VIRY.CZ

Logfile of random's system information tool 1.10 (written by random/random)
Run by Home at 2014-06-22 20:17:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 78 GB (27%) free of 288 GB
Total RAM: 1976 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:18:02, on 22.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16555)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Home\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Home\AppData\Local\Akamai\netsession_win.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\windows\system32\wbem\unsecapp.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\taskmgr.exe
C:\windows\System32\perfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Home\Desktop\RSIT.exe
C:\Program Files\trend micro\Home.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: cenbho32.TCentrumCZBHOObject - {C91BA35D-6516-489F-A203-2992ED9A4132} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [EPSON SX430 Series] C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE /FU "C:\Users\Home\AppData\Local\Temp\E_S7281.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Home\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 9562 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C91BA35D-6516-489F-A203-2992ED9A4132}]
Lišta Centrum.cz - pomocný objekt - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-31 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - Lišta Centrum.cz - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-13 3890208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21 959904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON SX430 Series"=C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE [2011-01-20 212480]
"Akamai NetSession Interface"=C:\Users\Home\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2012-10-26 3093624]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.siren"=sirenacm.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-22 20:17:47 ----D---- C:\rsit
2014-06-22 20:17:47 ----D---- C:\Program Files\trend micro
2014-06-22 19:59:11 ----D---- C:\Program Files\Centrum Holdings s.r.o
2014-06-22 19:58:32 ----D---- C:\Program Files\CPUID
2014-06-15 16:28:50 ----D---- C:\windows\SoftwareDistribution
2014-06-15 15:49:58 ----A---- C:\windows\system32\iologmsg.dll
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\storport.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\msiscsi.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\Diskdump.sys
2014-06-15 14:58:16 ----SD---- C:\windows\system32\CompatTel
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2014-06-15 14:33:11 ----A---- C:\windows\system32\WUDFSvc.dll
2014-06-15 14:33:10 ----A---- C:\windows\system32\WUDFPlatform.dll
2014-06-15 14:33:09 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFx.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFHost.exe
2014-06-15 14:29:34 ----A---- C:\windows\system32\wmp.dll
2014-06-15 14:29:32 ----A---- C:\windows\system32\wmploc.DLL
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidparse.sys
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidclass.sys
2014-06-15 14:21:44 ----A---- C:\windows\system32\drivers\portcls.sys
2014-06-15 14:21:43 ----A---- C:\windows\system32\drivers\drmk.sys
2014-06-15 14:21:41 ----A---- C:\windows\system32\urlmon.dll
2014-06-15 14:21:41 ----A---- C:\windows\system32\mshta.exe
2014-06-15 14:21:41 ----A---- C:\windows\system32\msfeedssync.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\vbscript.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\url.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\msfeedsbs.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\jsproxy.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\ieUnatt.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\iertutil.dll
2014-06-15 14:21:37 ----A---- C:\windows\system32\wininet.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript9.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\dxtmsft.dll
2014-06-15 14:21:35 ----A---- C:\windows\system32\msfeeds.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\ieui.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\dxtrans.dll
2014-06-15 14:21:29 ----A---- C:\windows\system32\ieframe.dll
2014-06-15 14:21:28 ----A---- C:\windows\system32\mshtmled.dll
2014-06-15 14:21:26 ----A---- C:\windows\system32\mshtml.dll
2014-06-15 14:20:03 ----A---- C:\windows\system32\ntkrnlpa.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\ntoskrnl.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\lsasrv.dll
2014-06-15 14:20:02 ----A---- C:\windows\system32\kerberos.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\winlogon.exe
2014-06-15 14:20:01 ----A---- C:\windows\system32\schannel.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\msv1_0.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\objsel.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\KernelBase.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\cng.sys
2014-06-15 14:19:59 ----A---- C:\windows\system32\wdigest.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\TSpkg.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\ncrypt.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\sspicli.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\drivers\ksecdd.sys
2014-06-15 14:19:58 ----A---- C:\windows\system32\dpapiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\dimsroam.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\cngprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\capiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\adprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\wincredprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\sspisrv.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\secur32.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\lsass.exe
2014-06-15 14:19:57 ----A---- C:\windows\system32\credssp.dll
2014-06-15 14:17:08 ----A---- C:\windows\system32\mstscax.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\tsgqec.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\aaclient.dll
2014-06-15 14:16:11 ----A---- C:\windows\system32\certutil.exe
2014-06-15 14:16:10 ----A---- C:\windows\system32\certenc.dll
2014-06-15 14:15:35 ----A---- C:\windows\system32\wintrust.dll
2014-06-15 14:15:25 ----A---- C:\windows\system32\drivers\fvevol.sys
2014-06-15 14:15:24 ----A---- C:\windows\system32\WMVDECOD.DLL
2014-06-15 14:15:11 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\credui.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\authui.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\tdh.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\ntdll.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\smss.exe
2014-06-15 14:15:02 ----A---- C:\windows\system32\csrsrv.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\advapi32.dll
2014-06-15 14:14:58 ----A---- C:\windows\system32\scavengeui.dll
2014-06-15 14:14:40 ----A---- C:\windows\system32\cryptdlg.dll
2014-06-15 14:14:36 ----A---- C:\windows\system32\dpnet.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\wscript.exe
2014-06-15 14:14:34 ----A---- C:\windows\system32\scrrun.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\cscript.exe
2014-06-15 14:14:33 ----A---- C:\windows\system32\drivers\usb8023.sys
2014-06-15 14:14:31 ----A---- C:\windows\system32\msxml6.dll
2014-06-15 14:14:28 ----A---- C:\windows\system32\msxml3.dll
2014-06-15 14:14:27 ----A---- C:\windows\system32\msxml6r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\msxml3r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\atmfd.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\lpk.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\fontsub.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\dciman32.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\atmlib.dll
2014-06-15 14:14:23 ----A---- C:\windows\system32\rpcrt4.dll
2014-06-15 14:14:03 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-15 14:14:02 ----A---- C:\windows\system32\msieftp.dll
2014-06-15 14:13:59 ----A---- C:\windows\system32\qedit.dll
2014-06-15 14:13:54 ----A---- C:\windows\system32\tzres.dll
2014-06-15 14:13:47 ----A---- C:\windows\system32\imagehlp.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwansvc.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwanprotdim.dll
2014-06-15 14:13:45 ----A---- C:\windows\system32\qdvd.dll
2014-06-15 14:13:40 ----A---- C:\windows\system32\DWrite.dll
2014-06-15 14:13:39 ----A---- C:\windows\system32\FntCache.dll
2014-06-15 14:13:38 ----A---- C:\windows\system32\win32k.sys
2014-06-15 14:13:37 ----A---- C:\windows\system32\drivers\ntfs.sys
2014-06-15 14:13:31 ----A---- C:\windows\system32\win32spl.dll
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2014-06-15 14:13:28 ----A---- C:\windows\system32\comctl32.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\Wpc.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\gameux.dll
2014-06-15 14:12:37 ----A---- C:\windows\system32\drivers\tcpip.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\WebClnt.dll
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\netio.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-15 14:12:35 ----A---- C:\windows\system32\drivers\mrxdav.sys
2014-06-15 14:12:35 ----A---- C:\windows\system32\davclnt.dll
2014-06-15 14:11:36 ----A---- C:\windows\system32\kernel32.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\winsrv.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\conhost.exe
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-15 14:11:32 ----A---- C:\windows\system32\drivers\usbvideo.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\usbcir.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\USBAUDIO.sys
2014-06-15 13:59:19 ----A---- C:\windows\system32\aepdu.dll
2014-06-15 13:59:19 ----A---- C:\windows\system32\aeinv.dll
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate_isv.exe
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc_isv.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\msdrm.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\Wdfres.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2014-06-15 13:58:54 ----A---- C:\windows\system32\shdocvw.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\cryptsvc.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\crypt32.dll
2014-06-15 13:58:45 ----A---- C:\windows\system32\cryptnet.dll
2014-06-15 13:58:39 ----A---- C:\windows\system32\shell32.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcsvc6.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcore6.dll
2014-06-15 13:58:28 ----A---- C:\windows\system32\gdi32.dll
2014-06-15 13:58:27 ----A---- C:\windows\system32\IKEEXT.DLL
2014-06-15 13:58:26 ----A---- C:\windows\system32\nshwfp.dll
2014-06-15 13:58:26 ----A---- C:\windows\system32\FWPUCLNT.DLL
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbport.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbd.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\taskhost.exe
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-06-15 13:58:20 ----A---- C:\windows\system32\synceng.dll
2014-06-15 13:58:20 ----A---- C:\windows\system32\drivers\ataport.sys
2014-06-15 13:58:19 ----A---- C:\windows\system32\wer.dll
2014-06-15 13:56:46 ----A---- C:\windows\system32\usp10.dll
2014-06-15 13:51:19 ----A---- C:\windows\system32\consent.exe
2014-06-15 13:51:18 ----A---- C:\windows\system32\appinfo.dll
2014-06-15 13:35:53 ----D---- C:\Users\Home\AppData\Roaming\DonationCoder
2014-06-15 13:35:35 ----D---- C:\ProgramData\DonationCoder
2014-06-15 13:35:35 ----D---- C:\Program Files\ScreenshotCaptor
2014-06-15 13:11:28 ----D---- C:\windows\system32\catroot2
2014-06-14 21:14:18 ----D---- C:\Users\Home\AppData\Roaming\Dream Aquarium
2014-06-14 21:14:14 ----D---- C:\Program Files\Dream Aquarium
2014-06-14 14:22:04 ----D---- C:\Program Files\Defraggler
2014-06-14 13:43:37 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2014-06-22 20:17:59 ----D---- C:\windows\Prefetch
2014-06-22 20:17:47 ----RD---- C:\Program Files
2014-06-22 19:59:14 ----SHD---- C:\windows\Installer
2014-06-22 19:59:13 ----SHD---- C:\Config.Msi
2014-06-22 19:59:02 ----SHD---- C:\System Volume Information
2014-06-22 19:57:46 ----D---- C:\Users\Home\AppData\Roaming\Skype
2014-06-22 19:55:05 ----D---- C:\windows\Temp
2014-06-22 12:40:38 ----D---- C:\windows\system32\config
2014-06-22 04:11:40 ----D---- C:\windows\Logs
2014-06-22 04:11:06 ----D---- C:\Windows
2014-06-21 17:18:38 ----D---- C:\windows\inf
2014-06-17 15:03:58 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-06-17 01:42:14 ----D---- C:\windows\rescache
2014-06-16 17:47:53 ----D---- C:\windows\System32
2014-06-16 17:47:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-06-15 17:22:47 ----D---- C:\windows\Microsoft.NET
2014-06-15 17:20:24 ----RSD---- C:\windows\assembly
2014-06-15 16:35:58 ----D---- C:\windows\system32\catroot
2014-06-15 16:15:09 ----D---- C:\windows\winsxs
2014-06-15 16:13:47 ----D---- C:\windows\system32\DriverStore
2014-06-15 16:13:47 ----D---- C:\windows\system32\drivers
2014-06-15 16:13:47 ----D---- C:\windows\system32\cs-CZ
2014-06-15 14:58:20 ----RSD---- C:\windows\Fonts
2014-06-15 14:58:20 ----D---- C:\windows\AppPatch
2014-06-15 14:58:19 ----D---- C:\windows\system32\migration
2014-06-15 14:58:19 ----D---- C:\Program Files\Internet Explorer
2014-06-15 14:58:18 ----D---- C:\windows\system32\drivers\cs-CZ
2014-06-15 14:58:18 ----D---- C:\Program Files\Windows Journal
2014-06-15 14:58:15 ----D---- C:\Program Files\Windows Media Player
2014-06-15 14:58:13 ----D---- C:\windows\system32\wbem
2014-06-15 14:58:13 ----D---- C:\Program Files\Windows Defender
2014-06-15 13:35:35 ----HD---- C:\ProgramData
2014-06-15 04:25:10 ----D---- C:\Program Files\LSI SoftModem
2014-06-15 03:56:43 ----D---- C:\Program Files\Ubisoft
2014-06-15 03:56:17 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-14 14:07:57 ----D---- C:\Program Files\Google
2014-06-14 14:01:41 ----D---- C:\Program Files\GameSpy Arcade
2014-06-14 14:00:18 ----D---- C:\Program Files\Jaws Unleashed
2014-06-14 13:58:47 ----D---- C:\ProgramData\Google
2014-06-14 13:53:27 ----D---- C:\windows\Panther
2014-06-14 13:53:26 ----D---- C:\windows\Minidump
2014-06-14 13:53:26 ----D---- C:\windows\debug
2014-06-14 13:43:49 ----D---- C:\windows\system32\Tasks
2014-06-11 16:16:50 ----D---- C:\windows\system32\MRT
2014-06-11 16:14:09 ----A---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-05-03 49944]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-05-03 180632]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-05-03 81768]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-05-03 24184]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-05-03 67824]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-05-12 68312]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 AmdLLD;AMD Low Level Device Driver; C:\windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2011-09-08 1117800]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-01-19 1763968]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S1 aswKbd;aswKbd; \??\C:\windows\system32\drivers\aswKbd.sys []
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 apf001;apf001; \??\C:\AeriaGames\Wolfteam\apf001.sys [2012-01-29 10872]
S3 apf003;apf003; \??\C:\windows\system32\apf003.sys [2012-12-22 13232]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2014-05-17 107736]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys []
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2011-01-11 156160]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2011-01-11 125440]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-18 230968]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-02 113704]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-17 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-30 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Zdravím!
Spusťte nejprve tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Dobrý den

# AdwCleaner v3.212 - Report created 22/06/2014 at 21:02:20
# Updated 05/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Home - HOME-HP
# Running from : C:\Users\Home\Desktop\adwcleaner_3.212.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Home\AppData\Local\Babylon
Folder Deleted : C:\Users\Home\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Home\AppData\Roaming\Media Finder
Folder Deleted : C:\Users\Home\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Deleted : HKLM\SOFTWARE\Classes\MF
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings.1
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin
Key Deleted : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_utorrent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_utorrent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{192F487E-E812-40C0-B0DE-CB4BFA20F37B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79332472-47F3-4E32-B07F-CF8DF4C58499}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BC153A3C-0BB7-4EED-83AE-28E6E398F56E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A86782D8-7B41-452F-A217-1854F72DBA54}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D9083CE-8758-4704-BA57-3C891D7452BD}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{93A3111F-4F74-4ED8-895E-D9708497629E}]
Key Deleted : HKCU\Software\MediaFinder
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16555


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3979 octets] - [22/06/2014 21:01:28]
AdwCleaner[S0].txt - [3937 octets] - [22/06/2014 21:02:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3997 octets] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Home at 2014-06-22 22:31:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 78 GB (27%) free of 288 GB
Total RAM: 1976 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:31:48, on 22.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16555)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Users\Home\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Home\AppData\Local\Akamai\netsession_win.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\wuauclt.exe
C:\Users\Home\Desktop\RSIT.exe
C:\Program Files\trend micro\Home.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: cenbho32.TCentrumCZBHOObject - {C91BA35D-6516-489F-A203-2992ED9A4132} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [EPSON SX430 Series] C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE /FU "C:\Users\Home\AppData\Local\Temp\E_S7281.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Home\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 9271 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C91BA35D-6516-489F-A203-2992ED9A4132}]
Lišta Centrum.cz - pomocný objekt - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-31 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - Lišta Centrum.cz - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-13 3890208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21 959904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON SX430 Series"=C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE [2011-01-20 212480]
"Akamai NetSession Interface"=C:\Users\Home\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2012-10-26 3093624]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.siren"=sirenacm.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-22 21:02:04 ----A---- C:\windows\system32\sqlite3.dll
2014-06-22 21:01:26 ----D---- C:\AdwCleaner
2014-06-22 20:17:47 ----D---- C:\rsit
2014-06-22 20:17:47 ----D---- C:\Program Files\trend micro
2014-06-22 19:59:11 ----D---- C:\Program Files\Centrum Holdings s.r.o
2014-06-22 19:58:32 ----D---- C:\Program Files\CPUID
2014-06-15 16:28:50 ----D---- C:\windows\SoftwareDistribution
2014-06-15 15:49:58 ----A---- C:\windows\system32\iologmsg.dll
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\storport.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\msiscsi.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\Diskdump.sys
2014-06-15 14:58:16 ----SD---- C:\windows\system32\CompatTel
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2014-06-15 14:33:11 ----A---- C:\windows\system32\WUDFSvc.dll
2014-06-15 14:33:10 ----A---- C:\windows\system32\WUDFPlatform.dll
2014-06-15 14:33:09 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFx.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFHost.exe
2014-06-15 14:29:34 ----A---- C:\windows\system32\wmp.dll
2014-06-15 14:29:32 ----A---- C:\windows\system32\wmploc.DLL
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidparse.sys
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidclass.sys
2014-06-15 14:21:44 ----A---- C:\windows\system32\drivers\portcls.sys
2014-06-15 14:21:43 ----A---- C:\windows\system32\drivers\drmk.sys
2014-06-15 14:21:41 ----A---- C:\windows\system32\urlmon.dll
2014-06-15 14:21:41 ----A---- C:\windows\system32\mshta.exe
2014-06-15 14:21:41 ----A---- C:\windows\system32\msfeedssync.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\vbscript.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\url.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\msfeedsbs.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\jsproxy.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\ieUnatt.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\iertutil.dll
2014-06-15 14:21:37 ----A---- C:\windows\system32\wininet.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript9.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\dxtmsft.dll
2014-06-15 14:21:35 ----A---- C:\windows\system32\msfeeds.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\ieui.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\dxtrans.dll
2014-06-15 14:21:29 ----A---- C:\windows\system32\ieframe.dll
2014-06-15 14:21:28 ----A---- C:\windows\system32\mshtmled.dll
2014-06-15 14:21:26 ----A---- C:\windows\system32\mshtml.dll
2014-06-15 14:20:03 ----A---- C:\windows\system32\ntkrnlpa.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\ntoskrnl.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\lsasrv.dll
2014-06-15 14:20:02 ----A---- C:\windows\system32\kerberos.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\winlogon.exe
2014-06-15 14:20:01 ----A---- C:\windows\system32\schannel.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\msv1_0.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\objsel.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\KernelBase.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\cng.sys
2014-06-15 14:19:59 ----A---- C:\windows\system32\wdigest.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\TSpkg.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\ncrypt.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\sspicli.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\drivers\ksecdd.sys
2014-06-15 14:19:58 ----A---- C:\windows\system32\dpapiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\dimsroam.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\cngprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\capiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\adprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\wincredprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\sspisrv.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\secur32.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\lsass.exe
2014-06-15 14:19:57 ----A---- C:\windows\system32\credssp.dll
2014-06-15 14:17:08 ----A---- C:\windows\system32\mstscax.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\tsgqec.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\aaclient.dll
2014-06-15 14:16:11 ----A---- C:\windows\system32\certutil.exe
2014-06-15 14:16:10 ----A---- C:\windows\system32\certenc.dll
2014-06-15 14:15:35 ----A---- C:\windows\system32\wintrust.dll
2014-06-15 14:15:25 ----A---- C:\windows\system32\drivers\fvevol.sys
2014-06-15 14:15:24 ----A---- C:\windows\system32\WMVDECOD.DLL
2014-06-15 14:15:11 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\credui.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\authui.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\tdh.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\ntdll.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\smss.exe
2014-06-15 14:15:02 ----A---- C:\windows\system32\csrsrv.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\advapi32.dll
2014-06-15 14:14:58 ----A---- C:\windows\system32\scavengeui.dll
2014-06-15 14:14:40 ----A---- C:\windows\system32\cryptdlg.dll
2014-06-15 14:14:36 ----A---- C:\windows\system32\dpnet.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\wscript.exe
2014-06-15 14:14:34 ----A---- C:\windows\system32\scrrun.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\cscript.exe
2014-06-15 14:14:33 ----A---- C:\windows\system32\drivers\usb8023.sys
2014-06-15 14:14:31 ----A---- C:\windows\system32\msxml6.dll
2014-06-15 14:14:28 ----A---- C:\windows\system32\msxml3.dll
2014-06-15 14:14:27 ----A---- C:\windows\system32\msxml6r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\msxml3r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\atmfd.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\lpk.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\fontsub.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\dciman32.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\atmlib.dll
2014-06-15 14:14:23 ----A---- C:\windows\system32\rpcrt4.dll
2014-06-15 14:14:03 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-15 14:14:02 ----A---- C:\windows\system32\msieftp.dll
2014-06-15 14:13:59 ----A---- C:\windows\system32\qedit.dll
2014-06-15 14:13:54 ----A---- C:\windows\system32\tzres.dll
2014-06-15 14:13:47 ----A---- C:\windows\system32\imagehlp.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwansvc.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwanprotdim.dll
2014-06-15 14:13:45 ----A---- C:\windows\system32\qdvd.dll
2014-06-15 14:13:40 ----A---- C:\windows\system32\DWrite.dll
2014-06-15 14:13:39 ----A---- C:\windows\system32\FntCache.dll
2014-06-15 14:13:38 ----A---- C:\windows\system32\win32k.sys
2014-06-15 14:13:37 ----A---- C:\windows\system32\drivers\ntfs.sys
2014-06-15 14:13:31 ----A---- C:\windows\system32\win32spl.dll
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2014-06-15 14:13:28 ----A---- C:\windows\system32\comctl32.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\Wpc.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\gameux.dll
2014-06-15 14:12:37 ----A---- C:\windows\system32\drivers\tcpip.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\WebClnt.dll
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\netio.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-15 14:12:35 ----A---- C:\windows\system32\drivers\mrxdav.sys
2014-06-15 14:12:35 ----A---- C:\windows\system32\davclnt.dll
2014-06-15 14:11:36 ----A---- C:\windows\system32\kernel32.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\winsrv.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\conhost.exe
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-15 14:11:32 ----A---- C:\windows\system32\drivers\usbvideo.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\usbcir.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\USBAUDIO.sys
2014-06-15 13:59:19 ----A---- C:\windows\system32\aepdu.dll
2014-06-15 13:59:19 ----A---- C:\windows\system32\aeinv.dll
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate_isv.exe
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc_isv.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\msdrm.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\Wdfres.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2014-06-15 13:58:54 ----A---- C:\windows\system32\shdocvw.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\cryptsvc.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\crypt32.dll
2014-06-15 13:58:45 ----A---- C:\windows\system32\cryptnet.dll
2014-06-15 13:58:39 ----A---- C:\windows\system32\shell32.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcsvc6.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcore6.dll
2014-06-15 13:58:28 ----A---- C:\windows\system32\gdi32.dll
2014-06-15 13:58:27 ----A---- C:\windows\system32\IKEEXT.DLL
2014-06-15 13:58:26 ----A---- C:\windows\system32\nshwfp.dll
2014-06-15 13:58:26 ----A---- C:\windows\system32\FWPUCLNT.DLL
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbport.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbd.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\taskhost.exe
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-06-15 13:58:20 ----A---- C:\windows\system32\synceng.dll
2014-06-15 13:58:20 ----A---- C:\windows\system32\drivers\ataport.sys
2014-06-15 13:58:19 ----A---- C:\windows\system32\wer.dll
2014-06-15 13:56:46 ----A---- C:\windows\system32\usp10.dll
2014-06-15 13:51:19 ----A---- C:\windows\system32\consent.exe
2014-06-15 13:51:18 ----A---- C:\windows\system32\appinfo.dll
2014-06-15 13:35:53 ----D---- C:\Users\Home\AppData\Roaming\DonationCoder
2014-06-15 13:35:35 ----D---- C:\ProgramData\DonationCoder
2014-06-15 13:35:35 ----D---- C:\Program Files\ScreenshotCaptor
2014-06-15 13:11:28 ----D---- C:\windows\system32\catroot2
2014-06-14 21:14:18 ----D---- C:\Users\Home\AppData\Roaming\Dream Aquarium
2014-06-14 21:14:14 ----D---- C:\Program Files\Dream Aquarium
2014-06-14 14:22:04 ----D---- C:\Program Files\Defraggler
2014-06-14 13:43:37 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2014-06-22 22:31:48 ----D---- C:\windows\Prefetch
2014-06-22 21:53:12 ----D---- C:\windows\system32\config
2014-06-22 21:32:09 ----D---- C:\windows\Temp
2014-06-22 21:05:11 ----D---- C:\Windows
2014-06-22 21:02:20 ----HD---- C:\ProgramData
2014-06-22 21:02:04 ----D---- C:\windows\System32
2014-06-22 20:17:47 ----RD---- C:\Program Files
2014-06-22 19:59:14 ----SHD---- C:\windows\Installer
2014-06-22 19:59:13 ----SHD---- C:\Config.Msi
2014-06-22 19:59:02 ----SHD---- C:\System Volume Information
2014-06-22 19:57:46 ----D---- C:\Users\Home\AppData\Roaming\Skype
2014-06-22 04:11:40 ----D---- C:\windows\Logs
2014-06-21 17:18:38 ----D---- C:\windows\inf
2014-06-17 15:03:58 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-06-17 01:42:14 ----D---- C:\windows\rescache
2014-06-16 17:47:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-06-15 17:22:47 ----D---- C:\windows\Microsoft.NET
2014-06-15 17:20:24 ----RSD---- C:\windows\assembly
2014-06-15 16:35:58 ----D---- C:\windows\system32\catroot
2014-06-15 16:15:09 ----D---- C:\windows\winsxs
2014-06-15 16:13:47 ----D---- C:\windows\system32\DriverStore
2014-06-15 16:13:47 ----D---- C:\windows\system32\drivers
2014-06-15 16:13:47 ----D---- C:\windows\system32\cs-CZ
2014-06-15 14:58:20 ----RSD---- C:\windows\Fonts
2014-06-15 14:58:20 ----D---- C:\windows\AppPatch
2014-06-15 14:58:19 ----D---- C:\windows\system32\migration
2014-06-15 14:58:19 ----D---- C:\Program Files\Internet Explorer
2014-06-15 14:58:18 ----D---- C:\windows\system32\drivers\cs-CZ
2014-06-15 14:58:18 ----D---- C:\Program Files\Windows Journal
2014-06-15 14:58:15 ----D---- C:\Program Files\Windows Media Player
2014-06-15 14:58:13 ----D---- C:\windows\system32\wbem
2014-06-15 14:58:13 ----D---- C:\Program Files\Windows Defender
2014-06-15 04:25:10 ----D---- C:\Program Files\LSI SoftModem
2014-06-15 03:56:43 ----D---- C:\Program Files\Ubisoft
2014-06-15 03:56:17 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-14 14:07:57 ----D---- C:\Program Files\Google
2014-06-14 14:01:41 ----D---- C:\Program Files\GameSpy Arcade
2014-06-14 14:00:18 ----D---- C:\Program Files\Jaws Unleashed
2014-06-14 13:58:47 ----D---- C:\ProgramData\Google
2014-06-14 13:53:27 ----D---- C:\windows\Panther
2014-06-14 13:53:26 ----D---- C:\windows\Minidump
2014-06-14 13:53:26 ----D---- C:\windows\debug
2014-06-14 13:43:49 ----D---- C:\windows\system32\Tasks
2014-06-11 16:16:50 ----D---- C:\windows\system32\MRT
2014-06-11 16:14:09 ----A---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-05-03 49944]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-05-03 180632]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-05-03 81768]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-05-03 24184]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-05-03 67824]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-05-12 68312]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 AmdLLD;AMD Low Level Device Driver; C:\windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2011-09-08 1117800]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-01-19 1763968]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S1 aswKbd;aswKbd; \??\C:\windows\system32\drivers\aswKbd.sys []
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 apf001;apf001; \??\C:\AeriaGames\Wolfteam\apf001.sys [2012-01-29 10872]
S3 apf003;apf003; \??\C:\windows\system32\apf003.sys [2012-12-22 13232]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2014-05-17 107736]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys []
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2011-01-11 156160]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2011-01-11 125440]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-18 230968]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-02 113704]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-17 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-30 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Windows Live\Companion\companioncore.dll
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Home\AppData\Local\Akamai

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Ještě mi to po restartu PC vyhodilo tenhle log:
All processes killed
========== FILES ==========
DllUnregisterServer procedure not found in C:\Program Files\Windows Live\Companion\companioncore.dll
C:\Program Files\Windows Live\Companion\companioncore.dll moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Users\Home\AppData\Local\Akamai\Logs\dump folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Logs folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Languages folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com\files\games\us\wolfteam\clients folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com\files\games\us\wolfteam folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com\files\games\us folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com\files\games folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com\files folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache\csd.aeriagames.com folder moved successfully.
C:\Users\Home\AppData\Local\Akamai\Cache folder moved successfully.
C:\Users\Home\AppData\Local\Akamai folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Home
->Temp folder emptied: 3242919 bytes
->Temporary Internet Files folder emptied: 11095933 bytes
->Java cache emptied: 25464282 bytes
->Google Chrome cache emptied: 66777298 bytes
->Flash cache emptied: 1016 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 39070977 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 390071480 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 511.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Home
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 06222014_232212

Files moved on Reboot...
File move failed. C:\windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Log z RIST:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Home at 2014-06-22 23:31:19
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 78 GB (27%) free of 288 GB
Total RAM: 1976 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:31:43, on 22.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16555)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\Home\Desktop\RSIT.exe
C:\Program Files\trend micro\Home.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: cenbho32.TCentrumCZBHOObject - {C91BA35D-6516-489F-A203-2992ED9A4132} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Lišta Centrum.cz - {5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [EPSON SX430 Series] C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE /FU "C:\Users\Home\AppData\Local\Temp\E_S7281.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll (file missing)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 9016 bytes

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C91BA35D-6516-489F-A203-2992ED9A4132}]
Lišta Centrum.cz - pomocný objekt - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-31 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5D9C17C6-093D-43E5-BF3D-4A13D162AB74} - Lišta Centrum.cz - C:\Program Files\Centrum Holdings s.r.o\Lišta Centrum.cz\cenbho32.dll [2013-01-23 485848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2010-03-12 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2010-03-12 175640]
"Persistence"=C:\windows\system32\igfxpers.exe [2010-03-12 166936]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-13 3890208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21 959904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON SX430 Series"=C:\windows\system32\spool\DRIVERS\W32X86\3\E_FATIHAE.EXE [2011-01-20 212480]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2012-10-26 3093624]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-01-25 225792]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.siren"=sirenacm.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-06-22 23:22:12 ----D---- C:\_OTM
2014-06-22 21:02:04 ----A---- C:\windows\system32\sqlite3.dll
2014-06-22 21:01:26 ----D---- C:\AdwCleaner
2014-06-22 20:17:47 ----D---- C:\rsit
2014-06-22 20:17:47 ----D---- C:\Program Files\trend micro
2014-06-22 19:59:11 ----D---- C:\Program Files\Centrum Holdings s.r.o
2014-06-22 19:58:32 ----D---- C:\Program Files\CPUID
2014-06-15 16:28:50 ----D---- C:\windows\SoftwareDistribution
2014-06-15 15:49:58 ----A---- C:\windows\system32\iologmsg.dll
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\storport.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\msiscsi.sys
2014-06-15 15:49:58 ----A---- C:\windows\system32\drivers\Diskdump.sys
2014-06-15 14:58:16 ----SD---- C:\windows\system32\CompatTel
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2014-06-15 14:33:12 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2014-06-15 14:33:11 ----A---- C:\windows\system32\WUDFSvc.dll
2014-06-15 14:33:10 ----A---- C:\windows\system32\WUDFPlatform.dll
2014-06-15 14:33:09 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFx.dll
2014-06-15 14:33:08 ----A---- C:\windows\system32\WUDFHost.exe
2014-06-15 14:29:34 ----A---- C:\windows\system32\wmp.dll
2014-06-15 14:29:32 ----A---- C:\windows\system32\wmploc.DLL
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidparse.sys
2014-06-15 14:21:46 ----A---- C:\windows\system32\drivers\hidclass.sys
2014-06-15 14:21:44 ----A---- C:\windows\system32\drivers\portcls.sys
2014-06-15 14:21:43 ----A---- C:\windows\system32\drivers\drmk.sys
2014-06-15 14:21:41 ----A---- C:\windows\system32\urlmon.dll
2014-06-15 14:21:41 ----A---- C:\windows\system32\mshta.exe
2014-06-15 14:21:41 ----A---- C:\windows\system32\msfeedssync.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\vbscript.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\url.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\msfeedsbs.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\jsproxy.dll
2014-06-15 14:21:39 ----A---- C:\windows\system32\ieUnatt.exe
2014-06-15 14:21:39 ----A---- C:\windows\system32\iertutil.dll
2014-06-15 14:21:37 ----A---- C:\windows\system32\wininet.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript9.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\jscript.dll
2014-06-15 14:21:36 ----A---- C:\windows\system32\dxtmsft.dll
2014-06-15 14:21:35 ----A---- C:\windows\system32\msfeeds.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\ieui.dll
2014-06-15 14:21:31 ----A---- C:\windows\system32\dxtrans.dll
2014-06-15 14:21:29 ----A---- C:\windows\system32\ieframe.dll
2014-06-15 14:21:28 ----A---- C:\windows\system32\mshtmled.dll
2014-06-15 14:21:26 ----A---- C:\windows\system32\mshtml.dll
2014-06-15 14:20:03 ----A---- C:\windows\system32\ntkrnlpa.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\ntoskrnl.exe
2014-06-15 14:20:02 ----A---- C:\windows\system32\lsasrv.dll
2014-06-15 14:20:02 ----A---- C:\windows\system32\kerberos.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\winlogon.exe
2014-06-15 14:20:01 ----A---- C:\windows\system32\schannel.dll
2014-06-15 14:20:01 ----A---- C:\windows\system32\msv1_0.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\objsel.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\KernelBase.dll
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2014-06-15 14:20:00 ----A---- C:\windows\system32\drivers\cng.sys
2014-06-15 14:19:59 ----A---- C:\windows\system32\wdigest.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\TSpkg.dll
2014-06-15 14:19:59 ----A---- C:\windows\system32\ncrypt.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\sspicli.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\drivers\ksecdd.sys
2014-06-15 14:19:58 ----A---- C:\windows\system32\dpapiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\dimsroam.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\cngprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\capiprovider.dll
2014-06-15 14:19:58 ----A---- C:\windows\system32\adprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\wincredprovider.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\sspisrv.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\secur32.dll
2014-06-15 14:19:57 ----A---- C:\windows\system32\lsass.exe
2014-06-15 14:19:57 ----A---- C:\windows\system32\credssp.dll
2014-06-15 14:17:08 ----A---- C:\windows\system32\mstscax.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\tsgqec.dll
2014-06-15 14:17:00 ----A---- C:\windows\system32\aaclient.dll
2014-06-15 14:16:11 ----A---- C:\windows\system32\certutil.exe
2014-06-15 14:16:10 ----A---- C:\windows\system32\certenc.dll
2014-06-15 14:15:35 ----A---- C:\windows\system32\wintrust.dll
2014-06-15 14:15:25 ----A---- C:\windows\system32\drivers\fvevol.sys
2014-06-15 14:15:24 ----A---- C:\windows\system32\WMVDECOD.DLL
2014-06-15 14:15:11 ----A---- C:\windows\system32\SmartcardCredentialProvider.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\credui.dll
2014-06-15 14:15:11 ----A---- C:\windows\system32\authui.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\tdh.dll
2014-06-15 14:15:03 ----A---- C:\windows\system32\ntdll.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\smss.exe
2014-06-15 14:15:02 ----A---- C:\windows\system32\csrsrv.dll
2014-06-15 14:15:02 ----A---- C:\windows\system32\advapi32.dll
2014-06-15 14:14:58 ----A---- C:\windows\system32\scavengeui.dll
2014-06-15 14:14:40 ----A---- C:\windows\system32\cryptdlg.dll
2014-06-15 14:14:36 ----A---- C:\windows\system32\dpnet.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\wscript.exe
2014-06-15 14:14:34 ----A---- C:\windows\system32\scrrun.dll
2014-06-15 14:14:34 ----A---- C:\windows\system32\cscript.exe
2014-06-15 14:14:33 ----A---- C:\windows\system32\drivers\usb8023.sys
2014-06-15 14:14:31 ----A---- C:\windows\system32\msxml6.dll
2014-06-15 14:14:28 ----A---- C:\windows\system32\msxml3.dll
2014-06-15 14:14:27 ----A---- C:\windows\system32\msxml6r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\msxml3r.dll
2014-06-15 14:14:26 ----A---- C:\windows\system32\atmfd.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\lpk.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\fontsub.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\dciman32.dll
2014-06-15 14:14:25 ----A---- C:\windows\system32\atmlib.dll
2014-06-15 14:14:23 ----A---- C:\windows\system32\rpcrt4.dll
2014-06-15 14:14:03 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-15 14:14:02 ----A---- C:\windows\system32\msieftp.dll
2014-06-15 14:13:59 ----A---- C:\windows\system32\qedit.dll
2014-06-15 14:13:54 ----A---- C:\windows\system32\tzres.dll
2014-06-15 14:13:47 ----A---- C:\windows\system32\imagehlp.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwansvc.dll
2014-06-15 14:13:46 ----A---- C:\windows\system32\wwanprotdim.dll
2014-06-15 14:13:45 ----A---- C:\windows\system32\qdvd.dll
2014-06-15 14:13:40 ----A---- C:\windows\system32\DWrite.dll
2014-06-15 14:13:39 ----A---- C:\windows\system32\FntCache.dll
2014-06-15 14:13:38 ----A---- C:\windows\system32\win32k.sys
2014-06-15 14:13:37 ----A---- C:\windows\system32\drivers\ntfs.sys
2014-06-15 14:13:31 ----A---- C:\windows\system32\win32spl.dll
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2014-06-15 14:13:30 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2014-06-15 14:13:28 ----A---- C:\windows\system32\comctl32.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\Wpc.dll
2014-06-15 14:13:03 ----A---- C:\windows\system32\gameux.dll
2014-06-15 14:12:37 ----A---- C:\windows\system32\drivers\tcpip.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\WebClnt.dll
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\netio.sys
2014-06-15 14:12:36 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2014-06-15 14:12:35 ----A---- C:\windows\system32\drivers\mrxdav.sys
2014-06-15 14:12:35 ----A---- C:\windows\system32\davclnt.dll
2014-06-15 14:11:36 ----A---- C:\windows\system32\kernel32.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-15 14:11:35 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\winsrv.dll
2014-06-15 14:11:35 ----A---- C:\windows\system32\conhost.exe
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-15 14:11:34 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-15 14:11:33 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-15 14:11:32 ----A---- C:\windows\system32\drivers\usbvideo.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\usbcir.sys
2014-06-15 14:11:31 ----A---- C:\windows\system32\drivers\USBAUDIO.sys
2014-06-15 13:59:19 ----A---- C:\windows\system32\aepdu.dll
2014-06-15 13:59:19 ----A---- C:\windows\system32\aeinv.dll
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate_isv.exe
2014-06-15 13:59:07 ----A---- C:\windows\system32\RMActivate.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc_isv.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\secproc.dll
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp_isv.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\RMActivate_ssp.exe
2014-06-15 13:59:06 ----A---- C:\windows\system32\msdrm.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp_isv.dll
2014-06-15 13:59:05 ----A---- C:\windows\system32\secproc_ssp.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\Wdfres.dll
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2014-06-15 13:59:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2014-06-15 13:58:54 ----A---- C:\windows\system32\shdocvw.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\cryptsvc.dll
2014-06-15 13:58:46 ----A---- C:\windows\system32\crypt32.dll
2014-06-15 13:58:45 ----A---- C:\windows\system32\cryptnet.dll
2014-06-15 13:58:39 ----A---- C:\windows\system32\shell32.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcsvc6.dll
2014-06-15 13:58:33 ----A---- C:\windows\system32\dhcpcore6.dll
2014-06-15 13:58:28 ----A---- C:\windows\system32\gdi32.dll
2014-06-15 13:58:27 ----A---- C:\windows\system32\IKEEXT.DLL
2014-06-15 13:58:26 ----A---- C:\windows\system32\nshwfp.dll
2014-06-15 13:58:26 ----A---- C:\windows\system32\FWPUCLNT.DLL
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\usbehci.sys
2014-06-15 13:58:24 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbport.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbhub.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbd.sys
2014-06-15 13:58:23 ----A---- C:\windows\system32\drivers\usbccgp.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\taskhost.exe
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbuhci.sys
2014-06-15 13:58:22 ----A---- C:\windows\system32\drivers\usbohci.sys
2014-06-15 13:58:20 ----A---- C:\windows\system32\synceng.dll
2014-06-15 13:58:20 ----A---- C:\windows\system32\drivers\ataport.sys
2014-06-15 13:58:19 ----A---- C:\windows\system32\wer.dll
2014-06-15 13:56:46 ----A---- C:\windows\system32\usp10.dll
2014-06-15 13:51:19 ----A---- C:\windows\system32\consent.exe
2014-06-15 13:51:18 ----A---- C:\windows\system32\appinfo.dll
2014-06-15 13:35:53 ----D---- C:\Users\Home\AppData\Roaming\DonationCoder
2014-06-15 13:35:35 ----D---- C:\ProgramData\DonationCoder
2014-06-15 13:35:35 ----D---- C:\Program Files\ScreenshotCaptor
2014-06-15 13:11:28 ----D---- C:\windows\system32\catroot2
2014-06-14 21:14:18 ----D---- C:\Users\Home\AppData\Roaming\Dream Aquarium
2014-06-14 21:14:14 ----D---- C:\Program Files\Dream Aquarium
2014-06-14 14:22:04 ----D---- C:\Program Files\Defraggler
2014-06-14 13:43:37 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2014-06-22 23:25:23 ----D---- C:\windows\Prefetch
2014-06-22 23:24:31 ----D---- C:\windows\Temp
2014-06-22 23:24:30 ----D---- C:\windows\system32\config
2014-06-22 23:22:32 ----D---- C:\windows\Tasks
2014-06-22 21:05:11 ----D---- C:\Windows
2014-06-22 21:02:20 ----HD---- C:\ProgramData
2014-06-22 21:02:04 ----D---- C:\windows\System32
2014-06-22 20:17:47 ----RD---- C:\Program Files
2014-06-22 19:59:14 ----SHD---- C:\windows\Installer
2014-06-22 19:59:13 ----SHD---- C:\Config.Msi
2014-06-22 19:59:02 ----SHD---- C:\System Volume Information
2014-06-22 19:57:46 ----D---- C:\Users\Home\AppData\Roaming\Skype
2014-06-22 04:11:40 ----D---- C:\windows\Logs
2014-06-21 17:18:38 ----D---- C:\windows\inf
2014-06-17 15:03:58 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-06-17 01:42:14 ----D---- C:\windows\rescache
2014-06-16 17:47:53 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-06-15 17:22:47 ----D---- C:\windows\Microsoft.NET
2014-06-15 17:20:24 ----RSD---- C:\windows\assembly
2014-06-15 16:35:58 ----D---- C:\windows\system32\catroot
2014-06-15 16:15:09 ----D---- C:\windows\winsxs
2014-06-15 16:13:47 ----D---- C:\windows\system32\DriverStore
2014-06-15 16:13:47 ----D---- C:\windows\system32\drivers
2014-06-15 16:13:47 ----D---- C:\windows\system32\cs-CZ
2014-06-15 14:58:20 ----RSD---- C:\windows\Fonts
2014-06-15 14:58:20 ----D---- C:\windows\AppPatch
2014-06-15 14:58:19 ----D---- C:\windows\system32\migration
2014-06-15 14:58:19 ----D---- C:\Program Files\Internet Explorer
2014-06-15 14:58:18 ----D---- C:\windows\system32\drivers\cs-CZ
2014-06-15 14:58:18 ----D---- C:\Program Files\Windows Journal
2014-06-15 14:58:15 ----D---- C:\Program Files\Windows Media Player
2014-06-15 14:58:13 ----D---- C:\windows\system32\wbem
2014-06-15 14:58:13 ----D---- C:\Program Files\Windows Defender
2014-06-15 04:25:10 ----D---- C:\Program Files\LSI SoftModem
2014-06-15 03:56:43 ----D---- C:\Program Files\Ubisoft
2014-06-15 03:56:17 ----HD---- C:\Program Files\InstallShield Installation Information
2014-06-14 14:07:57 ----D---- C:\Program Files\Google
2014-06-14 14:01:41 ----D---- C:\Program Files\GameSpy Arcade
2014-06-14 14:00:18 ----D---- C:\Program Files\Jaws Unleashed
2014-06-14 13:58:47 ----D---- C:\ProgramData\Google
2014-06-14 13:53:27 ----D---- C:\windows\Panther
2014-06-14 13:53:26 ----D---- C:\windows\Minidump
2014-06-14 13:53:26 ----D---- C:\windows\debug
2014-06-14 13:43:49 ----D---- C:\windows\system32\Tasks
2014-06-11 16:16:50 ----D---- C:\windows\system32\MRT
2014-06-11 16:14:09 ----A---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2014-05-03 49944]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2014-05-03 180632]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-01-08 331288]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2014-05-03 81768]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2014-05-03 24184]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2014-05-03 67824]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2014-05-12 68312]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 AmdLLD;AMD Low Level Device Driver; C:\windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2010-01-25 6282240]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 122880]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\windows\system32\DRIVERS\rtl8192se.sys [2011-09-08 1117800]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-01-19 1763968]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
S1 aswKbd;aswKbd; \??\C:\windows\system32\drivers\aswKbd.sys []
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 apf001;apf001; \??\C:\AeriaGames\Wolfteam\apf001.sys [2012-01-29 10872]
S3 apf003;apf003; \??\C:\windows\system32\apf003.sys [2012-12-22 13232]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2014-05-17 107736]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys []
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2011-01-11 156160]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2011-01-11 125440]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-01-28 265272]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe [2003-06-19 322120]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-18 230968]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-02 113704]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-17 262320]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-12-30 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

Dvouklikem na soubor C:\Program Files\trend micro\Home.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll (file missing)
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: AutorunsDisabled - (no CLSID) - (no file)

Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Hotovo, jen když jsem do toho Home tak mi to ukázalo pár upozornění:
Předtím než jsem začal zaškrtávat:
For some reason your system denied write access to the Hosts file. If any hijacked domains are in the file, HijackThis may NOT be able to fix this.
If this happens, you need to edit the file yourself. To do this, click Start, Run and type:
notepad: C:\windows\System32\drivers\etc\hosts
and press Enter. Find the line(s) HijackThis reports and file as ´hosts´. (with quotes), and reboot.
For Vista: simply, exit HijackThis, right click on the HijackThis icon, choose ´Run as administrator´.

A ten screen je po kliknutí na fix checked.

Ne všechno jde fixnout. Jsou to všechno neškodné zbytky, takže problém by nastat neměl. PC by již měl být čistý.

Jo Děkuji za pomoc.

Rádo se stalo!