Logfile of random's system information tool 1.10 (written by random/random)
Run by kuba at 2016-02-26 17:17:33
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 5 GB (6%) free of 76 GB
Total RAM: 2046 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:17:54, on 26.2.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16748)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files\AVG Web TuneUp\vprot.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\kuba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={458FEBA5 ... 2014-08-30 19:44:43&v=4.2.4.155&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: vToolbarUpdater40.2.6 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 8135 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll [2016-02-22 2426440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20 71192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=RtHDVCpl.exe []
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2015-12-08 837640]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2015-02-12 5564784]
"vProt"=C:\Program Files\AVG Web TuneUp\vprot.exe [2016-02-22 2874440]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-02-18 179624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-07-25 1562264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-15 778240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2007-06-26 618496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave1"=serwvdrv.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.dvsd"=pdvcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-11 14:46:24 ----A---- C:\Windows\system32\sbeio.dll
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iashost.exe
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iasdatastore.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\sdohlp.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\psisdecd.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasrecst.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasads.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\sbe.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\msorcl32.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\EncDec.dll
2016-02-11 14:46:21 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-11 14:44:03 ----A---- C:\Windows\system32\advapi32.dll
2016-02-11 14:44:01 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-11 14:44:01 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\ole32.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\kernel32.dll
2016-02-11 14:43:59 ----A---- C:\Windows\system32\smss.exe
2016-02-11 14:43:59 ----A---- C:\Windows\system32\ntdll.dll
2016-02-11 14:43:58 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-02-11 14:43:57 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-11 14:36:59 ----A---- C:\Windows\system32\win32k.sys
2016-02-11 14:03:24 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-11 13:42:56 ----A---- C:\Windows\system32\kerberos.dll
2016-02-10 14:35:01 ----A---- C:\Windows\system32\urlmon.dll
2016-02-10 14:35:01 ----A---- C:\Windows\system32\mshta.exe
2016-02-10 14:35:01 ----A---- C:\Windows\system32\msfeedssync.exe
2016-02-10 14:35:00 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-02-10 14:35:00 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-10 14:34:59 ----A---- C:\Windows\system32\vbscript.dll
2016-02-10 14:34:59 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\wininet.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\url.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\jscript.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-10 14:34:57 ----A---- C:\Windows\system32\ieui.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\iertutil.dll
2016-02-10 14:34:57 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-10 14:34:56 ----A---- C:\Windows\system32\ieframe.dll
2016-02-10 14:34:53 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-10 14:34:50 ----A---- C:\Windows\system32\jscript9.dll
2016-02-10 14:34:49 ----A---- C:\Windows\system32\mshtml.dll
======List of files/folders modified in the last 1 month======
2016-02-26 17:17:46 ----D---- C:\Windows\Prefetch
2016-02-26 17:17:37 ----D---- C:\Program Files\trend micro
2016-02-26 17:17:32 ----D---- C:\Windows\Temp
2016-02-26 11:27:36 ----SHD---- C:\System Volume Information
2016-02-26 10:36:13 ----D---- C:\ProgramData\MFAData
2016-02-26 10:33:21 ----D---- C:\Windows\System32
2016-02-26 10:32:21 ----D---- C:\Windows\system32\drivers
2016-02-26 10:31:41 ----A---- C:\Windows\system32\acovcnt.exe
2016-02-25 20:28:58 ----SHD---- C:\Windows\Installer
2016-02-22 20:28:13 ----D---- C:\Program Files\AVG Web TuneUp
2016-02-22 20:28:05 ----D---- C:\ProgramData\AVG Web TuneUp
2016-02-11 17:07:34 ----D---- C:\Windows\inf
2016-02-11 16:52:32 ----D---- C:\Windows\Microsoft.NET
2016-02-11 16:47:45 ----RSD---- C:\Windows\assembly
2016-02-11 16:47:19 ----D---- C:\Windows\rescache
2016-02-11 16:30:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-11 16:17:49 ----D---- C:\Program Files\Windows Collaboration
2016-02-11 16:17:43 ----D---- C:\Windows\system32\cs-CZ
2016-02-11 16:17:42 ----D---- C:\Windows\system32\migration
2016-02-11 16:17:42 ----D---- C:\Program Files\Internet Explorer
2016-02-11 16:17:41 ----D---- C:\Program Files\Windows Journal
2016-02-11 16:16:28 ----D---- C:\Program Files\Common Files\Ahead
2016-02-11 16:16:23 ----D---- C:\Windows
2016-02-11 16:15:53 ----D---- C:\Users\kuba\AppData\Roaming\Ahead
2016-02-11 16:13:17 ----D---- C:\ProgramData\firebird
2016-02-11 14:47:45 ----D---- C:\Windows\winsxs
2016-02-11 14:47:33 ----D---- C:\Windows\system32\catroot2
2016-02-11 14:47:33 ----D---- C:\Windows\system32\catroot
2016-02-11 14:43:45 ----D---- C:\ProgramData\Microsoft Help
2016-02-11 14:21:41 ----D---- C:\Windows\system32\MRT
2016-02-11 14:09:38 ----D---- C:\Windows\Debug
2016-02-11 14:09:28 ----A---- C:\Windows\system32\mrt.exe
2016-02-11 14:06:07 ----D---- C:\Ecru
2016-02-11 14:01:04 ----RD---- C:\Program Files
2016-02-10 15:53:35 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-02-10 13:17:10 ----AD---- C:\ProgramData\TEMP
2016-02-03 20:35:51 ----D---- C:\Windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-11-09 59388]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-06-16 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-06-16 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-06-16 123776]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2013-04-22 11520]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-02-18 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 vToolbarUpdater40.2.6;vToolbarUpdater40.2.6; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe [2016-02-22 1949768]
R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2015-02-12 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2015-02-12 302968]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2016-02-22 1215560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu log listu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu log listu
Zdravim 
Jde ciste jen o prevenci, nebo je i nejaky problem?
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Jde ciste jen o prevenci, nebo je i nejaky problem? Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
Prevence
Re: Prosím o kontrolu log listu
Fajn, pockam tedy na log a podle vysledku zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
Logfile of random's system information tool 1.10 (written by random/random)
Run by kuba at 2016-03-10 21:43:33
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 2 GB (2%) free of 76 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:43:52, on 10.3.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files\AVG Web TuneUp\vprot.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\kuba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={458FEBA5 ... 2014-08-30 19:44:43&v=4.2.4.155&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: vToolbarUpdater40.2.6 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 7987 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DriverEasy Scheduled Scan.job - C:\Program Files\Easeware\DriverEasy\DriverEasy.exe --scan
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll [2016-02-22 2426440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20 71192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=RtHDVCpl.exe []
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2015-12-08 837640]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2015-02-12 5564784]
"vProt"=C:\Program Files\AVG Web TuneUp\vprot.exe [2016-02-22 2874440]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-02-18 179624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-07-25 1562264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-15 778240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2007-06-26 618496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave1"=serwvdrv.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.dvsd"=pdvcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-10 12:42:44 ----A---- C:\Windows\system32\WDPABKP.dat
2016-03-10 12:18:19 ----A---- C:\Windows\system32\advapi32.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\smss.exe
2016-03-10 12:18:18 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\ntdll.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:17:22 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:11:51 ----A---- C:\Windows\system32\seclogon.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmlib.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmfd.dll
2016-03-10 12:05:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-10 12:04:43 ----A---- C:\Windows\system32\olepro32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-10 12:01:50 ----SHD---- C:\Config.Msi
2016-03-10 11:33:53 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 10:50:17 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\mshta.exe
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50:16 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\msfeedssync.exe
2016-03-09 10:50:14 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50:13 ----A---- C:\Windows\system32\url.dll
2016-03-09 10:50:12 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 10:50:09 ----A---- C:\Windows\system32\mshtml.dll
2016-02-11 14:46:24 ----A---- C:\Windows\system32\sbeio.dll
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iashost.exe
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iasdatastore.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\sdohlp.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\psisdecd.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasrecst.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasads.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\sbe.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\msorcl32.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\EncDec.dll
2016-02-11 14:46:21 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\ole32.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\kernel32.dll
2016-02-11 14:03:24 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-11 13:42:56 ----A---- C:\Windows\system32\kerberos.dll
======List of files/folders modified in the last 1 month======
2016-03-10 21:43:47 ----D---- C:\Windows\Prefetch
2016-03-10 21:43:37 ----D---- C:\Program Files\trend micro
2016-03-10 21:43:28 ----D---- C:\Windows\Temp
2016-03-10 14:21:15 ----SHD---- C:\System Volume Information
2016-03-10 13:04:42 ----D---- C:\Windows\Microsoft.NET
2016-03-10 13:03:23 ----RSD---- C:\Windows\assembly
2016-03-10 12:57:16 ----D---- C:\Windows\rescache
2016-03-10 12:47:12 ----D---- C:\Windows\System32
2016-03-10 12:47:12 ----D---- C:\Windows\inf
2016-03-10 12:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:41:52 ----A---- C:\Windows\system32\acovcnt.exe
2016-03-10 12:41:46 ----D---- C:\Windows\system32\drivers
2016-03-10 12:35:49 ----D---- C:\Windows
2016-03-10 12:35:33 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 12:35:32 ----D---- C:\Windows\system32\XPSViewer
2016-03-10 12:35:32 ----D---- C:\Program Files\Windows Mail
2016-03-10 12:35:32 ----D---- C:\Program Files\Common Files\System
2016-03-10 12:35:31 ----D---- C:\Windows\system32\migration
2016-03-10 12:35:31 ----D---- C:\Program Files\Internet Explorer
2016-03-10 12:18:55 ----D---- C:\Windows\winsxs
2016-03-10 12:18:51 ----D---- C:\Windows\system32\catroot
2016-03-10 12:17:21 ----SHD---- C:\Windows\Installer
2016-03-10 12:15:16 ----D---- C:\ProgramData\Microsoft Help
2016-03-10 12:05:36 ----D---- C:\Windows\system32\catroot2
2016-03-10 12:00:56 ----D---- C:\Windows\system32\MRT
2016-03-10 11:48:31 ----A---- C:\Windows\system32\mrt.exe
2016-03-10 11:29:01 ----D---- C:\ProgramData\MFAData
2016-02-29 15:03:06 ----D---- C:\Users\kuba\AppData\Roaming\vlc
2016-02-27 14:01:51 ----RD---- C:\Program Files
2016-02-26 17:43:04 ----D---- C:\Windows\Tasks
2016-02-26 17:43:04 ----D---- C:\Windows\system32\Tasks
2016-02-22 20:28:13 ----D---- C:\Program Files\AVG Web TuneUp
2016-02-22 20:28:05 ----D---- C:\ProgramData\AVG Web TuneUp
2016-02-11 16:17:49 ----D---- C:\Program Files\Windows Collaboration
2016-02-11 16:17:41 ----D---- C:\Program Files\Windows Journal
2016-02-11 16:16:28 ----D---- C:\Program Files\Common Files\Ahead
2016-02-11 16:15:53 ----D---- C:\Users\kuba\AppData\Roaming\Ahead
2016-02-11 16:13:17 ----D---- C:\ProgramData\firebird
2016-02-11 14:09:38 ----D---- C:\Windows\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-06-16 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-06-16 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-06-16 123776]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2013-04-22 11520]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-02-18 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 vToolbarUpdater40.2.6;vToolbarUpdater40.2.6; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe [2016-02-22 1949768]
R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2015-02-12 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2015-02-12 302968]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2016-02-22 1215560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by kuba at 2016-03-10 21:43:33
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 2 GB (2%) free of 76 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:43:52, on 10.3.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files\AVG Web TuneUp\vprot.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\kuba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={458FEBA5 ... 2014-08-30 19:44:43&v=4.2.4.155&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: vToolbarUpdater40.2.6 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 7987 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DriverEasy Scheduled Scan.job - C:\Program Files\Easeware\DriverEasy\DriverEasy.exe --scan
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.2.6.552\AVG Web TuneUp.dll [2016-02-22 2426440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20 71192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=RtHDVCpl.exe []
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2015-12-08 837640]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-02-01 25512]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2015-02-12 5564784]
"vProt"=C:\Program Files\AVG Web TuneUp\vprot.exe [2016-02-22 2874440]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-02-18 179624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-07-25 1562264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-15 778240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2007-06-26 618496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave1"=serwvdrv.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.dvsd"=pdvcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-10 12:42:44 ----A---- C:\Windows\system32\WDPABKP.dat
2016-03-10 12:18:19 ----A---- C:\Windows\system32\advapi32.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\smss.exe
2016-03-10 12:18:18 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\ntdll.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:17:22 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:11:51 ----A---- C:\Windows\system32\seclogon.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmlib.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmfd.dll
2016-03-10 12:05:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-10 12:04:43 ----A---- C:\Windows\system32\olepro32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-10 12:01:50 ----SHD---- C:\Config.Msi
2016-03-10 11:33:53 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 10:50:17 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\mshta.exe
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50:16 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\msfeedssync.exe
2016-03-09 10:50:14 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50:13 ----A---- C:\Windows\system32\url.dll
2016-03-09 10:50:12 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 10:50:09 ----A---- C:\Windows\system32\mshtml.dll
2016-02-11 14:46:24 ----A---- C:\Windows\system32\sbeio.dll
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iashost.exe
2016-02-11 14:46:24 ----A---- C:\Windows\system32\iasdatastore.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\sdohlp.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\psisdecd.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasrecst.dll
2016-02-11 14:46:23 ----A---- C:\Windows\system32\iasads.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\sbe.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\msorcl32.dll
2016-02-11 14:46:22 ----A---- C:\Windows\system32\EncDec.dll
2016-02-11 14:46:21 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\ole32.dll
2016-02-11 14:44:00 ----A---- C:\Windows\system32\kernel32.dll
2016-02-11 14:03:24 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-11 13:42:56 ----A---- C:\Windows\system32\kerberos.dll
======List of files/folders modified in the last 1 month======
2016-03-10 21:43:47 ----D---- C:\Windows\Prefetch
2016-03-10 21:43:37 ----D---- C:\Program Files\trend micro
2016-03-10 21:43:28 ----D---- C:\Windows\Temp
2016-03-10 14:21:15 ----SHD---- C:\System Volume Information
2016-03-10 13:04:42 ----D---- C:\Windows\Microsoft.NET
2016-03-10 13:03:23 ----RSD---- C:\Windows\assembly
2016-03-10 12:57:16 ----D---- C:\Windows\rescache
2016-03-10 12:47:12 ----D---- C:\Windows\System32
2016-03-10 12:47:12 ----D---- C:\Windows\inf
2016-03-10 12:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:41:52 ----A---- C:\Windows\system32\acovcnt.exe
2016-03-10 12:41:46 ----D---- C:\Windows\system32\drivers
2016-03-10 12:35:49 ----D---- C:\Windows
2016-03-10 12:35:33 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 12:35:32 ----D---- C:\Windows\system32\XPSViewer
2016-03-10 12:35:32 ----D---- C:\Program Files\Windows Mail
2016-03-10 12:35:32 ----D---- C:\Program Files\Common Files\System
2016-03-10 12:35:31 ----D---- C:\Windows\system32\migration
2016-03-10 12:35:31 ----D---- C:\Program Files\Internet Explorer
2016-03-10 12:18:55 ----D---- C:\Windows\winsxs
2016-03-10 12:18:51 ----D---- C:\Windows\system32\catroot
2016-03-10 12:17:21 ----SHD---- C:\Windows\Installer
2016-03-10 12:15:16 ----D---- C:\ProgramData\Microsoft Help
2016-03-10 12:05:36 ----D---- C:\Windows\system32\catroot2
2016-03-10 12:00:56 ----D---- C:\Windows\system32\MRT
2016-03-10 11:48:31 ----A---- C:\Windows\system32\mrt.exe
2016-03-10 11:29:01 ----D---- C:\ProgramData\MFAData
2016-02-29 15:03:06 ----D---- C:\Users\kuba\AppData\Roaming\vlc
2016-02-27 14:01:51 ----RD---- C:\Program Files
2016-02-26 17:43:04 ----D---- C:\Windows\Tasks
2016-02-26 17:43:04 ----D---- C:\Windows\system32\Tasks
2016-02-22 20:28:13 ----D---- C:\Program Files\AVG Web TuneUp
2016-02-22 20:28:05 ----D---- C:\ProgramData\AVG Web TuneUp
2016-02-11 16:17:49 ----D---- C:\Program Files\Windows Collaboration
2016-02-11 16:17:41 ----D---- C:\Program Files\Windows Journal
2016-02-11 16:16:28 ----D---- C:\Program Files\Common Files\Ahead
2016-02-11 16:15:53 ----D---- C:\Users\kuba\AppData\Roaming\Ahead
2016-02-11 16:13:17 ----D---- C:\ProgramData\firebird
2016-02-11 14:09:38 ----D---- C:\Windows\Debug
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-08 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-08-14 308656]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 198576]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-05 257456]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-06-16 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-06-16 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-06-16 123776]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2013-04-22 11520]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-02-01 3881184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-02-18 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-02-01 561104]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 vToolbarUpdater40.2.6;vToolbarUpdater40.2.6; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe [2016-02-22 1949768]
R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2015-02-12 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2015-02-12 302968]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2016-02-22 1215560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Re: Prosím o kontrolu log listu
Ale ja chtel log z ADWCleaneru...
Márty84 píše:
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\Program Files (x86)\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
# AdwCleaner v5.101 - Logfile created 11/03/2016 at 18:43:02
# Updated 07/03/2016 by Xplode
# Database : 2016-03-08.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : kuba - KUBA-PC
# Running from : C:\Users\kuba\Downloads\adwcleaner_5.101.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
Service Found : vToolbarUpdater40.2.6
***** [ Folders ] *****
Folder Found : C:\Program Files\Easeware
Folder Found : C:\Program Files\myfree codec
Folder Found : C:\Program Files\Common Files\AVG Secure Search
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\AVG Security Toolbar
Folder Found : C:\ProgramData\Avg_Update_0215tb
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found : C:\Users\kuba\AppData\Roaming\Easeware
***** [ Files ] *****
File Found : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cflheckfmhopnialghigdlggahiomebp_0
File Found : C:\Users\Public\Desktop\DriverEasy.lnk
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
Task Found : DriverEasy Scheduled Scan
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.oneclickctrl.9
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.update3webcontrol.3
Key Found : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{553D53FA-59F3-44D0-ABC4-58F290DB70DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59E8D94C-7A20-41AD-83CF-3E156D3AEB2F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5EF4F032-2DB4-48E9-B5A9-ADAC095E096A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6FE5D7AF-5812-4E08-BA22-9805FFE9F429}
Key Found : HKLM\SOFTWARE\Classes\Interface\{781999CA-3F51-4A56-94CA-0C8A8E0100AF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A39B7A1C-F58A-4C22-9015-E2C8EF1C31BA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AB121BE6-2299-4B9B-8545-9104ABA20717}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C0833ED4-281E-441C-B004-43752001A629}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DC330A23-4FBE-414C-AB3D-1C42056E5245}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DCD71BA3-32C2-455F-8DF0-37EE26E0C395}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9C30691-5CE7-46BF-B940-C0125DA9E05B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F654B5BE-1A20-48A6-BED0-7C9E29CB8099}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0DA40B75-6FEE-49BF-BDDE-E2598E786C8C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{12FF3C6A-56FB-4B3E-858D-0877CD39B025}
Key Found : HKLM\SOFTWARE\Classes\Interface\{15DDC42D-13A8-432B-B31D-36A8FB50758F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1CD6E593-ABBF-45AC-9F94-21E8F1BDC10B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2B584AEB-6C8F-4238-89E4-850CFD7B2065}
Key Found : HKLM\SOFTWARE\Classes\Interface\{30A2947A-664F-440B-908D-E0FEDFEAE5DE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{34BCEF11-CE38-48EC-9D08-5CC0557E8887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3B06CDDC-2ECB-45DC-B565-D41CC095BE40}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3FD7EB0A-96B6-43E0-9D94-44929F3FD1B3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D2525EE-3B7B-44C6-8960-77843DBC67A3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{89449F37-4AB2-46ED-A566-BB3A7797701B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKCU\Software\Conduit
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverEasy_is1
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DriverEasy_is1
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2014-08-30 19:44:43&v=4.2.4.155&pid=wtu&sg=&sap=hp
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
***** [ Web browsers ] *****
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.FF19Solved", "true");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.UserID", "UN27356105441950016");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.dum", "2");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.fullUserID", "UN27356105441950016.IN.20150103151808");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installDate", "03/01/2015 15:18:13");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installSessionId", "4525fe32-0718-44a9-a156-980315f05453");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installSp", "FALSE");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installerVersion", "1.11.0.11");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchRevert", "@searchrevert@");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchUninstallUserMode", "4");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchUserMode", "4");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.toolbarInstallDate", "03-01-2015 15:18:09");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.versionFromInstaller", "10.35.0.3");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.xpeMode", "1");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG[...]
[C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : chfdnecihphmhljaaejmgoiahnihplgn
*************************
C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [8857 bytes] - [11/03/2016 18:43:02]
########## EOF - C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [8944 bytes] ##########
# Updated 07/03/2016 by Xplode
# Database : 2016-03-08.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : kuba - KUBA-PC
# Running from : C:\Users\kuba\Downloads\adwcleaner_5.101.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
Service Found : vToolbarUpdater40.2.6
***** [ Folders ] *****
Folder Found : C:\Program Files\Easeware
Folder Found : C:\Program Files\myfree codec
Folder Found : C:\Program Files\Common Files\AVG Secure Search
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\AVG Security Toolbar
Folder Found : C:\ProgramData\Avg_Update_0215tb
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Found : C:\Users\kuba\AppData\Roaming\Easeware
***** [ Files ] *****
File Found : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cflheckfmhopnialghigdlggahiomebp_0
File Found : C:\Users\Public\Desktop\DriverEasy.lnk
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
Task Found : DriverEasy Scheduled Scan
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.oneclickctrl.9
Key Found : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.update3webcontrol.3
Key Found : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{553D53FA-59F3-44D0-ABC4-58F290DB70DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{59E8D94C-7A20-41AD-83CF-3E156D3AEB2F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{5EF4F032-2DB4-48E9-B5A9-ADAC095E096A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6FE5D7AF-5812-4E08-BA22-9805FFE9F429}
Key Found : HKLM\SOFTWARE\Classes\Interface\{781999CA-3F51-4A56-94CA-0C8A8E0100AF}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A39B7A1C-F58A-4C22-9015-E2C8EF1C31BA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AB121BE6-2299-4B9B-8545-9104ABA20717}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C0833ED4-281E-441C-B004-43752001A629}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DC330A23-4FBE-414C-AB3D-1C42056E5245}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DCD71BA3-32C2-455F-8DF0-37EE26E0C395}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E9C30691-5CE7-46BF-B940-C0125DA9E05B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F654B5BE-1A20-48A6-BED0-7C9E29CB8099}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0DA40B75-6FEE-49BF-BDDE-E2598E786C8C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{12FF3C6A-56FB-4B3E-858D-0877CD39B025}
Key Found : HKLM\SOFTWARE\Classes\Interface\{15DDC42D-13A8-432B-B31D-36A8FB50758F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1CD6E593-ABBF-45AC-9F94-21E8F1BDC10B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2B584AEB-6C8F-4238-89E4-850CFD7B2065}
Key Found : HKLM\SOFTWARE\Classes\Interface\{30A2947A-664F-440B-908D-E0FEDFEAE5DE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{34BCEF11-CE38-48EC-9D08-5CC0557E8887}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3B06CDDC-2ECB-45DC-B565-D41CC095BE40}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3FD7EB0A-96B6-43E0-9D94-44929F3FD1B3}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D2525EE-3B7B-44C6-8960-77843DBC67A3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{89449F37-4AB2-46ED-A566-BB3A7797701B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Key Found : HKCU\Software\Conduit
Key Found : HKLM\SOFTWARE\Conduit
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverEasy_is1
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DriverEasy_is1
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0215av&pr=fr&d=2014-08-30 19:44:43&v=4.2.4.155&pid=wtu&sg=&sap=hp
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Data Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - {95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
***** [ Web browsers ] *****
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.FF19Solved", "true");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.UserID", "UN27356105441950016");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.dum", "2");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.fullUserID", "UN27356105441950016.IN.20150103151808");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installDate", "03/01/2015 15:18:13");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installSessionId", "4525fe32-0718-44a9-a156-980315f05453");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installSp", "FALSE");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.installerVersion", "1.11.0.11");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchRevert", "@searchrevert@");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchUninstallUserMode", "4");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.searchUserMode", "4");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.toolbarInstallDate", "03-01-2015 15:18:09");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.versionFromInstaller", "10.35.0.3");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("CT3329621.xpeMode", "1");
[C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Found : user_pref("browser.startup.homepage", "hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG[...]
[C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : chfdnecihphmhljaaejmgoiahnihplgn
*************************
C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [8857 bytes] - [11/03/2016 18:43:02]
########## EOF - C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [8944 bytes] ##########
Re: Prosím o kontrolu log listu
No, tohle je log jen ze skenu, ja chtel az po vymazani. Takze pokud jste to neudelal, dejte ty nalezy i odstranit, tak jak je v navodu Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
Omlouvám se.
# AdwCleaner v5.102 - Logfile created 15/03/2016 at 20:10:21
# Updated 13/03/2016 by Xplode
# Database : 2016-03-14.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : kuba - KUBA-PC
# Running from : C:\Users\kuba\Desktop\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : WtuSystemSupport
[-] Service Deleted : vToolbarUpdater40.2.8
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\Easeware
[-] Folder Deleted : C:\Program Files\myfree codec
[-] Folder Deleted : C:\Program Files\avg web tuneup
[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\avg web tuneup
[-] Folder Deleted : C:\ProgramData\Avg_Update_0215tb
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Folder Deleted : C:\Users\kuba\AppData\Local\avg web tuneup
[-] Folder Deleted : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\kuba\AppData\LocalLow\avg web tuneup
[-] Folder Deleted : C:\Users\kuba\AppData\Roaming\Easeware
***** [ Files ] *****
[-] File Deleted : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cflheckfmhopnialghigdlggahiomebp_0
[-] File Deleted : C:\Users\Public\Desktop\DriverEasy.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : DriverEasy Scheduled Scan
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.oneclickctrl.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.update3webcontrol.3
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{553D53FA-59F3-44D0-ABC4-58F290DB70DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59E8D94C-7A20-41AD-83CF-3E156D3AEB2F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5EF4F032-2DB4-48E9-B5A9-ADAC095E096A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6FE5D7AF-5812-4E08-BA22-9805FFE9F429}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{781999CA-3F51-4A56-94CA-0C8A8E0100AF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A39B7A1C-F58A-4C22-9015-E2C8EF1C31BA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AB121BE6-2299-4B9B-8545-9104ABA20717}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0833ED4-281E-441C-B004-43752001A629}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC330A23-4FBE-414C-AB3D-1C42056E5245}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DCD71BA3-32C2-455F-8DF0-37EE26E0C395}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E9C30691-5CE7-46BF-B940-C0125DA9E05B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F654B5BE-1A20-48A6-BED0-7C9E29CB8099}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0DA40B75-6FEE-49BF-BDDE-E2598E786C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{12FF3C6A-56FB-4B3E-858D-0877CD39B025}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{15DDC42D-13A8-432B-B31D-36A8FB50758F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1CD6E593-ABBF-45AC-9F94-21E8F1BDC10B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2B584AEB-6C8F-4238-89E4-850CFD7B2065}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{30A2947A-664F-440B-908D-E0FEDFEAE5DE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34BCEF11-CE38-48EC-9D08-5CC0557E8887}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B06CDDC-2ECB-45DC-B565-D41CC095BE40}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3FD7EB0A-96B6-43E0-9D94-44929F3FD1B3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D2525EE-3B7B-44C6-8960-77843DBC67A3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{89449F37-4AB2-46ED-A566-BB3A7797701B}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\AVG Web TuneUp
[-] Key Deleted : HKCU\Software\AVG Tuneup
[-] Key Deleted : HKCU\Software\Mail.Ru
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\AVG Web TuneUp
[-] Key Deleted : HKLM\SOFTWARE\AVG Tuneup
[-] Key Deleted : HKLM\SOFTWARE\Mail.Ru
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverEasy_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DriverEasy_is1
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Web TuneUp
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Web TuneUp
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
***** [ Web browsers ] *****
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.FF19Solved", "true");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.UserID", "UN27356105441950016");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.dum", "2");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.fullUserID", "UN27356105441950016.IN.20150103151808");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installDate", "03/01/2015 15:18:13");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installSessionId", "4525fe32-0718-44a9-a156-980315f05453");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installSp", "FALSE");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installerVersion", "1.11.0.11");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchRevert", "@searchrevert@");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchUninstallUserMode", "4");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchUserMode", "4");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.toolbarInstallDate", "03-01-2015 15:18:09");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.versionFromInstaller", "10.35.0.3");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.xpeMode", "1");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG[...]
[-] [C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [10320 bytes] - [15/03/2016 20:10:21]
C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [9037 bytes] - [11/03/2016 18:43:02]
C:\Program Files\AdwCleaner\AdwCleaner[S2].txt - [11584 bytes] - [15/03/2016 20:07:28]
########## EOF - C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [10583 bytes] ##########
# AdwCleaner v5.102 - Logfile created 15/03/2016 at 20:10:21
# Updated 13/03/2016 by Xplode
# Database : 2016-03-14.1 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : kuba - KUBA-PC
# Running from : C:\Users\kuba\Desktop\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : WtuSystemSupport
[-] Service Deleted : vToolbarUpdater40.2.8
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\Easeware
[-] Folder Deleted : C:\Program Files\myfree codec
[-] Folder Deleted : C:\Program Files\avg web tuneup
[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\ProgramData\avg web tuneup
[-] Folder Deleted : C:\ProgramData\Avg_Update_0215tb
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Folder Deleted : C:\Users\kuba\AppData\Local\avg web tuneup
[-] Folder Deleted : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\kuba\AppData\LocalLow\avg web tuneup
[-] Folder Deleted : C:\Users\kuba\AppData\Roaming\Easeware
***** [ Files ] *****
[-] File Deleted : C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cflheckfmhopnialghigdlggahiomebp_0
[-] File Deleted : C:\Users\Public\Desktop\DriverEasy.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : DriverEasy Scheduled Scan
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.oneclickctrl.9
[-] Key Deleted : HKLM\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.updatepm.update3webcontrol.3
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{553D53FA-59F3-44D0-ABC4-58F290DB70DC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59E8D94C-7A20-41AD-83CF-3E156D3AEB2F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5EF4F032-2DB4-48E9-B5A9-ADAC095E096A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6FE5D7AF-5812-4E08-BA22-9805FFE9F429}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{781999CA-3F51-4A56-94CA-0C8A8E0100AF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A39B7A1C-F58A-4C22-9015-E2C8EF1C31BA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AB121BE6-2299-4B9B-8545-9104ABA20717}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0833ED4-281E-441C-B004-43752001A629}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC330A23-4FBE-414C-AB3D-1C42056E5245}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DCD71BA3-32C2-455F-8DF0-37EE26E0C395}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E9C30691-5CE7-46BF-B940-C0125DA9E05B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F654B5BE-1A20-48A6-BED0-7C9E29CB8099}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0DA40B75-6FEE-49BF-BDDE-E2598E786C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{12FF3C6A-56FB-4B3E-858D-0877CD39B025}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{15DDC42D-13A8-432B-B31D-36A8FB50758F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1CD6E593-ABBF-45AC-9F94-21E8F1BDC10B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2B584AEB-6C8F-4238-89E4-850CFD7B2065}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{30A2947A-664F-440B-908D-E0FEDFEAE5DE}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34BCEF11-CE38-48EC-9D08-5CC0557E8887}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B06CDDC-2ECB-45DC-B565-D41CC095BE40}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3FD7EB0A-96B6-43E0-9D94-44929F3FD1B3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D2525EE-3B7B-44C6-8960-77843DBC67A3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{89449F37-4AB2-46ED-A566-BB3A7797701B}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F509ADC2-B40E-470F-A7B7-45191486B5CB}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\AVG Web TuneUp
[-] Key Deleted : HKCU\Software\AVG Tuneup
[-] Key Deleted : HKCU\Software\Mail.Ru
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\AVG Web TuneUp
[-] Key Deleted : HKLM\SOFTWARE\AVG Tuneup
[-] Key Deleted : HKLM\SOFTWARE\Mail.Ru
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverEasy_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DriverEasy_is1
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Web TuneUp
[-] Key Deleted : HKU\.DEFAULT\Software\AVG Web TuneUp
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Data Restored : HKU\S-1-5-21-2139762894-2808136389-793043689-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
***** [ Web browsers ] *****
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.FF19Solved", "true");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.UserID", "UN27356105441950016");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.dum", "2");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.fullUserID", "UN27356105441950016.IN.20150103151808");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installDate", "03/01/2015 15:18:13");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installSessionId", "4525fe32-0718-44a9-a156-980315f05453");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installSp", "FALSE");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.installerVersion", "1.11.0.11");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchRevert", "@searchrevert@");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchUninstallUserMode", "4");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.searchUserMode", "4");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.toolbarInstallDate", "03-01-2015 15:18:09");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.versionFromInstaller", "10.35.0.3");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("CT3329621.xpeMode", "1");
[-] [C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxps://mysearch.avg.com/?cid={458FEBA5-DC68-4601-8D2C-3DDCF68F81EA}&mid=b164bd6cfcda47d285d4d152ba1975b1-a5633b735e8585f4a241e369b4b89641180b987a&lang=cs&ds=AVG[...]
[-] [C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
*************************
C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [10320 bytes] - [15/03/2016 20:10:21]
C:\Program Files\AdwCleaner\AdwCleaner[S1].txt - [9037 bytes] - [11/03/2016 18:43:02]
C:\Program Files\AdwCleaner\AdwCleaner[S2].txt - [11584 bytes] - [15/03/2016 20:07:28]
########## EOF - C:\Program Files\AdwCleaner\AdwCleaner[C1].txt - [10583 bytes] ##########
Re: Prosím o kontrolu log listu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 15.3.2016
Čas skenování: 20:27:23
Protokol: ssss.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.15.05
Databáze rootkitů: v2016.03.12.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: kuba
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 469527
Uplynulý čas: 3 hod, 37 min, 23 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 6
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3288691, , [69a83454c6d363d361d07fa435ce3ec2],
PUP.Optional.PCSpeedUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, , [80918404dfba59ddf4ddfe20c73dd62a],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3288691, , [33deafd90198e84e002c57cc41c2fa06],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{08CC987E-ACE9-4809-93E9-68645D88229E}, , [a26fbccc0b8ed75f03ad9856956ee61a],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6B18FFFE-D25D-41F0-BFE9-7975D1227D21}, , [070a90f890099a9c169ae00e52b1d42c],
PUP.Optional.CrossRider, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B121C90A-F8EF-4E63-9698-90298448CD10}, , [64ade99f31682c0ac0bceb19a163748c],
Hodnoty registru: 3
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{08CC987E-ACE9-4809-93E9-68645D88229E}|AppPath, C:\Users\kuba\AppData\Local\Tbccint\CT3329621, , [a26fbccc0b8ed75f03ad9856956ee61a]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6B18FFFE-D25D-41F0-BFE9-7975D1227D21}|AppPath, C:\Users\kuba\AppData\Local\Tbccint\CT3329621, , [070a90f890099a9c169ae00e52b1d42c]
PUP.Optional.CrossRider, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B121C90A-F8EF-4E63-9698-90298448CD10}|AppName, Torntv V9.0-enabler.exe-codedownloader.exe, , [64ade99f31682c0ac0bceb19a163748c]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621, , [7c955038d6c30e28bf10739f8b78966a],
Soubory: 4
PUP.Optional.OpenCandy, C:\Users\kuba\AppData\Roaming\uTorrent\updates\3.4.0_30596.exe, , [57ba2d5b8a0f4beb86941d7acb39916f],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.dum, , [7c955038d6c30e28bf10739f8b78966a],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.fullUserID, , [7c955038d6c30e28bf10739f8b78966a],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.UserID, , [7c955038d6c30e28bf10739f8b78966a],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 15.3.2016
Čas skenování: 20:27:23
Protokol: ssss.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2016.03.15.05
Databáze rootkitů: v2016.03.12.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows Vista Service Pack 2
CPU: x86
Souborový systém: NTFS
Uživatel: kuba
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 469527
Uplynulý čas: 3 hod, 37 min, 23 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 6
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3288691, , [69a83454c6d363d361d07fa435ce3ec2],
PUP.Optional.PCSpeedUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\PCSUUCDRV, , [80918404dfba59ddf4ddfe20c73dd62a],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct3288691, , [33deafd90198e84e002c57cc41c2fa06],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{08CC987E-ACE9-4809-93E9-68645D88229E}, , [a26fbccc0b8ed75f03ad9856956ee61a],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6B18FFFE-D25D-41F0-BFE9-7975D1227D21}, , [070a90f890099a9c169ae00e52b1d42c],
PUP.Optional.CrossRider, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B121C90A-F8EF-4E63-9698-90298448CD10}, , [64ade99f31682c0ac0bceb19a163748c],
Hodnoty registru: 3
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{08CC987E-ACE9-4809-93E9-68645D88229E}|AppPath, C:\Users\kuba\AppData\Local\Tbccint\CT3329621, , [a26fbccc0b8ed75f03ad9856956ee61a]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6B18FFFE-D25D-41F0-BFE9-7975D1227D21}|AppPath, C:\Users\kuba\AppData\Local\Tbccint\CT3329621, , [070a90f890099a9c169ae00e52b1d42c]
PUP.Optional.CrossRider, HKU\S-1-5-21-2139762894-2808136389-793043689-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{B121C90A-F8EF-4E63-9698-90298448CD10}|AppName, Torntv V9.0-enabler.exe-codedownloader.exe, , [64ade99f31682c0ac0bceb19a163748c]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 1
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621, , [7c955038d6c30e28bf10739f8b78966a],
Soubory: 4
PUP.Optional.OpenCandy, C:\Users\kuba\AppData\Roaming\uTorrent\updates\3.4.0_30596.exe, , [57ba2d5b8a0f4beb86941d7acb39916f],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.dum, , [7c955038d6c30e28bf10739f8b78966a],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.fullUserID, , [7c955038d6c30e28bf10739f8b78966a],
PUP.Optional.ConduitTB.Gen, C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\CT3329621\CT3329621.UserID, , [7c955038d6c30e28bf10739f8b78966a],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu log listu
Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test s MBAM zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
Nic to nenašlo.
Re: Prosím o kontrolu log listu
MBAM muzete odinstalovat. Dejte novy log z RSITa k tomu
Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu log listu
Logfile of random's system information tool 1.10 (written by random/random)
Run by kuba at 2016-03-17 20:56:22
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 2 GB (2%) free of 76 GB
Total RAM: 2046 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:56:40, on 17.3.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal
Running processes:
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\kuba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
--
End of file - 7104 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20 71192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=RtHDVCpl.exe []
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2015-12-08 837640]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-03-02 25512]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2015-02-12 5564784]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-02-18 179624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-07-25 1562264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-15 778240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2007-06-26 618496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave1"=serwvdrv.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.dvsd"=pdvcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-16 20:33:27 ----SHD---- C:\Config.Msi
2016-03-15 20:13:56 ----A---- C:\Windows\system32\WDPABKP.dat
2016-03-11 18:42:51 ----D---- C:\Program Files\AdwCleaner
2016-03-10 12:18:19 ----A---- C:\Windows\system32\advapi32.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\smss.exe
2016-03-10 12:18:18 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\ntdll.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:17:22 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:11:51 ----A---- C:\Windows\system32\seclogon.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmlib.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmfd.dll
2016-03-10 12:05:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-10 12:04:43 ----A---- C:\Windows\system32\olepro32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-10 11:33:53 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 10:50:17 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\mshta.exe
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50:16 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\msfeedssync.exe
2016-03-09 10:50:14 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50:13 ----A---- C:\Windows\system32\url.dll
2016-03-09 10:50:12 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 10:50:09 ----A---- C:\Windows\system32\mshtml.dll
2016-03-02 10:26:52 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
======List of files/folders modified in the last 1 month======
2016-03-17 20:56:35 ----D---- C:\Windows\Prefetch
2016-03-17 20:56:25 ----D---- C:\Program Files\trend micro
2016-03-17 20:56:20 ----D---- C:\Windows\Temp
2016-03-17 20:54:28 ----RD---- C:\Program Files
2016-03-17 20:54:27 ----D---- C:\Windows\system32\drivers
2016-03-17 12:52:01 ----SHD---- C:\System Volume Information
2016-03-17 12:09:26 ----D---- C:\ProgramData\MFAData
2016-03-17 12:06:30 ----D---- C:\Windows\System32
2016-03-16 20:34:10 ----SHD---- C:\Windows\Installer
2016-03-16 18:28:36 ----A---- C:\Windows\system32\acovcnt.exe
2016-03-16 18:27:29 ----D---- C:\Windows\ABLKSR
2016-03-15 20:12:52 ----D---- C:\Windows
2016-03-15 20:10:40 ----HD---- C:\ProgramData
2016-03-15 20:10:30 ----D---- C:\Program Files\Common Files
2016-03-15 19:37:33 ----D---- C:\Windows\system32\Tasks
2016-03-15 19:37:32 ----D---- C:\Windows\Tasks
2016-03-11 20:11:06 ----AD---- C:\ProgramData\TEMP
2016-03-11 13:53:13 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-03-11 06:25:13 ----D---- C:\ProgramData\Microsoft Help
2016-03-10 23:28:38 ----D---- C:\Windows\system32\catroot2
2016-03-10 13:04:42 ----D---- C:\Windows\Microsoft.NET
2016-03-10 13:03:23 ----RSD---- C:\Windows\assembly
2016-03-10 12:57:16 ----D---- C:\Windows\rescache
2016-03-10 12:47:12 ----D---- C:\Windows\inf
2016-03-10 12:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:35:33 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 12:35:32 ----D---- C:\Windows\system32\XPSViewer
2016-03-10 12:35:32 ----D---- C:\Program Files\Windows Mail
2016-03-10 12:35:32 ----D---- C:\Program Files\Common Files\System
2016-03-10 12:35:31 ----D---- C:\Windows\system32\migration
2016-03-10 12:35:31 ----D---- C:\Program Files\Internet Explorer
2016-03-10 12:18:55 ----D---- C:\Windows\winsxs
2016-03-10 12:18:51 ----D---- C:\Windows\system32\catroot
2016-03-10 12:00:56 ----D---- C:\Windows\system32\MRT
2016-03-10 11:48:31 ----A---- C:\Windows\system32\mrt.exe
2016-02-29 15:03:06 ----D---- C:\Users\kuba\AppData\Roaming\vlc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-26 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2016-02-03 297904]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-03-02 205744]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-26 256432]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-06-16 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-06-16 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-06-16 123776]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2013-04-22 11520]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-03-02 3934184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-02-18 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-03-02 561104]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2015-02-12 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2015-02-12 302968]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by kuba at 2016-03-17 20:56:22
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 2 GB (2%) free of 76 GB
Total RAM: 2046 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:56:40, on 17.3.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal
Running processes:
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files\AVG\Av\avgui.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\AVG\Framework\Common\avguix.exe
C:\Windows\system32\ctfmon.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\kuba\Desktop\RSIT.exe
C:\Program Files\trend micro\kuba.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\Av\avuirunnerx.exe" C:\Program Files\AVG\Av\avgui.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgidsagent.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Framework\Common\avgsvcx.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Av\avgwdsvcx.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
--
End of file - 7104 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20 71192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-02-12 174872]
"RtHDVCpl"=RtHDVCpl.exe []
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2006-11-02 61440]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-21 17920]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2007-03-20 36864]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-03-01 857648]
"ASUS Screen Saver Protector"=C:\Windows\ASScrPro.exe [2007-08-01 33136]
"ASUS Camera ScreenSaver"=C:\Windows\ASScrProlog.exe [2007-08-01 37232]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"DivXMediaServer"=C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [2015-12-08 837640]
"AVG_UI"=C:\Program Files\AVG\Av\avuirunnerx.exe [2016-03-02 25512]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2015-02-12 5564784]
"AvgUi"=C:\Program Files\AVG\Framework\Common\avguirnx.exe [2016-02-18 179624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-07-25 1562264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
C:\Program Files\PowerForPhone\PowerForPhone.exe [2007-01-15 778240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AVerQuick.lnk]
C:\PROGRA~1\COMMON~1\AVERME~1\AVERQU~1\AVERQU~1.EXE [2007-06-26 618496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave1"=serwvdrv.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.X264"=x264vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.dvsd"=pdvcodec.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-03-16 20:33:27 ----SHD---- C:\Config.Msi
2016-03-15 20:13:56 ----A---- C:\Windows\system32\WDPABKP.dat
2016-03-11 18:42:51 ----D---- C:\Program Files\AdwCleaner
2016-03-10 12:18:19 ----A---- C:\Windows\system32\advapi32.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\smss.exe
2016-03-10 12:18:18 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\ntdll.dll
2016-03-10 12:18:18 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18:17 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:17:22 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17:22 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:11:51 ----A---- C:\Windows\system32\seclogon.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmlib.dll
2016-03-10 12:10:31 ----A---- C:\Windows\system32\atmfd.dll
2016-03-10 12:05:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-10 12:04:43 ----A---- C:\Windows\system32\olepro32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-10 12:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-10 11:33:53 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 10:50:17 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\mshta.exe
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 10:50:17 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 10:50:16 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50:16 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 10:50:14 ----A---- C:\Windows\system32\msfeedssync.exe
2016-03-09 10:50:14 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50:13 ----A---- C:\Windows\system32\url.dll
2016-03-09 10:50:12 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 10:50:11 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 10:50:09 ----A---- C:\Windows\system32\mshtml.dll
2016-03-02 10:26:52 ----A---- C:\Windows\system32\drivers\avgmfx86.sys
======List of files/folders modified in the last 1 month======
2016-03-17 20:56:35 ----D---- C:\Windows\Prefetch
2016-03-17 20:56:25 ----D---- C:\Program Files\trend micro
2016-03-17 20:56:20 ----D---- C:\Windows\Temp
2016-03-17 20:54:28 ----RD---- C:\Program Files
2016-03-17 20:54:27 ----D---- C:\Windows\system32\drivers
2016-03-17 12:52:01 ----SHD---- C:\System Volume Information
2016-03-17 12:09:26 ----D---- C:\ProgramData\MFAData
2016-03-17 12:06:30 ----D---- C:\Windows\System32
2016-03-16 20:34:10 ----SHD---- C:\Windows\Installer
2016-03-16 18:28:36 ----A---- C:\Windows\system32\acovcnt.exe
2016-03-16 18:27:29 ----D---- C:\Windows\ABLKSR
2016-03-15 20:12:52 ----D---- C:\Windows
2016-03-15 20:10:40 ----HD---- C:\ProgramData
2016-03-15 20:10:30 ----D---- C:\Program Files\Common Files
2016-03-15 19:37:33 ----D---- C:\Windows\system32\Tasks
2016-03-15 19:37:32 ----D---- C:\Windows\Tasks
2016-03-11 20:11:06 ----AD---- C:\ProgramData\TEMP
2016-03-11 13:53:13 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-03-11 06:25:13 ----D---- C:\ProgramData\Microsoft Help
2016-03-10 23:28:38 ----D---- C:\Windows\system32\catroot2
2016-03-10 13:04:42 ----D---- C:\Windows\Microsoft.NET
2016-03-10 13:03:23 ----RSD---- C:\Windows\assembly
2016-03-10 12:57:16 ----D---- C:\Windows\rescache
2016-03-10 12:47:12 ----D---- C:\Windows\inf
2016-03-10 12:47:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:35:33 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 12:35:32 ----D---- C:\Windows\system32\XPSViewer
2016-03-10 12:35:32 ----D---- C:\Program Files\Windows Mail
2016-03-10 12:35:32 ----D---- C:\Program Files\Common Files\System
2016-03-10 12:35:31 ----D---- C:\Windows\system32\migration
2016-03-10 12:35:31 ----D---- C:\Program Files\Internet Explorer
2016-03-10 12:18:55 ----D---- C:\Windows\winsxs
2016-03-10 12:18:51 ----D---- C:\Windows\system32\catroot
2016-03-10 12:00:56 ----D---- C:\Windows\system32\MRT
2016-03-10 11:48:31 ----A---- C:\Windows\system32\mrt.exe
2016-02-29 15:03:06 ----D---- C:\Users\kuba\AppData\Roaming\vlc
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-26 207792]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2016-02-03 297904]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-03-02 205744]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-12-04 37296]
R0 Avgunivx;AVG Universal Driver; C:\Windows\system32\DRIVERS\avgunivx.sys [2016-01-08 23472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2007-02-12 277784]
R0 JGOGO;JMicron Hot-Plug Driver; C:\Windows\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2007-04-11 48000]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-11-06 149936]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2016-01-26 256432]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-20 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-10-21 229296]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-10-08 231856]
R1 ItSDisk;ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [2006-05-16 23496]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-02-05 11632]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\atl01v32.sys [2007-03-15 48128]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-03-29 140424]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2007-01-24 5632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-19 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-14 7680]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\Windows\System32\Drivers\StkCMini.sys [2007-02-13 1245056]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-03-01 182456]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2006-11-16 15216]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 89856]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
S3 lvupdtio;lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys []
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945BG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-10-14 4422560]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-06 2411520]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-11-02 44544]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-06-16 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-06-16 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-06-16 123776]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 184192]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2006-11-02 41064]
S3 USBAVCap;AVerMedia USB TV Tuner Device; C:\Windows\system32\drivers\USBAVCap.sys [2007-05-10 828288]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2013-04-22 11520]
S3 WinUSB;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-07-14 34944]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-02-06 94208]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-06 565248]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-03-10 94208]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [2016-03-02 3934184]
R2 avgsvc;AVG Service; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [2016-02-18 865704]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\Av\avgwdsvcx.exe [2016-03-02 561104]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-02-21 643072]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-02-12 355096]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-02-21 327680]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2006-12-29 123248]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\Windows\System32\StkCSrv.exe [2007-02-07 24576]
R2 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2015-02-12 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2015-02-12 302968]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11 269504]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-11 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Re: Prosím o kontrolu log listu
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Ran by kuba (administrator) on KUBA-PC (17-03-2016 21:06:11)
Running from C:\Users\kuba\Desktop
Loaded Profiles: kuba (Available Profiles: kuba)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(ASUSTeK Computer INC.) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\ASScrPro.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [174872 2007-02-12] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => RtHDVCpl.exe
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2006-11-02] (ASUSTeK Computer INC.)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
HKLM\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648 2007-03-01] (Synaptics, Inc.)
HKLM\...\Run: [ASUS Screen Saver Protector] => C:\Windows\ASScrPro.exe [33136 2007-08-01] ()
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\ASScrProlog.exe [37232 2007-08-01] ()
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [837640 2015-12-08] (DivX, LLC)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3862440 2016-03-02] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
AppInit_DLLs: APSHook.dll => C:\Windows\system32\APSHook.dll [56832 2006-07-12] (Cognizance Corporation)
Lsa: [Notification Packages] scecli ASWLNPkg
ShellIconOverlayIdentifiers: [Encrypted Files] -> {666C7833-A9B6-4AB4-94ED-DC238C81E925} => C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\SFSShell.dll [2006-10-26] (Cognizance Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-19] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1FB0B6AE-215C-4E90-9F2C-A232D26D695F}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F8F85C6C-5328-4A09-9D3A-65B6AB81AC15}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: ASUS Security Protect Manager -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20] (Bioscrypt Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2015-12-02] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-10] (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml [2014-03-05]
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-06-23] [not signed]
FF Extension: No Name - C:\Program Files\MediaWatchV1\MediaWatchV1home1896\ff [not found]
FF Extension: No Name - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.5.512 [not found]
FF Extension: No Name - C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\extensions\avg@toolbar [not found]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
Chrome:
=======
CHR Profile: C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation) [File not signed]
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation) [File not signed]
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-02-06] () [File not signed]
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-03-10] () [File not signed]
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3934184 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-02-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [561104 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation) [File not signed]
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [123248 2006-12-29] () [File not signed]
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-07] (Syntek America Inc.)
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-02-12] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [11632 2007-02-05] () [File not signed]
R3 AtcL001; C:\Windows\System32\DRIVERS\atl01v32.sys [48128 2007-03-15] (Attansic Technology corporation.)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [140424 2007-03-29] (AuthenTec, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [256432 2016-01-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [207792 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [297904 2016-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [205744 2016-03-02] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [15216 2006-11-16] () [File not signed]
R1 ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [23496 2006-05-16] (Cognizance Corporation)
R0 JGOGO; C:\Windows\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [48000 2007-04-11] (JMicron Technology Corp.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [5632 2007-01-24] ( )
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1245056 2007-02-13] (Syntek)
S3 USBAVCap; C:\Windows\System32\drivers\USBAVCap.sys [828288 2007-05-10] (AVerMedia TECHNOLOGIES, Inc.)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
U4 NMIndexingService; no ImagePath
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U4 secdrv; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-17 21:06 - 2016-03-17 21:06 - 00016048 _____ C:\Users\kuba\Desktop\FRST.txt
2016-03-17 21:05 - 2016-03-17 21:06 - 00000000 ____D C:\FRST
2016-03-17 21:04 - 2016-03-17 21:04 - 01725440 _____ (Farbar) C:\Users\kuba\Desktop\FRST.exe
2016-03-17 21:03 - 2016-03-17 21:03 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 599869.crdownload
2016-03-17 21:03 - 2016-03-17 21:03 - 00029696 _____ C:\Users\kuba\AppData\Local\MSGBOX.EXE
2016-03-17 21:01 - 2016-03-17 21:01 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 396722.crdownload
2016-03-17 21:00 - 2016-03-17 21:00 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 641080.crdownload
2016-03-17 21:00 - 2016-03-17 21:00 - 00112107 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 616419.crdownload
2016-03-17 12:17 - 2016-03-17 12:17 - 00000000 _____ C:\Users\kuba\Desktop\stažený soubor.htm
2016-03-16 05:31 - 2016-03-16 05:31 - 00003708 _____ C:\Users\kuba\Desktop\ssss.txt
2016-03-16 05:30 - 2016-03-16 05:29 - 00010026 _____ C:\Users\kuba\Desktop\aaa.xml
2016-03-15 20:20 - 2016-03-15 20:21 - 22908888 _____ (Malwarebytes ) C:\Users\kuba\Downloads\mbam-setup-2.2.0.1024.exe
2016-03-15 20:13 - 2016-03-17 12:06 - 00008192 _____ C:\Windows\system32\WDPABKP.dat
2016-03-15 20:06 - 2016-03-15 20:06 - 01527296 _____ C:\Users\kuba\Downloads\adwcleaner_5.102.exe
2016-03-15 20:06 - 2016-03-15 20:06 - 01527296 _____ C:\Users\kuba\Desktop\adwcleaner_5.102.exe
2016-03-15 20:01 - 2016-03-15 20:01 - 00000000 ____D C:\Users\kuba\AppData\Local\Tempdivxc53c
2016-03-11 18:42 - 2016-03-15 20:10 - 00000000 ____D C:\Program Files\AdwCleaner
2016-03-10 21:43 - 2016-03-10 21:43 - 01107968 _____ C:\Users\kuba\Desktop\RSIT.exe
2016-03-10 12:18 - 2016-02-19 22:34 - 01208776 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-10 12:18 - 2016-02-06 03:17 - 03609024 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:18 - 2016-02-06 03:17 - 03556800 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18 - 2016-02-06 03:12 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18 - 2016-02-06 03:11 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-10 12:18 - 2016-02-06 03:11 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-10 12:18 - 2016-02-06 01:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-10 12:17 - 2015-11-20 15:15 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00015200 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:11 - 2016-02-06 03:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-10 12:10 - 2016-02-06 03:11 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-10 12:10 - 2016-02-06 01:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-10 12:05 - 2016-02-02 16:30 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-10 12:04 - 2016-02-03 18:06 - 00564736 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-10 12:04 - 2016-02-03 18:06 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-03-10 12:04 - 2016-02-03 18:05 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-10 11:33 - 2016-02-04 16:25 - 02068992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-09 10:50 - 2016-02-09 01:17 - 01815552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-09 10:50 - 2016-02-09 01:15 - 12392960 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-09 10:50 - 2016-02-09 01:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-09 10:50 - 2016-02-09 01:12 - 09753600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-09 10:50 - 2016-02-09 01:12 - 01140224 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-09 10:50 - 2016-02-09 01:11 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 01804800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-09 10:50 - 2016-02-09 01:10 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50 - 2016-02-09 01:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-09 10:50 - 2016-02-09 01:09 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-03-09 10:50 - 2016-02-09 01:09 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-03-02 10:56 - 2016-03-02 12:37 - 1739118321 _____ C:\Users\kuba\Downloads\Americký-sniper---American-Sniper-2014,-CZ.mkv
2016-03-02 10:26 - 2016-03-02 10:26 - 00205744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx86.sys
2016-02-29 18:16 - 2016-02-29 18:16 - 02107958 _____ C:\Users\kuba\Downloads\Faktury-Tomáš.rar
2016-02-29 11:49 - 2016-02-29 12:26 - 634166550 _____ C:\Users\kuba\Downloads\Princezna-ze-mlejna-(HD).webm
2016-02-25 20:34 - 2016-02-25 20:35 - 00000000 ____D C:\Users\kuba\Desktop\domekmm
2016-02-21 17:11 - 2016-02-21 19:09 - 1771252046 _____ C:\Users\kuba\Downloads\Stazista-The-Intern--CZ-Dabing-2015-BDRip.avi
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-17 20:56 - 2015-03-12 20:08 - 00000000 ____D C:\Program Files\trend micro
2016-03-17 20:53 - 2013-03-21 01:38 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-17 20:40 - 2015-05-20 11:51 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-17 20:40 - 2015-05-20 11:51 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-17 20:05 - 2006-11-02 13:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-17 20:05 - 2006-11-02 13:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-17 12:09 - 2014-04-23 10:12 - 00000000 ____D C:\ProgramData\MFAData
2016-03-17 12:05 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-17 04:59 - 2006-11-02 14:01 - 00032580 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-17 04:58 - 2007-04-21 11:36 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-03-16 20:30 - 2015-10-23 08:01 - 00000820 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-03-16 20:30 - 2014-04-23 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-03-16 18:28 - 2007-08-01 16:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2016-03-16 18:27 - 2007-04-21 12:15 - 00000000 ____D C:\Windows\ABLKSR
2016-03-15 20:06 - 2012-07-18 20:40 - 00001990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-15 20:06 - 2012-07-18 20:40 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-11 20:11 - 2012-07-31 18:45 - 00000000 ____D C:\ProgramData\TEMP
2016-03-11 13:53 - 2012-05-10 20:36 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-03-11 13:53 - 2012-05-10 20:36 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-03-10 12:57 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2016-03-10 12:47 - 2007-04-21 12:18 - 00645310 _____ C:\Windows\system32\perfh005.dat
2016-03-10 12:47 - 2007-04-21 12:18 - 00137964 _____ C:\Windows\system32\perfc005.dat
2016-03-10 12:47 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\inf
2016-03-10 12:47 - 2006-11-02 11:33 - 01532750 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:39 - 2006-11-02 13:47 - 00386400 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-10 12:35 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2016-03-10 12:35 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\System
2016-03-10 12:00 - 2013-07-15 02:03 - 00000000 ____D C:\Windows\system32\MRT
2016-03-10 11:48 - 2006-11-02 11:24 - 141270216 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-03-09 13:10 - 2016-01-07 15:30 - 00003865 _____ C:\Users\kuba\AppData\LocalLow\lpm.dat
2016-02-29 15:03 - 2013-09-22 13:30 - 00000000 ____D C:\Users\kuba\AppData\Roaming\vlc
==================== Files in the root of some directories =======
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Grand Piano
2013-01-08 08:09 - 2013-01-08 08:09 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Grapher
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Graphics
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Horn Section
2014-03-29 20:57 - 2014-03-31 15:20 - 0000082 _____ () C:\Users\kuba\AppData\Roaming\WB.CFG
2012-06-22 18:40 - 2012-06-22 18:40 - 0000552 _____ () C:\Users\kuba\AppData\Local\d3d8caps.dat
2012-07-24 02:00 - 2015-07-24 12:10 - 0007592 _____ () C:\Users\kuba\AppData\Local\d3d9caps.dat
2012-05-10 21:02 - 2013-02-14 17:00 - 0058880 _____ () C:\Users\kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-17 21:03 - 2016-03-17 21:03 - 0029696 _____ () C:\Users\kuba\AppData\Local\MSGBOX.EXE
2015-01-11 18:47 - 2015-01-11 18:47 - 0000000 _____ () C:\Users\kuba\AppData\Local\{62A021F7-1867-4402-AA4D-4A39B37B672B}
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\ProgramData\Guitar
2013-01-08 08:09 - 2013-01-08 08:09 - 0000268 ___RH () C:\ProgramData\Guitars
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\ProgramData\HAL
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Hybrid Morph
2013-01-08 08:09 - 2013-01-08 08:09 - 0000012 ___RH () C:\ProgramData\Icons
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Image Manipulation
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Limiter
2013-01-08 08:08 - 2013-01-08 08:08 - 0000020 ____H () C:\ProgramData\PKP_DLeo.DAT
2013-01-08 08:09 - 2013-02-15 06:20 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT
2013-01-08 08:08 - 2013-12-13 12:38 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT
2013-01-08 08:08 - 2013-12-13 12:41 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT
Some files in TEMP:
====================
C:\Users\kuba\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-03-17 12:12
==================== End of FRST.txt ============================
Ran by kuba (administrator) on KUBA-PC (17-03-2016 21:06:11)
Running from C:\Users\kuba\Desktop
Loaded Profiles: kuba (Available Profiles: kuba)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Program Files\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(ASUSTeK Computer INC.) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ATK0100) C:\Program Files\ATK Hotkey\HControl.exe
() C:\Program Files\ATKOSD2\ATKOSD2.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ATK Hotkey\KBFiltr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Syntek America Inc.) C:\Windows\System32\StkCSrv.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\ASScrPro.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [174872 2007-02-12] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => RtHDVCpl.exe
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [61440 2006-11-02] (ASUSTeK Computer INC.)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
HKLM\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648 2007-03-01] (Synaptics, Inc.)
HKLM\...\Run: [ASUS Screen Saver Protector] => C:\Windows\ASScrPro.exe [33136 2007-08-01] ()
HKLM\...\Run: [ASUS Camera ScreenSaver] => C:\Windows\ASScrProlog.exe [37232 2007-08-01] ()
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [837640 2015-12-08] (DivX, LLC)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3862440 2016-03-02] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2139762894-2808136389-793043689-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
AppInit_DLLs: APSHook.dll => C:\Windows\system32\APSHook.dll [56832 2006-07-12] (Cognizance Corporation)
Lsa: [Notification Packages] scecli ASWLNPkg
ShellIconOverlayIdentifiers: [Encrypted Files] -> {666C7833-A9B6-4AB4-94ED-DC238C81E925} => C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\SFSShell.dll [2006-10-26] (Cognizance Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 02 C:\Windows\system32\napinsp.dll [50176 2008-01-19] (Společnost Microsoft)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1FB0B6AE-215C-4E90-9F2C-A232D26D695F}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F8F85C6C-5328-4A09-9D3A-65B6AB81AC15}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: ASUS Security Protect Manager -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-20] (Bioscrypt Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2015-12-02] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2012-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-10] (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml [2014-03-05]
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-06-23] [not signed]
FF Extension: No Name - C:\Program Files\MediaWatchV1\MediaWatchV1home1896\ff [not found]
FF Extension: No Name - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\18.1.5.512 [not found]
FF Extension: No Name - C:\Users\kuba\AppData\Roaming\Mozilla\Firefox\Profiles\bvflu3f4.default\extensions\avg@toolbar [not found]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
Chrome:
=======
CHR Profile: C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation) [File not signed]
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation) [File not signed]
R2 ASLDRService; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208 2007-02-06] () [File not signed]
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-03-10] () [File not signed]
S2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3934184 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-02-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [561104 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation) [File not signed]
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [123248 2006-12-29] () [File not signed]
R2 StkSSrv; C:\Windows\System32\StkCSrv.exe [24576 2007-02-07] (Syntek America Inc.)
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-02-12] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [302968 2015-02-12] (Western Digital Technologies, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [11632 2007-02-05] () [File not signed]
R3 AtcL001; C:\Windows\System32\DRIVERS\atl01v32.sys [48128 2007-03-15] (Attansic Technology corporation.)
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [140424 2007-03-29] (AuthenTec, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [256432 2016-01-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [207792 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [297904 2016-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [205744 2016-03-02] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [231856 2015-10-08] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\Windows\System32\DRIVERS\avgunivx.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.)
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [190424 2009-04-11] (Společnost Microsoft)
S2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [15216 2006-11-16] () [File not signed]
R1 ItSDisk; C:\Windows\System32\Drivers\ItSDisk.sys [23496 2006-05-16] (Cognizance Corporation)
R0 JGOGO; C:\Windows\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [48000 2007-04-11] (JMicron Technology Corp.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [5632 2007-01-24] ( )
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 Ntfs; C:\Windows\system32\Drivers\Ntfs.sys [1082232 2013-03-03] (Společnost Microsoft)
R3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1245056 2007-02-13] (Syntek)
S3 USBAVCap; C:\Windows\System32\drivers\USBAVCap.sys [828288 2007-05-10] (AVerMedia TECHNOLOGIES, Inc.)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 lvupdtio; \??\C:\Program Files\ASUS\ASUS Live Update\SYS\lvupdtio.sys [X]
U4 NMIndexingService; no ImagePath
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U4 secdrv; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-17 21:06 - 2016-03-17 21:06 - 00016048 _____ C:\Users\kuba\Desktop\FRST.txt
2016-03-17 21:05 - 2016-03-17 21:06 - 00000000 ____D C:\FRST
2016-03-17 21:04 - 2016-03-17 21:04 - 01725440 _____ (Farbar) C:\Users\kuba\Desktop\FRST.exe
2016-03-17 21:03 - 2016-03-17 21:03 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 599869.crdownload
2016-03-17 21:03 - 2016-03-17 21:03 - 00029696 _____ C:\Users\kuba\AppData\Local\MSGBOX.EXE
2016-03-17 21:01 - 2016-03-17 21:01 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 396722.crdownload
2016-03-17 21:00 - 2016-03-17 21:00 - 00112640 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 641080.crdownload
2016-03-17 21:00 - 2016-03-17 21:00 - 00112107 _____ (forum.viry.cz) C:\Users\kuba\Downloads\Nepotvrzeno 616419.crdownload
2016-03-17 12:17 - 2016-03-17 12:17 - 00000000 _____ C:\Users\kuba\Desktop\stažený soubor.htm
2016-03-16 05:31 - 2016-03-16 05:31 - 00003708 _____ C:\Users\kuba\Desktop\ssss.txt
2016-03-16 05:30 - 2016-03-16 05:29 - 00010026 _____ C:\Users\kuba\Desktop\aaa.xml
2016-03-15 20:20 - 2016-03-15 20:21 - 22908888 _____ (Malwarebytes ) C:\Users\kuba\Downloads\mbam-setup-2.2.0.1024.exe
2016-03-15 20:13 - 2016-03-17 12:06 - 00008192 _____ C:\Windows\system32\WDPABKP.dat
2016-03-15 20:06 - 2016-03-15 20:06 - 01527296 _____ C:\Users\kuba\Downloads\adwcleaner_5.102.exe
2016-03-15 20:06 - 2016-03-15 20:06 - 01527296 _____ C:\Users\kuba\Desktop\adwcleaner_5.102.exe
2016-03-15 20:01 - 2016-03-15 20:01 - 00000000 ____D C:\Users\kuba\AppData\Local\Tempdivxc53c
2016-03-11 18:42 - 2016-03-15 20:10 - 00000000 ____D C:\Program Files\AdwCleaner
2016-03-10 21:43 - 2016-03-10 21:43 - 01107968 _____ C:\Users\kuba\Desktop\RSIT.exe
2016-03-10 12:18 - 2016-02-19 22:34 - 01208776 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-10 12:18 - 2016-02-06 03:17 - 03609024 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-03-10 12:18 - 2016-02-06 03:17 - 03556800 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-10 12:18 - 2016-02-06 03:12 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-10 12:18 - 2016-02-06 03:11 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-10 12:18 - 2016-02-06 03:11 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-10 12:18 - 2016-02-06 01:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-10 12:17 - 2015-11-20 15:15 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00015200 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-10 12:17 - 2015-11-20 15:15 - 00011104 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-10 12:11 - 2016-02-06 03:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-10 12:10 - 2016-02-06 03:11 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-10 12:10 - 2016-02-06 01:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-10 12:05 - 2016-02-02 16:30 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-10 12:04 - 2016-02-03 18:06 - 00564736 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-10 12:04 - 2016-02-03 18:06 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-03-10 12:04 - 2016-02-03 18:05 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-10 11:33 - 2016-02-04 16:25 - 02068992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-09 10:50 - 2016-02-09 01:17 - 01815552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-09 10:50 - 2016-02-09 01:15 - 12392960 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-09 10:50 - 2016-02-09 01:13 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-09 10:50 - 2016-02-09 01:12 - 09753600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-09 10:50 - 2016-02-09 01:12 - 01140224 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-09 10:50 - 2016-02-09 01:11 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 01804800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-09 10:50 - 2016-02-09 01:10 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-03-09 10:50 - 2016-02-09 01:10 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-09 10:50 - 2016-02-09 01:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-09 10:50 - 2016-02-09 01:09 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-03-09 10:50 - 2016-02-09 01:09 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-03-09 10:50 - 2016-02-09 01:09 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-03-02 10:56 - 2016-03-02 12:37 - 1739118321 _____ C:\Users\kuba\Downloads\Americký-sniper---American-Sniper-2014,-CZ.mkv
2016-03-02 10:26 - 2016-03-02 10:26 - 00205744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx86.sys
2016-02-29 18:16 - 2016-02-29 18:16 - 02107958 _____ C:\Users\kuba\Downloads\Faktury-Tomáš.rar
2016-02-29 11:49 - 2016-02-29 12:26 - 634166550 _____ C:\Users\kuba\Downloads\Princezna-ze-mlejna-(HD).webm
2016-02-25 20:34 - 2016-02-25 20:35 - 00000000 ____D C:\Users\kuba\Desktop\domekmm
2016-02-21 17:11 - 2016-02-21 19:09 - 1771252046 _____ C:\Users\kuba\Downloads\Stazista-The-Intern--CZ-Dabing-2015-BDRip.avi
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-17 20:56 - 2015-03-12 20:08 - 00000000 ____D C:\Program Files\trend micro
2016-03-17 20:53 - 2013-03-21 01:38 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-17 20:40 - 2015-05-20 11:51 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-17 20:40 - 2015-05-20 11:51 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-17 20:05 - 2006-11-02 13:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-17 20:05 - 2006-11-02 13:47 - 00003168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-17 12:09 - 2014-04-23 10:12 - 00000000 ____D C:\ProgramData\MFAData
2016-03-17 12:05 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-17 04:59 - 2006-11-02 14:01 - 00032580 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-17 04:58 - 2007-04-21 11:36 - 00000012 _____ C:\Windows\bthservsdp.dat
2016-03-16 20:30 - 2015-10-23 08:01 - 00000820 _____ C:\Users\Public\Desktop\AVG Protection.lnk
2016-03-16 20:30 - 2014-04-23 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-03-16 18:28 - 2007-08-01 16:29 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2016-03-16 18:27 - 2007-04-21 12:15 - 00000000 ____D C:\Windows\ABLKSR
2016-03-15 20:06 - 2012-07-18 20:40 - 00001990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-15 20:06 - 2012-07-18 20:40 - 00001978 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-11 20:11 - 2012-07-31 18:45 - 00000000 ____D C:\ProgramData\TEMP
2016-03-11 13:53 - 2012-05-10 20:36 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-03-11 13:53 - 2012-05-10 20:36 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-03-10 12:57 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2016-03-10 12:47 - 2007-04-21 12:18 - 00645310 _____ C:\Windows\system32\perfh005.dat
2016-03-10 12:47 - 2007-04-21 12:18 - 00137964 _____ C:\Windows\system32\perfc005.dat
2016-03-10 12:47 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\inf
2016-03-10 12:47 - 2006-11-02 11:33 - 01532750 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-10 12:39 - 2006-11-02 13:47 - 00386400 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-10 12:35 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2016-03-10 12:35 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\System
2016-03-10 12:00 - 2013-07-15 02:03 - 00000000 ____D C:\Windows\system32\MRT
2016-03-10 11:48 - 2006-11-02 11:24 - 141270216 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-03-09 13:10 - 2016-01-07 15:30 - 00003865 _____ C:\Users\kuba\AppData\LocalLow\lpm.dat
2016-02-29 15:03 - 2013-09-22 13:30 - 00000000 ____D C:\Users\kuba\AppData\Roaming\vlc
==================== Files in the root of some directories =======
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Grand Piano
2013-01-08 08:09 - 2013-01-08 08:09 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Grapher
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Graphics
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\Users\kuba\AppData\Roaming\Horn Section
2014-03-29 20:57 - 2014-03-31 15:20 - 0000082 _____ () C:\Users\kuba\AppData\Roaming\WB.CFG
2012-06-22 18:40 - 2012-06-22 18:40 - 0000552 _____ () C:\Users\kuba\AppData\Local\d3d8caps.dat
2012-07-24 02:00 - 2015-07-24 12:10 - 0007592 _____ () C:\Users\kuba\AppData\Local\d3d9caps.dat
2012-05-10 21:02 - 2013-02-14 17:00 - 0058880 _____ () C:\Users\kuba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-17 21:03 - 2016-03-17 21:03 - 0029696 _____ () C:\Users\kuba\AppData\Local\MSGBOX.EXE
2015-01-11 18:47 - 2015-01-11 18:47 - 0000000 _____ () C:\Users\kuba\AppData\Local\{62A021F7-1867-4402-AA4D-4A39B37B672B}
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\ProgramData\Guitar
2013-01-08 08:09 - 2013-01-08 08:09 - 0000268 ___RH () C:\ProgramData\Guitars
2013-01-08 08:08 - 2013-01-08 08:08 - 0000268 ___RH () C:\ProgramData\HAL
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Hybrid Morph
2013-01-08 08:09 - 2013-01-08 08:09 - 0000012 ___RH () C:\ProgramData\Icons
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Image Manipulation
2013-01-08 08:08 - 2013-01-08 08:08 - 0000012 ___RH () C:\ProgramData\Limiter
2013-01-08 08:08 - 2013-01-08 08:08 - 0000020 ____H () C:\ProgramData\PKP_DLeo.DAT
2013-01-08 08:09 - 2013-02-15 06:20 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT
2013-01-08 08:08 - 2013-12-13 12:38 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT
2013-01-08 08:08 - 2013-12-13 12:41 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT
Some files in TEMP:
====================
C:\Users\kuba\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-03-17 12:12
==================== End of FRST.txt ============================
- Přílohy
-
- Addition.rar
- (12.7 KiB) Staženo 58 x
Přispějete na provoz fóra?