE\wow6432Node | Run : [NUSB3MON] - "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
HKLM\SOFTWARE\wow6432Node | Run : [HPConnectionManager] - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
HKLM\SOFTWARE\wow6432Node | Run : [] -
HKLM\SOFTWARE\wow6432Node | Run : [NWEReboot] -
HKLM\SOFTWARE\wow6432Node | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE\wow6432Node | Run : [StartCCC] - "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
HKLM\SOFTWARE\wow6432Node | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE\wow6432Node | Run : [HPQuickWebProxy] - "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-249382291-896437109-2814540638-1001\SOFTWARE | Run : [NextLive] - C:\windows\SysWOW64\rundll32.exe "C:\Users\Martin Slovják\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
HKU\S-1-5-21-249382291-896437109-2814540638-1001\SOFTWARE | Run : [Google Update] - "C:\Users\Martin Slovják\AppData\Local\Google\Update\GoogleUpdate.exe" /c
HKU\S-1-5-21-249382291-896437109-2814540638-1001\SOFTWARE | Run : [DAEMON Tools Lite] - "D:\DAEMON\DTLite.exe" -autorun
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Stopped processes |

Stopped! C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe (900)
Stopped! c:\Program Files\Microsoft Security Client\MsMpEng.exe (1016)
Stopped! C:\windows\system32\atiesrxx.exe (488)
Stopped! C:\Program Files\IDT\WDM\STacSV64.exe (1136)
Stopped! C:\windows\system32\atieclxx.exe (1448)
Stopped! C:\windows\system32\Hpservice.exe (1460)
Stopped! C:\windows\system32\vcsFPService.exe (1492)
Stopped! C:\windows\System32\spoolsv.exe (1700)
Stopped! c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe (1744)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (1888)
Stopped! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1404)
Stopped! C:\Program Files\IDT\WDM\AESTSr64.exe (1600)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (1084)
Stopped! C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (1056)
Stopped! C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (2084)
Stopped! C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe (2132)
Stopped! C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe (2160)
Stopped! C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (2200)
Stopped! C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe (2232)
Stopped! D:\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe (2308)
Stopped! C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe (2344)
Stopped! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (2620)
Stopped! C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe (2740)
Stopped! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2888)
Stopped! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3056)
Stopped! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (3100)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (3268)
Stopped! C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (3288)
Stopped! C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (3548)
Stopped! c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe (3604)
Stopped! C:\windows\servicing\TrustedInstaller.exe (4064)
Stopped! C:\windows\system32\taskhost.exe (3768)
Stopped! C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (3192)
Stopped! C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (4104)
Stopped! C:\Program Files\IDT\WDM\sttray64.exe (4116)
Stopped! C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe (4124)
Stopped! C:\Program Files\Microsoft Security Client\msseces.exe (4172)
Stopped! C:\Windows\System32\igfxtray.exe (4192)
Stopped! C:\Windows\System32\hkcmd.exe (4200)
Stopped! C:\Windows\System32\igfxpers.exe (4216)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (4240)
Stopped! C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe (4836)
Stopped! C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe (4844)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (4856)
Stopped! C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (4872)
Stopped! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (4952)
Stopped! C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (4972)
Stopped! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (4980)
Stopped! C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe (4992)
Stopped! C:\windows\system32\SearchIndexer.exe (4596)
Stopped! C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (4292)
Stopped! C:\Program Files\Windows Media Player\wmpnetwk.exe (4416)
Stopped! c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe (5360)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (5836)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (4448)
Stopped! c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (5164)
Stopped! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (4332)
Stopped! C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe (4488)
Stopped! C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (6068)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (5208)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1168)
Stopped! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3128)
Stopped! C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe (5332)
Stopped! C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe (2516)
Stopped! C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (1808)
Stopped! C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSdkHelperx64.exe (4664)
Stopped! C:\windows\system32\igfxext.exe (5740)
Stopped! C:\windows\system32\igfxsrvc.exe (5400)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (884)
Stopped! C:\windows\system32\vssvc.exe (3788)
Stopped! C:\windows\system32\SearchProtocolHost.exe (4888)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (2556)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (4280)
Stopped! C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe (2856)
Stopped! C:\windows\system32\SearchFilterHost.exe (5496)
Stopped! C:\windows\system32\RunDll32.exe (5888)

################## | Files # Infected Folders |

Deleted ! C:\Users\Martin Slovják\AppData\Roaming\dll-files.com
Not deleted ! H:\Setup.exe
Not deleted ! H:\autorun.inf

(!) Temporary files deleted.

################## | Registry |


################## | Mountpoints2 |

Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{d490a465-df58-11e0-ab13-806e6f6e6963}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{ee4d05d8-a884-11e1-b6c9-101f74e92695}

################## | Listing |

[09/11/2011 - 17:11:40 | SHD ] C:\$Recycle.Bin
[29/03/2013 - 07:57:03 | N | 1492] C:\AdwCleaner[R1].txt
[02/04/2013 - 15:44:05 | N | 1110] C:\AdwCleaner[R2].txt
[31/03/2013 - 11:36:28 | N | 1503] C:\AdwCleaner[S1].txt
[23/11/2012 - 15:12:15 | D ] C:\AMD
[15/01/2012 - 16:33:57 | D ] C:\ATI
[14/11/2011 - 21:04:26 | D ] C:\Autodesk
[27/07/2009 - 17:04:41 | SHD ] C:\boot
[14/07/2009 - 03:38:58 | RASH | 383562] C:\bootmgr
[14/07/2009 - 07:08:56 | SHD ] C:\Documents and Settings
[10/05/2011 - 21:24:02 | D ] C:\EFI
[19/06/2014 - 17:33:31 | ASH | 4226138112] C:\hiberfil.sys
[10/05/2011 - 22:29:07 | D ] C:\hp
[25/08/2013 - 20:10:50 | D ] C:\Intel
[18/09/2012 - 22:02:31 | D ] C:\MITSI 2012 Temporary Files
[19/06/2014 - 17:33:35 | ASH | 4226138112] C:\pagefile.sys
[11/02/2012 - 22:58:01 | D ] C:\PerfLogs
[15/11/2011 - 20:28:16 | D ] C:\PFiles
[23/05/2014 - 10:44:39 | D ] C:\Program Files
[23/05/2014 - 10:45:37 | D ] C:\Program Files (x86)
[31/03/2014 - 15:07:54 | HD ] C:\ProgramData
[05/03/2014 - 19:57:10 | D ] C:\swsetup
[19/06/2014 - 17:44:58 | SHD ] C:\System Volume Information
[09/11/2011 - 17:37:38 | D ] C:\SYSTEM.SAV
[19/06/2014 - 17:58:33 | D ] C:\UsbFix
[19/06/2014 - 17:58:47 | A | 12233] C:\UsbFix [Clean 1] C02-613A.txt
[16/09/2012 - 12:53:39 | D ] C:\Users
[23/05/2014 - 10:45:40 | D ] C:\Windows
[02/02/2012 - 08:08:24 | SHD ] D:\$RECYCLE.BIN
[21/04/2014 - 20:35:10 | D ] D:\Autocad 2007
[20/03/2014 - 20:54:32 | D ] D:\Autodesk
[11/02/2014 - 15:15:18 | D ] D:\Cities XL
[06/08/2013 - 19:14:48 | D ] D:\CS.NS
[28/05/2012 - 13:08:19 | D ] D:\DAEMON
[28/04/2014 - 22:49:46 | D ] D:\ddd
[09/07/2012 - 12:56:37 | D ] D:\Empire Earth
[23/01/2014 - 21:48:48 | D ] D:\Fire
[19/12/2012 - 12:21:58 | D ] D:\IL
[16/08/2012 - 21:08:32 | D ] D:\IL-2
[28/05/2012 - 13:24:43 | D ] D:\KONAMI
[11/03/2013 - 18:25:32 | N | 3510632] D:\LeagueofLegends.exe
[20/12/2013 - 11:50:49 | D ] D:\LoL
[16/04/2014 - 10:35:06 | D ] D:\MC server
[26/03/2013 - 19:27:20 | D ] D:\mumble
[26/05/2013 - 15:12:31 | D ] D:\music
[13/02/2012 - 18:42:07 | D ] D:\Nokia
[26/06/2013 - 19:50:09 | D ] D:\Race Driver 3
[19/05/2013 - 17:12:01 | D ] D:\rtw
[07/06/2012 - 17:16:38 | D ] D:\SetPoint
[08/08/2012 - 08:43:39 | D ] D:\Sierra
[23/02/2014 - 11:11:42 | D ] D:\Sketchup
[26/02/2014 - 20:48:11 | D ] D:\Steam
[20/11/2012 - 16:28:48 | SHD ] D:\System Volume Information
[16/08/2012 - 15:32:33 | D ] D:\TmN
[02/01/2014 - 15:15:17 | D ] D:\TS3
[02/02/2013 - 12:39:05 | D ] D:\VHE
[25/04/2014 - 22:13:05 | D ] D:\VLC
[04/06/2014 - 15:32:34 | D ] D:\WarThunder
[18/06/2014 - 15:09:58 | D ] D:\WoT
[01/04/2014 - 13:58:31 | D ] D:\Zástupci - Plocha
[09/11/2011 - 17:11:40 | SHD ] E:\$RECYCLE.BIN
[09/11/2011 - 17:01:48 | ASHD ] E:\boot
[14/07/2009 - 03:38:58 | ASH | 383562] E:\bootmgr
[25/10/2012 - 16:17:58 | N | 21] E:\HPSF_Rep.txt
[15/09/2011 - 07:35:33 | N | 0] E:\HP_WINRE
[29/11/2011 - 16:10:44 | N | 8] E:\HP_WSD.dat
[09/11/2011 - 17:01:46 | ASHD ] E:\Recovery
[09/11/2011 - 23:17:06 | SHD ] E:\System Volume Information
[15/09/2011 - 07:35:34 | D ] E:\system.sav
[14/09/2011 - 21:32:32 | N | 33] F:\HP_Tools
[14/09/2011 - 21:52:18 | SHD ] F:\$RECYCLE.BIN
[25/10/2012 - 16:18:00 | N | 21] F:\HPSF_Rep.txt
[29/11/2011 - 15:10:46 | N | 8] F:\HP_WSD.dat
[14/09/2011 - 22:13:58 | D ] F:\Hewlett-Packard
[03/05/2006 - 17:57:04 | D ] H:\Bin
[03/05/2006 - 17:57:54 | D ] H:\MediaBrowser
[22/10/2004 - 03:38:02 | R | 126976] H:\MediaBrowser.exe
[31/01/2006 - 18:13:33 | R | 435] H:\MediaBrowser.ini
[16/12/2005 - 09:30:27 | R | 53248] H:\Setup.exe
[22/02/2002 - 21:35:36 | R | 43] H:\autorun.inf

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | E.O.F | http://www.sosvirus.net |

Re: USB vir

Napsal: 19 čer 2014 17:20
od vyosek
Zdravim :)

:arrow: Jelikoz je H:\ CD tak z nej opravdu mazat nejde...

:arrow: Jaky USB vir jste tam mel??

:arrow: Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786

Re: USB vir

Napsal: 19 čer 2014 17:23
od slovis
Veškeré soubory a složky se změnily na zástupce. Když jsem zkusil UsbFix spustit znovu, tak už nenašel nic

Re: USB vir

Napsal: 19 čer 2014 17:26
od vyosek
Log z prvniho spusteni by byl?? Flash disk je nyni OK??

A dejte i log z RSIT

Re: USB vir

Napsal: 19 čer 2014 17:27
od slovis
Log z prvního spuštění je v prvním příspěvku. USB je už OK.

LOG RSIT:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Martin Slovják at 2014-06-19 18:24:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 273 GB (70%) free of 388 GB
Total RAM: 4030 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:24:37, on 19.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal

Running processes:
C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Martin Slovják.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKCU\..\Run: [NextLive] C:\windows\SysWOW64\rundll32.exe "C:\Users\Martin Slovják\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [Google Update] "C:\Users\Martin Slovják\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\DAEMON\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Akcelerátor spuštění AutoCADu.lnk = C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DokanMounter - Unknown owner - C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012 (mitsijm2012) - Autodesk, Inc. - D:\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 14078 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000043c
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\windows\system32\Dwm.exe"
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
WLIDSvcM.exe 5184
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\Explorer.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4872.0.344143990\1057263978" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,5,15 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.910.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Martin Slovják\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/group_40/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="4872.4.719916319\460016819" /prefetch:673131151
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Martin Slovják\Desktop\RSITx64 (1).exe"

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-08-31 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NextLive"=C:\windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"Google Update"=C:\Users\Martin Slovják\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-11 136176]
"DAEMON Tools Lite"=D:\DAEMON\DTLite.exe [2012-04-11 3672384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSK DLMSession]
C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2013-02-01 1641368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
D:\DAEMON\DTLite.exe [2012-04-11 3672384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]
D:\SetPoint\SetPointP\SetPoint.exe [2011-10-07 1744152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Martin Slovják\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-11 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPQuickWebProxy]
c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-11-10 169528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
D:\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Martin Slovják^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-12-13 1198592]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-29 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"NWEReboot"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-13 343168]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2014-06-07 737872]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"HPQuickWebProxy"=C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-11-10 169528]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
""= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Akcelerátor spuštění AutoCADu.lnk - C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-09-27 68376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - "C:\windows\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2014-06-19 18:22:11 ----D---- C:\rsit
2014-06-19 18:05:31 ----RASHD---- C:\Autorun.inf
2014-06-19 18:04:41 ----A---- C:\UsbFix [Clean 2] C02-613A.txt
2014-06-19 17:47:52 ----N---- C:\UsbFix [Clean 1] C02-613A.txt
2014-06-19 17:47:15 ----D---- C:\UsbFix
2014-06-12 15:03:41 ----A---- C:\windows\SYSWOW64\usp10.dll
2014-06-12 15:03:41 ----A---- C:\windows\system32\usp10.dll
2014-06-12 15:03:38 ----A---- C:\windows\system32\drivers\tcpip.sys
2014-06-12 15:03:38 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-12 15:03:37 ----A---- C:\windows\SYSWOW64\msxml6.dll
2014-06-12 15:03:37 ----A---- C:\windows\system32\msxml6.dll
2014-06-12 15:03:37 ----A---- C:\windows\system32\msxml3.dll
2014-06-12 15:03:36 ----A---- C:\windows\SYSWOW64\msxml6r.dll
2014-06-12 15:03:36 ----A---- C:\windows\SYSWOW64\msxml3r.dll
2014-06-12 15:03:36 ----A---- C:\windows\SYSWOW64\msxml3.dll
2014-06-12 15:03:36 ----A---- C:\windows\system32\msxml6r.dll
2014-06-12 15:03:36 ----A---- C:\windows\system32\msxml3r.dll
2014-06-12 15:03:30 ----A---- C:\windows\SYSWOW64\urlmon.dll
2014-06-12 15:03:30 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2014-06-12 15:03:30 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2014-06-12 15:03:30 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-06-12 15:03:30 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2014-06-12 15:03:30 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2014-06-12 15:03:30 ----A---- C:\windows\system32\ieetwproxystub.dll
2014-06-12 15:03:29 ----A---- C:\windows\SYSWOW64\mshtml.dll
2014-06-12 15:03:29 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2014-06-12 15:03:29 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2014-06-12 15:03:28 ----A---- C:\windows\SYSWOW64\iesetup.dll
2014-06-12 15:03:28 ----A---- C:\windows\system32\urlmon.dll
2014-06-12 15:03:27 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2014-06-12 15:03:27 ----A---- C:\windows\SYSWOW64\iertutil.dll
2014-06-12 15:03:27 ----A---- C:\windows\SYSWOW64\iernonce.dll
2014-06-12 15:03:27 ----A---- C:\windows\system32\ieetwcollectorres.dll
2014-06-12 15:03:27 ----A---- C:\windows\system32\ieetwcollector.exe
2014-06-12 15:03:26 ----A---- C:\windows\SYSWOW64\ieui.dll
2014-06-12 15:03:26 ----A---- C:\windows\SYSWOW64\ieframe.dll
2014-06-12 15:03:26 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2014-06-12 15:03:26 ----A---- C:\windows\system32\msfeeds.dll
2014-06-12 15:03:26 ----A---- C:\windows\system32\dxtmsft.dll
2014-06-12 15:03:24 ----A---- C:\windows\system32\iesetup.dll
2014-06-12 15:03:24 ----A---- C:\windows\system32\iertutil.dll
2014-06-12 15:03:24 ----A---- C:\windows\system32\ie4uinit.exe
2014-06-12 15:03:23 ----A---- C:\windows\SYSWOW64\vbscript.dll
2014-06-12 15:03:23 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2014-06-12 15:03:23 ----A---- C:\windows\SYSWOW64\jscript9.dll
2014-06-12 15:03:23 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2014-06-12 15:03:23 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2014-06-12 15:03:22 ----A---- C:\windows\SYSWOW64\wininet.dll
2014-06-12 15:03:22 ----A---- C:\windows\SYSWOW64\msrating.dll
2014-06-12 15:03:22 ----A---- C:\windows\system32\jsproxy.dll
2014-06-12 15:03:22 ----A---- C:\windows\system32\iernonce.dll
2014-06-12 15:03:22 ----A---- C:\windows\system32\dxtrans.dll
2014-06-12 15:03:21 ----A---- C:\windows\system32\ieui.dll
2014-06-12 15:03:21 ----A---- C:\windows\system32\ieframe.dll
2014-06-12 15:03:20 ----A---- C:\windows\system32\mshtmlmedia.dll
2014-06-12 15:03:20 ----A---- C:\windows\system32\mshtmled.dll
2014-06-12 15:03:20 ----A---- C:\windows\system32\jscript9diag.dll
2014-06-12 15:03:20 ----A---- C:\windows\system32\ieUnatt.exe
2014-06-12 15:03:19 ----A---- C:\windows\system32\vbscript.dll
2014-06-12 15:03:19 ----A---- C:\windows\system32\jscript9.dll
2014-06-12 15:03:18 ----A---- C:\windows\system32\wininet.dll
2014-06-12 15:03:18 ----A---- C:\windows\system32\ieapfltr.dll
2014-06-12 15:03:16 ----A---- C:\windows\system32\msrating.dll
2014-06-12 15:03:15 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2014-06-12 15:03:14 ----A---- C:\windows\system32\mshtml.dll
2014-06-12 15:01:51 ----A---- C:\windows\system32\aepdu.dll
2014-06-12 15:01:51 ----A---- C:\windows\system32\aeinv.dll
2014-06-03 16:57:59 ----A---- C:\windows\SYSWOW64\shoD897.tmp

======List of files/folders modified in the last 1 months======

2014-06-19 18:24:37 ----D---- C:\Program Files\trend micro
2014-06-19 18:05:32 ----D---- C:\windows\System32
2014-06-19 18:05:32 ----D---- C:\windows\inf
2014-06-19 18:05:32 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-06-19 18:04:54 ----A---- C:\windows\SYSWOW64\log.txt
2014-06-19 18:04:49 ----D---- C:\ProgramData\HPQLOG
2014-06-19 18:00:47 ----D---- C:\Program Files (x86)
2014-06-19 18:00:06 ----D---- C:\windows\system32\config
2014-06-19 17:58:21 ----D---- C:\windows\Temp
2014-06-19 17:44:58 ----SHD---- C:\System Volume Information
2014-06-19 17:35:20 ----D---- C:\Users\Martin Slovják\AppData\Roaming\newnext.me
2014-06-15 13:44:34 ----D---- C:\Users\Martin Slovják\AppData\Roaming\TS3Client
2014-06-13 06:49:17 ----D---- C:\windows\winsxs
2014-06-12 22:11:38 ----D---- C:\windows\SysWOW64
2014-06-12 22:11:37 ----D---- C:\windows\system32\drivers
2014-06-12 22:11:34 ----D---- C:\Program Files\Internet Explorer
2014-06-12 22:11:31 ----D---- C:\windows\SYSWOW64\en-US
2014-06-12 22:11:28 ----D---- C:\windows\system32\en-US
2014-06-12 22:11:26 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-12 22:11:25 ----D---- C:\windows\system32\DriverStore
2014-06-12 22:11:09 ----D---- C:\Users\Martin Slovják\AppData\Roaming\SoftGrid Client
2014-06-12 21:03:10 ----D---- C:\windows\system32\MRT
2014-06-12 21:00:52 ----A---- C:\windows\system32\MRT.exe
2014-06-12 20:58:48 ----SD---- C:\windows\system32\CompatTel
2014-06-12 15:01:46 ----D---- C:\windows\system32\catroot
2014-06-12 15:01:13 ----D---- C:\windows\system32\catroot2
2014-06-10 20:58:01 ----D---- C:\windows\Tasks
2014-06-10 20:58:01 ----D---- C:\windows\system32\Tasks
2014-06-06 05:20:39 ----D---- C:\windows\Prefetch
2014-06-02 21:09:20 ----D---- C:\ProgramData\WarThunder
2014-05-23 10:47:19 ----SHD---- C:\windows\Installer
2014-05-23 10:47:19 ----RSD---- C:\windows\assembly
2014-05-23 10:47:18 ----D---- C:\ProgramData\Hewlett-Packard
2014-05-23 10:47:18 ----D---- C:\Program Files\Hewlett-Packard
2014-05-23 10:45:40 ----D---- C:\Windows
2014-05-23 10:45:37 ----D---- C:\ProgramData\WinZip
2014-05-23 10:44:39 ----D---- C:\Program Files
2014-05-22 19:42:53 ----D---- C:\Users\Martin Slovják\AppData\Roaming\vlc
2014-05-22 15:12:10 ----D---- C:\windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2014-06-07 130584]
R1 avkmgr;avkmgr; C:\windows\system32\DRIVERS\avkmgr.sys [2013-12-01 28600]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\windows\system32\DRIVERS\avgntflt.sys [2014-06-07 112080]
R2 Dokan;Dokan; \??\C:\windows\system32\drivers\dokan.sys [2011-01-10 120408]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-10-13 10496000]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-10-13 326656]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-28 283200]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2013-07-01 342528]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2011-08-31 12306848]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\windows\system32\DRIVERS\LEqdUsb.Sys [2011-09-02 76056]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\windows\system32\DRIVERS\LHidEqd.Sys [2011-09-02 15128]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\windows\system32\DRIVERS\LHidFilt.Sys [2011-09-02 66840]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\windows\system32\DRIVERS\LMouFilt.Sys [2011-09-02 60696]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 767144]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 273576]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 28840]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 23208]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2012-11-28 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
S3 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2014-06-07 430160]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2014-06-07 430160]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
S2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-10-13 204288]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
S2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]
S2 DokanMounter;DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [2011-01-10 14848]
S2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
S2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
S2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-29 281656]
S2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
S2 mitsijm2012;Správce úloh aplikace Autodesk Moldflow Inventor Tool Suite Integration 2012; D:\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe [2010-12-08 848184]
S2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
S2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2014-04-21 77944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2013-08-09 279024]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-04 464480]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-09-18 1431888]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-09-30 246520]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-05-30 111616]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 359192]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-25 568512]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-11-09 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2014-06-07 1039440]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Re: USB vir

Napsal: 19 čer 2014 17:28
od vyosek
:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Re: USB vir

Napsal: 19 čer 2014 17:37
od slovis
(mimochodem, to jde tak rychle přečíst ten log z RSIT? :-) )

LOG:

# AdwCleaner v3.212 - Report created 19/06/2014 at 18:33:25
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Martin Slovják - C02-613A
# Running from : C:\Users\Martin Slovják\Desktop\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Uniblue
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Users\Martin Slovják\AppData\Local\genienext
Folder Deleted : C:\Users\Martin Slovják\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Martin Slovják\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Martin Slovják\Documents\Mobogenie
File Deleted : C:\Users\Martin Slovják\daemonprocess.txt

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Uniblue

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v29.0.1 (cs)

[ File : C:\Users\Martin Slovják\AppData\Roaming\Mozilla\Firefox\Profiles\5vn01tyv.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\Martin Slovják\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2240 octets] - [19/06/2014 18:32:18]
AdwCleaner[S0].txt - [1969 octets] - [19/06/2014 18:33:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2029 octets] ##########

Re: USB vir

Napsal: 19 čer 2014 20:28
od vyosek
:arrow: Logu vidim denne desitky, tak uz je oko naucene, kam se divat a co hledat :D :D

:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    :reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NextLive"=-
"Google Update"=-
"DAEMON Tools Lite"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""=-
"NWEReboot"=-
"Adobe ARM"=-
"SunJavaUpdateSched"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
""=-

:files
C:\UsbFix
C:\UsbFix*.txt
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001UA.job
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]
  • Nasledne kliknete na Opravit
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: USB vir

Napsal: 24 čer 2014 10:57
od slovis
Omlouvám se, že jsem se dlouho neozval. Zde je log:

All processes killed
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\NextLive not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\NWEReboot deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce\\ not found.
========== FILES ==========
C:\UsbFix\Tools folder moved successfully.
C:\UsbFix\Res folder moved successfully.
C:\UsbFix\Quarantine\H folder moved successfully.
C:\UsbFix\Quarantine folder moved successfully.
C:\UsbFix folder moved successfully.
C:\UsbFix [Clean 1] C02-613A.txt moved successfully.
C:\UsbFix [Clean 2] C02-613A.txt moved successfully.
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001Core.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-249382291-896437109-2814540638-1001UA.job moved successfully.
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
C:\windows\msdownld.tmp folder moved successfully.
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Martin Slovják
->Temp folder emptied: 1757058785 bytes
->Temporary Internet Files folder emptied: 88267225 bytes
->Java cache emptied: 1045404 bytes
->FireFox cache emptied: 607815789 bytes
->Google Chrome cache emptied: 441488679 bytes
->Flash cache emptied: 511 bytes

User: Martin Slovják

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18061338 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42272415 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 751 bytes
RecycleBin emptied: 1987114326 bytes

Total Files Cleaned = 4 714,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Martin Slovják
->Flash cache emptied: 0 bytes

User: Martin Slovják

User: Public

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Martin Slovják
->Java cache emptied: 0 bytes

User: Martin Slovják

User: Public

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 06242014_114840

Files\Folders moved on Reboot...
C:\Users\Martin Slovják\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: USB vir

Napsal: 24 čer 2014 12:57
od vyosek
Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.tym.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|

Re: USB vir

Napsal: 24 čer 2014 18:44
od slovis
Děkuji za pomoc.
Mám ještě jednu malou otázku. Když se po spuštění PC (ntb) podívám do správce úloh, tak je zde proces DpAgent.exe a DpAgent.exe *32. Ten s *32 využívá poměrně dost paměti (kolem 120 000kB). Když tento proces ukončím, tak se ani nijak nebrání a znovu se spustí až po restartu. Chtěl bych se zeptat, zda je to normální nebo se kamufluje nějaká mrška. Když jsem hledal na googlu, tak DpAgent.exe by měl mít něco společného se softwarem od HP, konkrétně HP Protect security (nebo tak nějak). Díky za odpověď.

Re: USB vir

Napsal: 24 čer 2014 18:51
od vyosek
:arrow: Ten HP Protect security neni nutny pro PC, takze jej klidne odinstalujte

Jinak nemate zac, rado se stalo :)

Re: USB vir

Napsal: 24 čer 2014 18:55
od slovis
Takže není to nic škodlivého jo? Jinak můžete LOCK :)

Re: USB vir

Napsal: 24 čer 2014 18:57
od vyosek
:arrow: Neni to skodlive, ale neni to ani potrebne :D :D

Tema tedy uzaviram :closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz