Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

zamrzající prohlížeč internetu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

zamrzající prohlížeč internetu

#1 Příspěvek od Luvr »

Dobrý den,potřeboval bych pomoct,dost často se mi stává že mi zamrzne prohlížeč jakoby stále načítá stránky,pomůže až restart PC jelikož i když schodím prohlížeč a skusím zpustit znovu problém se opakuje ,a pokud v té chvéli pustím i jiný prohlížeč i tam to načítá.Používám koupený Norton tak nevím jestli tam je nějaká potvůrka jestli to způsobuje,nebo jestli to je problém počítače.
Předem hlásím že jsem laik

Mohl by mi prosím někdo pomoct ,předem děkuji

oprava zamrznutí cca za 3 min přestane ale je to hrozný
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#2 Příspěvek od Rudy »

Zdravím!
Zkuste startmenu>přík. řádek>(napsat) cmd>Enter. Do otevřeného okna napište:
Odentrujte a nechte chvíli běžet. Odezva by měla být rovnoměrná a neměla by být vyšší, než 50ms.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#3 Příspěvek od Luvr »

to není jen ten seznam ale všechno co mám v tu chvíli otevřené okna zůstávají prázdná a jen se točí načítání přikládám log doufám že sem to udělal dobře


Logfile of random's system information tool 1.08 (written by random/random)
Run by Luvr at 2013-02-22 19:25:12
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 128 GB (27%) free of 477 GB
Total RAM: 8099 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:25:16, on 22.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Luvr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentControl Toolbar - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTo0.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Norton Family BHO - {B8E07826-0971-4f16-B133-047B88034E89} - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: uTorrentControl - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTo0.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O3 - Toolbar: uTorrentControl Toolbar - {e9df9360-97f8-4690-afe6-996c80790da4} - C:\Program Files (x86)\uTorrentControl\prxtbuTo0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Praetorian] C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'Default user')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Management (MCLIENT) - Symantec Corporation - C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Family (NSM) - Symantec Corporation - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14669 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {2E611E8D-681D-4C84-BB19-8BF694D66294}
C:\Windows\System32\spoolsv.exe
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {415A9CB6-C1C9-4DAC-B3A0-A56AA671396E}
"C:\Core Temp\PCMeter\PCMeterV0.3.exe"
C:\Windows\System32\alg.exe
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /s "MCLIENT" /m "C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /s "NSM" /m "C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /c /a /s UserSession2
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\vssvc.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Microsoft IntelliType Pro\itype.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
"C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe" -startup
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
C:\Windows\splwow64.exe 12288
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:4616 CREDAT:145409
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE"
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:4616 CREDAT:79877
"C:\totalcmd\TOTALCMD.EXE"
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:4616 CREDAT:79918
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe28_ Global\UsGthrCtrlFltPipeMssGthrPipe28 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\1\1\RSITx64.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000UA.job
C:\Windows\tasks\Registry Winner Schedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-27 545264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-27 193520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL [2012-06-21 210400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-02-01 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8E07826-0971-4f16-B133-047B88034E89}]
Norton Family BHO - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll [2013-02-11 509776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-02-01 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e9df9360-97f8-4690-afe6-996c80790da4}]
uTorrentControl Toolbar - C:\Program Files (x86)\uTorrentControl\prxtbuTo0.dll [2012-11-06 183112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]
{e9df9360-97f8-4690-afe6-996c80790da4} - uTorrentControl Toolbar - C:\Program Files (x86)\uTorrentControl\prxtbuTo0.dll [2012-11-06 183112]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-19 11613288]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"itype"=c:\Program Files\Microsoft IntelliType Pro\itype.exe [2010-07-21 2306448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2011-03-14 2779024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Praetorian"=C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe []
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-12-09 969104]
"MobileDocuments"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe []
"Google Update"=C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-27 116648]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2012-12-20 1476104]
"KiesAirMessage"=C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [2012-12-18 578560]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe Minimum []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2012-12-20 310280]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-12-12 152544]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-02-02 642656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-02-22 19:19:38 ----D---- C:\rsit
2013-02-22 19:19:38 ----D---- C:\Program Files\trend micro
2013-02-22 05:17:42 ----A---- C:\Windows\KMSEmulator.exe
2013-02-21 16:31:41 ----A---- C:\Windows\system32\taskhost.exe
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-02-20 23:07:40 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\nlasvc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-02-20 23:07:39 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\nlaapi.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprt.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpudd.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpcorets.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\aaclient.dll
2013-02-20 23:07:37 ----A---- C:\Windows\system32\mstscax.dll
2013-02-20 23:04:55 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-02-20 23:04:55 ----A---- C:\Windows\system32\schannel.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\lsasrv.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-02-20 23:03:40 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\rndismpx.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-02-20 23:01:21 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-02-20 23:01:21 ----A---- C:\Windows\system32\qdvd.dll
2013-02-20 22:25:24 ----D---- C:\Program Files (x86)\Registry Winner
2013-02-20 16:14:16 ----D---- C:\Windows\system32\SPReview
2013-02-20 16:12:42 ----D---- C:\Windows\system32\EventProviders
2013-02-20 16:00:57 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----D---- C:\Program Files (x86)\ASUS
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2013-02-20 15:59:31 ----D---- C:\Users\Luvr\AppData\Roaming\InstallShield
2013-02-20 15:59:08 ----D---- C:\Asus
2013-02-19 19:46:09 ----D---- C:\Utorrent
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieui.dll
2013-02-14 06:23:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\url.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\url.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\wininet.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\vbscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\iertutil.dll
2013-02-14 06:23:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\mshtml.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\ieframe.dll
2013-02-14 06:11:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-02-14 06:11:34 ----A---- C:\Windows\system32\win32k.sys
2013-02-14 06:11:31 ----A---- C:\Windows\system32\winsrv.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\user.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\netio.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-10 20:19:01 ----D---- C:\ProgramData\CanonIJ
2013-02-10 20:14:37 ----HD---- C:\ProgramData\CanonIJScan
2013-02-10 20:07:55 ----D---- C:\Číra
2013-02-09 17:58:33 ----D---- C:\Users\Luvr\AppData\Roaming\GameRanger
2013-02-09 14:59:08 ----D---- C:\GOG Games
2013-02-07 21:26:22 ----D---- C:\ProgramData\ATI
2013-02-07 21:25:49 ----D---- C:\Program Files (x86)\AMD AVT
2013-02-07 21:25:41 ----D---- C:\Program Files (x86)\AMD APP
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\atimpc64.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\amdpcom64.dll
2013-02-02 22:00:42 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2013-02-02 22:00:40 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2013-02-02 22:00:38 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2013-02-02 22:00:36 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2013-02-02 22:00:34 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2013-02-02 22:00:32 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2013-02-02 21:58:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-02-02 21:38:46 ----A---- C:\Windows\system32\atio6axx.dll
2013-02-02 21:34:26 ----A---- C:\Windows\system32\atiapfxx.exe
2013-02-02 21:31:58 ----A---- C:\Windows\system32\coinst_12.10.17.dll
2013-02-02 21:31:52 ----A---- C:\Windows\system32\aticalrt64.dll
2013-02-02 21:31:50 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-02-02 21:31:44 ----A---- C:\Windows\system32\aticalcl64.dll
2013-02-02 21:31:42 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-02-02 21:31:32 ----A---- C:\Windows\system32\aticaldd64.dll
2013-02-02 21:27:04 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-02-02 21:21:00 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-02-02 21:10:14 ----A---- C:\Windows\system32\atidemgy.dll
2013-02-02 21:09:58 ----A---- C:\Windows\system32\atieclxx.exe
2013-02-02 21:09:08 ----A---- C:\Windows\system32\atiesrxx.exe
2013-02-02 21:07:42 ----A---- C:\Windows\system32\atitmm64.dll
2013-02-02 21:07:28 ----A---- C:\Windows\system32\atimuixx.dll
2013-02-02 21:07:22 ----A---- C:\Windows\system32\atiedu64.dll
2013-02-02 21:07:16 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-02-02 20:40:50 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-02-02 20:40:36 ----A---- C:\Windows\system32\atig6pxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\system32\atiglpxx.dll
2013-02-02 20:40:28 ----A---- C:\Windows\system32\atig6txx.dll
2013-02-02 20:40:20 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-02-02 20:40:18 ----A---- C:\Windows\system32\amdave64.dll
2013-02-02 20:40:12 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2013-02-02 20:40:10 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-02-02 20:40:00 ----A---- C:\Windows\system32\atisamu64.dll
2013-02-02 20:39:54 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2013-02-02 20:36:28 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-02-02 15:44:46 ----A---- C:\Windows\system32\clinfo.exe
2013-02-02 15:44:28 ----A---- C:\Windows\system32\OpenVideo64.dll
2013-02-02 15:44:24 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2013-02-02 15:44:20 ----A---- C:\Windows\system32\OVDecode64.dll
2013-02-02 15:44:16 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2013-02-02 15:44:08 ----A---- C:\Windows\system32\amdocl64.dll
2013-02-02 15:42:14 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2013-02-02 15:40:30 ----A---- C:\Windows\system32\OpenCL.dll
2013-02-02 15:40:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-02-02 15:34:26 ----A---- C:\Windows\system32\amdsc64.dll
2013-02-02 15:34:22 ----A---- C:\Windows\SYSWOW64\amdsc.dll
2013-02-01 23:20:52 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\java.exe
2013-01-23 23:06:55 ----D---- C:\Program Files (x86)\OSCAR Editor X7
2013-01-23 23:05:52 ----D---- C:\Program Files (x86)\OscarEditor
2013-01-23 23:03:37 ----D---- C:\Program Files (x86)\OscarX7Editor5Mode
2013-01-23 23:03:05 ----D---- C:\Program Files (x86)\5 mode Oscar
2013-01-23 22:06:57 ----D---- C:\myš

======List of files/folders modified in the last 1 months======

2013-02-22 19:22:27 ----D---- C:\Users\Luvr\AppData\Roaming\uTorrent
2013-02-22 19:19:38 ----RD---- C:\Program Files
2013-02-22 19:19:34 ----D---- C:\Windows\Temp
2013-02-22 19:18:50 ----D---- C:\1
2013-02-22 18:39:52 ----D---- C:\Windows\Microsoft.NET
2013-02-22 18:39:35 ----RSD---- C:\Windows\assembly
2013-02-22 17:23:15 ----SHD---- C:\System Volume Information
2013-02-22 17:22:02 ----D---- C:\Windows\system32\Tasks
2013-02-22 17:21:59 ----D---- C:\Windows\Tasks
2013-02-22 17:21:39 ----D---- C:\Windows
2013-02-22 17:17:35 ----D---- C:\Windows\system32\config
2013-02-21 21:43:17 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-02-21 21:05:06 ----SHD---- C:\Windows\Installer
2013-02-21 21:05:04 ----SHD---- C:\Config.Msi
2013-02-21 21:04:55 ----D---- C:\ProgramData\Microsoft Help
2013-02-21 20:57:46 ----D---- C:\Windows\winsxs
2013-02-21 20:57:37 ----D---- C:\Windows\system32\drivers\NSMx64
2013-02-21 20:51:47 ----D---- C:\Windows\System32
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot2
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot
2013-02-21 06:15:40 ----D---- C:\Windows\inf
2013-02-21 06:15:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\migration
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\SysWOW64
2013-02-20 23:11:40 ----D---- C:\Windows\system32\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\system32\migration
2013-02-20 23:11:40 ----D---- C:\Windows\system32\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers
2013-02-20 23:11:40 ----D---- C:\Windows\system32\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\PolicyDefinitions
2013-02-20 23:11:38 ----D---- C:\Windows\system32\DriverStore
2013-02-20 22:59:00 ----D---- C:\Torrenty
2013-02-20 22:49:43 ----D---- C:\Users\Luvr\AppData\Roaming\LangSoft
2013-02-20 22:49:43 ----D---- C:\TRANSLAT
2013-02-20 22:25:24 ----RD---- C:\Program Files (x86)
2013-02-20 22:23:22 ----RD---- C:\Stahování
2013-02-20 18:35:31 ----D---- C:\Users\Luvr\AppData\Roaming\Mumble
2013-02-20 16:42:49 ----SHD---- C:\Boot
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Mail
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Media Player
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Sidebar
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Mail
2013-02-20 16:35:22 ----D---- C:\Program Files\Windows Portable Devices
2013-02-20 16:35:22 ----D---- C:\Program Files\DVD Maker
2013-02-20 16:35:17 ----D---- C:\Program Files\Windows Media Player
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Photo Viewer
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Journal
2013-02-20 16:35:14 ----D---- C:\Program Files\Common Files\System
2013-02-20 16:35:12 ----D---- C:\Windows\servicing
2013-02-20 16:35:12 ----D---- C:\Program Files\Windows Defender
2013-02-20 16:35:11 ----D---- C:\Windows\ehome
2013-02-20 16:34:54 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\oobe
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\da-DK
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\Setup
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\cs
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2013-02-20 16:34:48 ----D---- C:\Windows\SYSWOW64\manifeststore
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\sppui
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\es-ES
2013-02-20 16:34:45 ----D---- C:\Windows\SYSWOW64\migwiz
2013-02-20 16:34:44 ----D---- C:\Windows\SYSWOW64\Dism
2013-02-20 16:33:40 ----D---- C:\Windows\system32\da-DK
2013-02-20 16:33:39 ----D---- C:\Windows\system32\oobe
2013-02-20 16:33:36 ----D---- C:\Windows\system32\Setup
2013-02-20 16:33:36 ----D---- C:\Windows\system32\cs
2013-02-20 16:33:36 ----D---- C:\Windows\system32\AdvancedInstallers
2013-02-20 16:33:27 ----D---- C:\Windows\system32\manifeststore
2013-02-20 16:33:26 ----D---- C:\Windows\system32\sppui
2013-02-20 16:33:26 ----D---- C:\Windows\system32\es-ES
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\UMDF
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-02-20 16:33:18 ----D---- C:\Windows\system32\migwiz
2013-02-20 16:33:18 ----D---- C:\Windows\system32\Dism
2013-02-20 16:30:53 ----RSD---- C:\Windows\Fonts
2013-02-20 16:30:46 ----D---- C:\Windows\AppPatch
2013-02-20 16:29:24 ----D---- C:\Windows\system32\Boot
2013-02-20 16:22:47 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2013-02-20 16:22:46 ----A---- C:\Windows\system32\msclmd.dll
2013-02-20 16:12:18 ----D---- C:\Program Files (x86)\yBook
2013-02-20 16:00:50 ----D---- C:\Windows\SYSWOW64\drivers
2013-02-20 15:59:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-02-20 15:57:05 ----D---- C:\Windows\Prefetch
2013-02-19 16:26:21 ----D---- C:\ProgramData\CanonIJPLM
2013-02-14 06:53:57 ----D---- C:\Program Files (x86)\Internet Explorer
2013-02-14 06:53:56 ----D---- C:\Program Files\Internet Explorer
2013-02-14 06:46:35 ----A---- C:\Windows\system32\MRT.exe
2013-02-10 20:19:01 ----HD---- C:\ProgramData
2013-02-10 20:14:37 ----D---- C:\Users\Luvr\AppData\Roaming\Canon
2013-02-08 22:01:54 ----D---- C:\Users\Luvr\AppData\Roaming\XBMC
2013-02-08 21:21:29 ----D---- C:\Games
2013-02-08 14:03:24 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-02-08 11:15:24 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-02-07 21:25:50 ----D---- C:\ProgramData\AMD
2013-02-07 21:25:13 ----D---- C:\Program Files\ATI Technologies
2013-02-07 21:18:12 ----D---- C:\AMD
2013-02-07 21:10:30 ----D---- C:\Windows\system32\drivers\N360x64
2013-02-05 13:06:09 ----D---- C:\Users\Luvr\AppData\Roaming\.minecraft
2013-02-02 22:00:42 ----A---- C:\Windows\system32\atiuxp64.dll
2013-02-02 22:00:40 ----A---- C:\Windows\system32\atiu9p64.dll
2013-02-02 22:00:38 ----A---- C:\Windows\system32\aticfx64.dll
2013-02-02 22:00:36 ----A---- C:\Windows\system32\atidxx64.dll
2013-02-02 22:00:30 ----A---- C:\Windows\system32\atiumd6a.dll
2013-02-02 22:00:28 ----A---- C:\Windows\system32\atiumd64.dll
2013-02-02 20:41:02 ----A---- C:\Windows\system32\atiadlxx.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-02-01 05:28:37 ----D---- C:\Program Files (x86)\uTorrentControl

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMDS64.SYS [2011-08-15 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMEFA64.SYS [2012-05-22 1129120]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20130208.001\BHDrvx64.sys [2013-01-16 1388120]
R1 ccSet_MCLIENT;Norton Management Settings Manager; C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys [2012-10-04 168096]
R1 ccSet_N360;Norton 360 Settings Manager; C:\Windows\system32\drivers\N360x64\0604010.00E\ccSetx64.sys [2012-06-07 167072]
R1 ccSet_NSM;Norton Family Settings Manager; C:\Windows\system32\drivers\NSMx64\0206000.03D\ccSetx64.sys [2012-08-07 168096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-07 279616]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2012-12-29 484512]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\IPSDefs\20130221.001\IDSvia64.sys [2012-09-06 513184]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\0604010.00E\SRTSPX64.SYS [2012-07-06 37536]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2011-11-23 43640]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\0604010.00E\Ironx64.SYS [2011-11-16 190072]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\N360x64\0604010.00E\SYMNETS.SYS [2011-11-16 405624]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-02-02 11612672]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-02-02 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-01-15 96768]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-01-19 138912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-23 2565736]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.003\ENG64.SYS [2013-01-19 126192]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.003\EX64.SYS [2013-01-19 2087664]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\N360x64\0604010.00E\SRTSP64.SYS [2012-07-06 737952]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2012-11-12 177312]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Luvr\AppData\Local\Temp\tmpEBA5.tmp []
S3 ALSysIO;ALSysIO; \??\C:\Users\Luvr\AppData\Local\Temp\ALSysIO64.sys []
S3 atillk64;atillk64; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\AtiTool\atillk64.sys [2006-07-19 14608]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\GPCIDrv64.sys [2010-02-04 14376]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 SYMRDR_{78CA3BF0-9C3B-40e1-B46D-38C877EF059A};Symantec Redirector - Norton Family; C:\Windows\System32\Drivers\NSMx64\0206000.03D\SymRdrS.SYS [2012-07-21 243872]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2009-07-14 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-02-02 240640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
R2 MCLIENT;Norton Management; C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe [2012-10-11 143928]
R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe [2012-06-16 138272]
R2 NSM;Norton Family; C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe [2012-08-19 143928]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-12 76888]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-12-12 641504]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-08 251248]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-11-07 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-16 129976]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-07 1255736]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#4 Příspěvek od Rudy »

Luvr píše:to není jen ten seznam
Nejde o seznam, místo něho klidně dejte jiný url. Jde o ten ping a hlavně o to, zda nevypadávají pakety. Údaj je důležitý, abychom věděli, zda je to problém váš, nebo providera.

Než budeme váš PC řešit, odinstalujte cracklé Office. Toto fórum nepodporuje softwarové pirátství.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#5 Příspěvek od Luvr »

píše to

odpověď od 77.75.76.3: bajty=32 čas=15ms TTL=250

ty ms jsou 12-15 více ne
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#6 Příspěvek od Rudy »

To je OK. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://stahnu.cz/tag/adw-cleaner-free-download
Uložte na plochu
Ukončete všechny programy
Klikněte na Search
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#7 Příspěvek od Luvr »

# AdwCleaner v2.112 - Logfile created 02/22/2013 at 20:16:32
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Luvr - LUVR-PC
# Boot Mode : Normal
# Running from : C:\1\1\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Found : C:\Users\Luvr\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Found : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\searchplugins\SweetIm.xml
Folder Found : C:\Program Files (x86)\Babylon
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Folder Found : C:\Program Files (x86)\uTorrentBar
Folder Found : C:\Program Files (x86)\uTorrentControl
Folder Found : C:\Program Files\Babylon
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\ProgramData\InstallMate
Folder Found : C:\ProgramData\Premium
Folder Found : C:\Users\Luvr\AppData\Local\Conduit
Folder Found : C:\Users\Luvr\AppData\LocalLow\Conduit
Folder Found : C:\Users\Luvr\AppData\LocalLow\PriceGong
Folder Found : C:\Users\Luvr\AppData\LocalLow\uTorrentBar
Folder Found : C:\Users\Luvr\AppData\LocalLow\uTorrentControl
Folder Found : C:\Users\Luvr\AppData\Roaming\Babylon
Folder Found : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\SweetPacksToolbarData
Folder Found : C:\Users\Luvr\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AppDataLow\Software\uTorrentBar
Key Found : HKCU\Software\AppDataLow\Software\uTorrentControl
Key Found : HKCU\Software\AppDataLow\Toolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Cr_Installer
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Found : HKLM\Software\uTorrentBar
Key Found : HKLM\Software\uTorrentControl
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{316891B5-8DC9-4643-87AB-425BF10ACDC9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A43517D-50B4-480A-8D6E-1DB6701442DB}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C3B2074-D571-4702-9662-7B56D63210A2}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A07A9ADB-1D5B-47E2-9B5D-2CE4D02DFBF1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar Toolbar
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl Toolbar
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKU\S-1-5-21-91065700-3525468454-4147694582-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v12.0 (cs)

File : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\prefs.js

Found : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Found : user_pref("browser.newtab.url", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=NT_ss&mntr[...]
Found : user_pref("browser.search.defaultenginename", "Search the web (Babylon)");
Found : user_pref("browser.search.defaulturl", "hxxp://search.babylon.com/web/{searchTerms}?babsrc=browserse[...]
Found : user_pref("browser.search.order.1", "Search the web (Babylon)");
Found : user_pref("browser.search.selectedEngine", "Search the web (Babylon)");
Found : user_pref("browser.startup.homepage", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_s[...]
Found : user_pref("extensions.BabylonToolbar_i.newTab", true);
Found : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=114435&tt=3712_[...]
Found : user_pref("keyword.URL", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=KW_ss&mntrId=88a5[...]
Found : user_pref("sweetim.toolbar.RevertDialog.enable", "false");
Found : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
Found : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
Found : user_pref("sweetim.toolbar.Visibility.enable", "true");
Found : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
Found : user_pref("sweetim.toolbar.cargo", "3.1010000.10004");
Found : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
Found : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
Found : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-h[...]
Found : user_pref("sweetim.toolbar.dialogs.0.height", "335");
Found : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
Found : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
Found : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?la[...]
Found : user_pref("sweetim.toolbar.dialogs.0.width", "761");
Found : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-h[...]
Found : user_pref("sweetim.toolbar.dialogs.1.height", "300");
Found : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
Found : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
Found : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"[...]
Found : user_pref("sweetim.toolbar.dialogs.1.width", "500");
Found : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
Found : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handl[...]
Found : user_pref("sweetim.toolbar.dialogs.2.height", "150");
Found : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
Found : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
Found : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
Found : user_pref("sweetim.toolbar.dialogs.2.width", "530");
Found : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.goog[...]
Found : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Found : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");
Found : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Found : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Found : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Found : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Found : user_pref("sweetim.toolbar.mode.debug", "false");
Found : user_pref("sweetim.toolbar.newtab.created", "false");
Found : user_pref("sweetim.toolbar.newtab.enable", "true");
Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Found : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolba ... on=$ITEM_V[...]
Found : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
Found : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
Found : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Found : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
Found : user_pref("sweetim.toolbar.scripts.0.enable", "false");
Found : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
Found : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
Found : user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "false");
Found : user_pref("sweetim.toolbar.scripts.1.callback", "");
Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..[...]
Found : user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "");
Found : user_pref("sweetim.toolbar.scripts.1.elementid", "id_predict_include_script");
Found : user_pref("sweetim.toolbar.scripts.1.enable", "false");
Found : user_pref("sweetim.toolbar.scripts.1.id", "id_script_prad");
Found : user_pref("sweetim.toolbar.scripts.1.url", "hxxp://cdn1.predictad.com/scripts/publishers/sweetim/pre[...]
Found : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "true");
Found : user_pref("sweetim.toolbar.scripts.2.callback", "simVerification");
Found : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Found : user_pref("sweetim.toolbar.scripts.2.elementid", "id_script_sim_fb");
Found : user_pref("sweetim.toolbar.scripts.2.enable", "false");
Found : user_pref("sweetim.toolbar.scripts.2.id", "id_script_fb_hxxpS");
Found : user_pref("sweetim.toolbar.scripts.2.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
Found : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Found : user_pref("sweetim.toolbar.search.history.capacity", "10");
Found : user_pref("sweetim.toolbar.searchguard.enable", "false");
Found : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
Found : user_pref("sweetim.toolbar.simapp_id", "{D75C0BD0-E63A-11E1-AD17-14DAE92220BF}");
Found : user_pref("sweetim.toolbar.version", "1.9.0.0");

File : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Luvr\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.8] : homepage = "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf00000000000014dae92220bf",
Found [l.12] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf00000000000014dae92220bf" ]
Found [l.44] : icon_url = "hxxp://www.babylon.com/favicon.ico",
Found [l.47] : keyword = "babylon.com",
Found [l.50] : search_url = "hxxp://search.babylon.com/?q={searchTerms}&affID=114435&tt=3712_7&babsrc=SP_ss&mntrId=88a5cedf00000000000014dae92220bf",
Found [l.1563] : homepage = "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf00000000000014dae92220bf",
Found [l.1874] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf00000000000014dae92220bf" ]

*************************

AdwCleaner[R1].txt - [15491 octets] - [22/02/2013 20:16:32]

########## EOF - C:\AdwCleaner[R1].txt - [15552 octets] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#8 Příspěvek od Rudy »

Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#9 Příspěvek od Luvr »

# AdwCleaner v2.112 - Logfile created 02/22/2013 at 21:25:53
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Luvr - LUVR-PC
# Boot Mode : Normal
# Running from : C:\1\1\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Users\Luvr\AppData\Local\Temp\Zynga
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Deleted : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\searchplugins\SweetIm.xml
Folder Deleted : C:\Program Files (x86)\Babylon
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Folder Deleted : C:\Program Files (x86)\uTorrentBar
Folder Deleted : C:\Program Files (x86)\uTorrentControl
Folder Deleted : C:\Program Files\Babylon
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\Users\Luvr\AppData\Local\Conduit
Folder Deleted : C:\Users\Luvr\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Luvr\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Luvr\AppData\LocalLow\uTorrentBar
Folder Deleted : C:\Users\Luvr\AppData\LocalLow\uTorrentControl
Folder Deleted : C:\Users\Luvr\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\SweetPacksToolbarData
Folder Deleted : C:\Users\Luvr\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Deleted : HKLM\Software\uTorrentBar
Key Deleted : HKLM\Software\uTorrentControl
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5716B037-6714-4930-8DF2-BFCDFB18A78A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A97B89CD-B65C-49DD-AF46-2B772C627456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{316891B5-8DC9-4643-87AB-425BF10ACDC9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3A43517D-50B4-480A-8D6E-1DB6701442DB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C3B2074-D571-4702-9662-7B56D63210A2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A07A9ADB-1D5B-47E2-9B5D-2CE4D02DFBF1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E9DF9360-97F8-4690-AFE6-996C80790DA4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{E9DF9360-97F8-4690-AFE6-996C80790DA4}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v12.0 (cs)

File : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\drelqos4.default\prefs.js

Deleted : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Deleted : user_pref("browser.newtab.url", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=NT_ss&mntr[...]
Deleted : user_pref("browser.search.defaultenginename", "Search the web (Babylon)");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.babylon.com/web/{searchTerms}?babsrc=browserse[...]
Deleted : user_pref("browser.search.order.1", "Search the web (Babylon)");
Deleted : user_pref("browser.search.selectedEngine", "Search the web (Babylon)");
Deleted : user_pref("browser.startup.homepage", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_s[...]
Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);
Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=114435&tt=3712_[...]
Deleted : user_pref("keyword.URL", "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=KW_ss&mntrId=88a5[...]
Deleted : user_pref("sweetim.toolbar.RevertDialog.enable", "false");
Deleted : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
Deleted : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
Deleted : user_pref("sweetim.toolbar.Visibility.enable", "true");
Deleted : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
Deleted : user_pref("sweetim.toolbar.cargo", "3.1010000.10004");
Deleted : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-h[...]
Deleted : user_pref("sweetim.toolbar.dialogs.0.height", "335");
Deleted : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
Deleted : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?la[...]
Deleted : user_pref("sweetim.toolbar.dialogs.0.width", "761");
Deleted : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-h[...]
Deleted : user_pref("sweetim.toolbar.dialogs.1.height", "300");
Deleted : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"[...]
Deleted : user_pref("sweetim.toolbar.dialogs.1.width", "500");
Deleted : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
Deleted : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handl[...]
Deleted : user_pref("sweetim.toolbar.dialogs.2.height", "150");
Deleted : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
Deleted : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
Deleted : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
Deleted : user_pref("sweetim.toolbar.dialogs.2.width", "530");
Deleted : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.goog[...]
Deleted : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Deleted : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");
Deleted : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Deleted : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Deleted : user_pref("sweetim.toolbar.mode.debug", "false");
Deleted : user_pref("sweetim.toolbar.newtab.created", "false");
Deleted : user_pref("sweetim.toolbar.newtab.enable", "true");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Deleted : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolba ... on=$ITEM_V[...]
Deleted : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
Deleted : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
Deleted : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Deleted : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
Deleted : user_pref("sweetim.toolbar.scripts.0.enable", "false");
Deleted : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
Deleted : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
Deleted : user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "false");
Deleted : user_pref("sweetim.toolbar.scripts.1.callback", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..[...]
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.elementid", "id_predict_include_script");
Deleted : user_pref("sweetim.toolbar.scripts.1.enable", "false");
Deleted : user_pref("sweetim.toolbar.scripts.1.id", "id_script_prad");
Deleted : user_pref("sweetim.toolbar.scripts.1.url", "hxxp://cdn1.predictad.com/scripts/publishers/sweetim/pre[...]
Deleted : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "true");
Deleted : user_pref("sweetim.toolbar.scripts.2.callback", "simVerification");
Deleted : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Deleted : user_pref("sweetim.toolbar.scripts.2.elementid", "id_script_sim_fb");
Deleted : user_pref("sweetim.toolbar.scripts.2.enable", "false");
Deleted : user_pref("sweetim.toolbar.scripts.2.id", "id_script_fb_hxxpS");
Deleted : user_pref("sweetim.toolbar.scripts.2.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
Deleted : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Deleted : user_pref("sweetim.toolbar.search.history.capacity", "10");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "false");
Deleted : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
Deleted : user_pref("sweetim.toolbar.simapp_id", "{D75C0BD0-E63A-11E1-AD17-14DAE92220BF}");
Deleted : user_pref("sweetim.toolbar.version", "1.9.0.0");

File : C:\Users\Luvr\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.57

File : C:\Users\Luvr\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.8] : homepage = "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf000[...]
Deleted [l.12] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=H[...]
Deleted [l.44] : icon_url = "hxxp://www.babylon.com/favicon.ico",
Deleted [l.47] : keyword = "babylon.com",
Deleted [l.50] : search_url = "hxxp://search.babylon.com/?q={searchTerms}&affID=114435&tt=3712_7&babsrc=SP_ss&[...]
Deleted [l.1563] : homepage = "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_ss&mntrId=88a5cedf000000[...]
Deleted [l.1874] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=114435&tt=3712_7&babsrc=HP_s[...]

*************************

AdwCleaner[R1].txt - [15616 octets] - [22/02/2013 20:16:32]
AdwCleaner[S1].txt - [15602 octets] - [22/02/2013 21:25:53]

########## EOF - C:\AdwCleaner[S1].txt - [15663 octets] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#10 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#11 Příspěvek od Luvr »

Logfile of random's system information tool 1.08 (written by random/random)
Run by Luvr at 2013-02-23 13:28:54
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 128 GB (27%) free of 477 GB
Total RAM: 8099 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:28:55, on 23.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Luvr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Norton Family BHO - {B8E07826-0971-4f16-B133-047B88034E89} - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Praetorian] C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'Default user')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Management (MCLIENT) - Symantec Corporation - C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Family (NSM) - Symantec Corporation - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13911 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {0B960AA0-F57D-4FC4-8FF9-798B4305AF14}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\alg.exe
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /s "MCLIENT" /m "C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\diMaster.dll" /prefetch:1
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {C2AC7E00-4961-4357-88AF-53EF2B300F3B}
"C:\Core Temp\PCMeter\PCMeterV0.3.exe"
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /s "NSM" /m "C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\diMaster.dll" /prefetch:1
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\vssvc.exe
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /c /a /s UserSession2
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Microsoft IntelliType Pro\itype.exe"
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /c /a /s UserSession
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
"C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe" -startup
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\splwow64.exe 12288
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\totalcmd\TOTALCMD.EXE"
"C:\1\1\RSITx64.exe"
"C:\1\1\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000UA.job
C:\Windows\tasks\Registry Winner Schedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-27 545264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-27 193520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL [2012-06-21 210400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-02-01 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8E07826-0971-4f16-B133-047B88034E89}]
Norton Family BHO - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll [2013-02-11 509776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-02-01 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-19 11613288]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"itype"=c:\Program Files\Microsoft IntelliType Pro\itype.exe [2010-07-21 2306448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2011-03-14 2779024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Praetorian"=C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe []
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-12-09 969104]
"MobileDocuments"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe []
"Google Update"=C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-27 116648]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2012-12-20 1476104]
"KiesAirMessage"=C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [2012-12-18 578560]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe Minimum []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2012-12-20 310280]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-12-12 152544]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-02-02 642656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-02-22 21:25:53 ----A---- C:\AdwCleaner[S1].txt
2013-02-22 20:16:32 ----A---- C:\AdwCleaner[R1].txt
2013-02-22 19:19:38 ----D---- C:\rsit
2013-02-22 19:19:38 ----D---- C:\Program Files\trend micro
2013-02-22 05:17:42 ----A---- C:\Windows\KMSEmulator.exe
2013-02-21 16:31:41 ----A---- C:\Windows\system32\taskhost.exe
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-02-20 23:07:40 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\nlasvc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-02-20 23:07:39 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\nlaapi.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprt.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpudd.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpcorets.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\aaclient.dll
2013-02-20 23:07:37 ----A---- C:\Windows\system32\mstscax.dll
2013-02-20 23:04:55 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-02-20 23:04:55 ----A---- C:\Windows\system32\schannel.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\lsasrv.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-02-20 23:03:40 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\rndismpx.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-02-20 23:01:21 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-02-20 23:01:21 ----A---- C:\Windows\system32\qdvd.dll
2013-02-20 22:25:24 ----D---- C:\Program Files (x86)\Registry Winner
2013-02-20 16:14:16 ----D---- C:\Windows\system32\SPReview
2013-02-20 16:12:42 ----D---- C:\Windows\system32\EventProviders
2013-02-20 16:00:57 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----D---- C:\Program Files (x86)\ASUS
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2013-02-20 15:59:31 ----D---- C:\Users\Luvr\AppData\Roaming\InstallShield
2013-02-20 15:59:08 ----D---- C:\Asus
2013-02-19 19:46:09 ----D---- C:\Utorrent
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieui.dll
2013-02-14 06:23:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\url.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\url.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\wininet.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\vbscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\iertutil.dll
2013-02-14 06:23:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\mshtml.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\ieframe.dll
2013-02-14 06:11:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-02-14 06:11:34 ----A---- C:\Windows\system32\win32k.sys
2013-02-14 06:11:31 ----A---- C:\Windows\system32\winsrv.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\user.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\netio.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-10 20:19:01 ----D---- C:\ProgramData\CanonIJ
2013-02-10 20:14:37 ----HD---- C:\ProgramData\CanonIJScan
2013-02-10 20:07:55 ----D---- C:\Číra
2013-02-09 17:58:33 ----D---- C:\Users\Luvr\AppData\Roaming\GameRanger
2013-02-09 14:59:08 ----D---- C:\GOG Games
2013-02-07 21:26:22 ----D---- C:\ProgramData\ATI
2013-02-07 21:25:49 ----D---- C:\Program Files (x86)\AMD AVT
2013-02-07 21:25:41 ----D---- C:\Program Files (x86)\AMD APP
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\atimpc64.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\amdpcom64.dll
2013-02-02 22:00:42 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2013-02-02 22:00:40 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2013-02-02 22:00:38 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2013-02-02 22:00:36 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2013-02-02 22:00:34 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2013-02-02 22:00:32 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2013-02-02 21:58:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-02-02 21:38:46 ----A---- C:\Windows\system32\atio6axx.dll
2013-02-02 21:34:26 ----A---- C:\Windows\system32\atiapfxx.exe
2013-02-02 21:31:58 ----A---- C:\Windows\system32\coinst_12.10.17.dll
2013-02-02 21:31:52 ----A---- C:\Windows\system32\aticalrt64.dll
2013-02-02 21:31:50 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-02-02 21:31:44 ----A---- C:\Windows\system32\aticalcl64.dll
2013-02-02 21:31:42 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-02-02 21:31:32 ----A---- C:\Windows\system32\aticaldd64.dll
2013-02-02 21:27:04 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-02-02 21:21:00 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-02-02 21:10:14 ----A---- C:\Windows\system32\atidemgy.dll
2013-02-02 21:09:58 ----A---- C:\Windows\system32\atieclxx.exe
2013-02-02 21:09:08 ----A---- C:\Windows\system32\atiesrxx.exe
2013-02-02 21:07:42 ----A---- C:\Windows\system32\atitmm64.dll
2013-02-02 21:07:28 ----A---- C:\Windows\system32\atimuixx.dll
2013-02-02 21:07:22 ----A---- C:\Windows\system32\atiedu64.dll
2013-02-02 21:07:16 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-02-02 20:40:50 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-02-02 20:40:36 ----A---- C:\Windows\system32\atig6pxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\system32\atiglpxx.dll
2013-02-02 20:40:28 ----A---- C:\Windows\system32\atig6txx.dll
2013-02-02 20:40:20 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-02-02 20:40:18 ----A---- C:\Windows\system32\amdave64.dll
2013-02-02 20:40:12 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2013-02-02 20:40:10 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-02-02 20:40:00 ----A---- C:\Windows\system32\atisamu64.dll
2013-02-02 20:39:54 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2013-02-02 20:36:28 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-02-02 15:44:46 ----A---- C:\Windows\system32\clinfo.exe
2013-02-02 15:44:28 ----A---- C:\Windows\system32\OpenVideo64.dll
2013-02-02 15:44:24 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2013-02-02 15:44:20 ----A---- C:\Windows\system32\OVDecode64.dll
2013-02-02 15:44:16 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2013-02-02 15:44:08 ----A---- C:\Windows\system32\amdocl64.dll
2013-02-02 15:42:14 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2013-02-02 15:40:30 ----A---- C:\Windows\system32\OpenCL.dll
2013-02-02 15:40:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-02-02 15:34:26 ----A---- C:\Windows\system32\amdsc64.dll
2013-02-02 15:34:22 ----A---- C:\Windows\SYSWOW64\amdsc.dll
2013-02-01 23:20:52 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\java.exe

======List of files/folders modified in the last 1 months======

2013-02-23 13:28:43 ----D---- C:\Users\Luvr\AppData\Roaming\uTorrent
2013-02-23 13:18:28 ----D---- C:\Windows\system32\config
2013-02-23 13:17:56 ----SHD---- C:\System Volume Information
2013-02-23 13:17:53 ----D---- C:\Windows\Temp
2013-02-23 13:17:22 ----SHD---- C:\Windows\Installer
2013-02-23 13:17:22 ----SHD---- C:\Config.Msi
2013-02-23 13:16:46 ----D---- C:\Windows\SysWOW64
2013-02-23 13:15:40 ----D---- C:\Windows\system32\Tasks
2013-02-23 13:15:36 ----D---- C:\Windows\Tasks
2013-02-23 13:14:52 ----D---- C:\Windows
2013-02-22 21:25:58 ----RD---- C:\Program Files (x86)
2013-02-22 21:25:58 ----RD---- C:\Program Files
2013-02-22 21:25:58 ----HD---- C:\ProgramData
2013-02-22 19:18:50 ----D---- C:\1
2013-02-22 18:39:52 ----D---- C:\Windows\Microsoft.NET
2013-02-22 18:39:35 ----RSD---- C:\Windows\assembly
2013-02-22 17:41:18 ----D---- C:\Program Files (x86)\OscarX7Editor5Mode
2013-02-21 21:43:17 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-02-21 21:04:55 ----D---- C:\ProgramData\Microsoft Help
2013-02-21 20:57:46 ----D---- C:\Windows\winsxs
2013-02-21 20:57:37 ----D---- C:\Windows\system32\drivers\NSMx64
2013-02-21 20:51:47 ----D---- C:\Windows\System32
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot2
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot
2013-02-21 06:15:40 ----D---- C:\Windows\inf
2013-02-21 06:15:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\migration
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\system32\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\system32\migration
2013-02-20 23:11:40 ----D---- C:\Windows\system32\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers
2013-02-20 23:11:40 ----D---- C:\Windows\system32\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\PolicyDefinitions
2013-02-20 23:11:38 ----D---- C:\Windows\system32\DriverStore
2013-02-20 22:59:00 ----D---- C:\Torrenty
2013-02-20 22:49:43 ----D---- C:\Users\Luvr\AppData\Roaming\LangSoft
2013-02-20 22:49:43 ----D---- C:\TRANSLAT
2013-02-20 22:23:22 ----RD---- C:\Stahování
2013-02-20 18:35:31 ----D---- C:\Users\Luvr\AppData\Roaming\Mumble
2013-02-20 16:42:49 ----SHD---- C:\Boot
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Mail
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Media Player
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Sidebar
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Mail
2013-02-20 16:35:22 ----D---- C:\Program Files\Windows Portable Devices
2013-02-20 16:35:22 ----D---- C:\Program Files\DVD Maker
2013-02-20 16:35:17 ----D---- C:\Program Files\Windows Media Player
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Photo Viewer
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Journal
2013-02-20 16:35:14 ----D---- C:\Program Files\Common Files\System
2013-02-20 16:35:12 ----D---- C:\Windows\servicing
2013-02-20 16:35:12 ----D---- C:\Program Files\Windows Defender
2013-02-20 16:35:11 ----D---- C:\Windows\ehome
2013-02-20 16:34:54 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\oobe
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\da-DK
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\Setup
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\cs
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2013-02-20 16:34:48 ----D---- C:\Windows\SYSWOW64\manifeststore
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\sppui
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\es-ES
2013-02-20 16:34:45 ----D---- C:\Windows\SYSWOW64\migwiz
2013-02-20 16:34:44 ----D---- C:\Windows\SYSWOW64\Dism
2013-02-20 16:33:40 ----D---- C:\Windows\system32\da-DK
2013-02-20 16:33:39 ----D---- C:\Windows\system32\oobe
2013-02-20 16:33:36 ----D---- C:\Windows\system32\Setup
2013-02-20 16:33:36 ----D---- C:\Windows\system32\cs
2013-02-20 16:33:36 ----D---- C:\Windows\system32\AdvancedInstallers
2013-02-20 16:33:27 ----D---- C:\Windows\system32\manifeststore
2013-02-20 16:33:26 ----D---- C:\Windows\system32\sppui
2013-02-20 16:33:26 ----D---- C:\Windows\system32\es-ES
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\UMDF
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-02-20 16:33:18 ----D---- C:\Windows\system32\migwiz
2013-02-20 16:33:18 ----D---- C:\Windows\system32\Dism
2013-02-20 16:30:53 ----RSD---- C:\Windows\Fonts
2013-02-20 16:30:46 ----D---- C:\Windows\AppPatch
2013-02-20 16:29:24 ----D---- C:\Windows\system32\Boot
2013-02-20 16:22:47 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2013-02-20 16:22:46 ----A---- C:\Windows\system32\msclmd.dll
2013-02-20 16:12:18 ----D---- C:\Program Files (x86)\yBook
2013-02-20 16:00:50 ----D---- C:\Windows\SYSWOW64\drivers
2013-02-20 15:59:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-02-20 15:57:05 ----D---- C:\Windows\Prefetch
2013-02-19 16:26:21 ----D---- C:\ProgramData\CanonIJPLM
2013-02-14 06:53:57 ----D---- C:\Program Files (x86)\Internet Explorer
2013-02-14 06:53:56 ----D---- C:\Program Files\Internet Explorer
2013-02-14 06:46:35 ----A---- C:\Windows\system32\MRT.exe
2013-02-10 20:14:37 ----D---- C:\Users\Luvr\AppData\Roaming\Canon
2013-02-08 22:01:54 ----D---- C:\Users\Luvr\AppData\Roaming\XBMC
2013-02-08 21:21:29 ----D---- C:\Games
2013-02-08 14:03:24 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-02-08 11:15:24 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-02-07 21:25:50 ----D---- C:\ProgramData\AMD
2013-02-07 21:25:13 ----D---- C:\Program Files\ATI Technologies
2013-02-07 21:18:12 ----D---- C:\AMD
2013-02-07 21:10:30 ----D---- C:\Windows\system32\drivers\N360x64
2013-02-06 21:03:17 ----D---- C:\myš
2013-02-05 13:06:09 ----D---- C:\Users\Luvr\AppData\Roaming\.minecraft
2013-02-02 22:00:42 ----A---- C:\Windows\system32\atiuxp64.dll
2013-02-02 22:00:40 ----A---- C:\Windows\system32\atiu9p64.dll
2013-02-02 22:00:38 ----A---- C:\Windows\system32\aticfx64.dll
2013-02-02 22:00:36 ----A---- C:\Windows\system32\atidxx64.dll
2013-02-02 22:00:30 ----A---- C:\Windows\system32\atiumd6a.dll
2013-02-02 22:00:28 ----A---- C:\Windows\system32\atiumd64.dll
2013-02-02 20:41:02 ----A---- C:\Windows\system32\atiadlxx.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\deployJava1.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMDS64.SYS [2011-08-15 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMEFA64.SYS [2012-05-22 1129120]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20130208.001\BHDrvx64.sys [2013-01-16 1388120]
R1 ccSet_MCLIENT;Norton Management Settings Manager; C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys [2012-10-04 168096]
R1 ccSet_N360;Norton 360 Settings Manager; C:\Windows\system32\drivers\N360x64\0604010.00E\ccSetx64.sys [2012-06-07 167072]
R1 ccSet_NSM;Norton Family Settings Manager; C:\Windows\system32\drivers\NSMx64\0206000.03D\ccSetx64.sys [2012-08-07 168096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-07 279616]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2012-12-29 484512]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\IPSDefs\20130221.001\IDSvia64.sys [2012-09-06 513184]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\0604010.00E\SRTSPX64.SYS [2012-07-06 37536]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2011-11-23 43640]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\0604010.00E\Ironx64.SYS [2011-11-16 190072]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\N360x64\0604010.00E\SYMNETS.SYS [2011-11-16 405624]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-02-02 11612672]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-02-02 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-01-15 96768]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-01-19 138912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-23 2565736]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.003\ENG64.SYS [2013-01-19 126192]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.003\EX64.SYS [2013-01-19 2087664]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\N360x64\0604010.00E\SRTSP64.SYS [2012-07-06 737952]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2012-11-12 177312]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Luvr\AppData\Local\Temp\tmp2367.tmp []
S3 ALSysIO;ALSysIO; \??\C:\Users\Luvr\AppData\Local\Temp\ALSysIO64.sys []
S3 atillk64;atillk64; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\AtiTool\atillk64.sys [2006-07-19 14608]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\GPCIDrv64.sys [2010-02-04 14376]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 SYMRDR_{78CA3BF0-9C3B-40e1-B46D-38C877EF059A};Symantec Redirector - Norton Family; C:\Windows\System32\Drivers\NSMx64\0206000.03D\SymRdrS.SYS [2012-07-21 243872]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2009-07-14 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-02-02 240640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
R2 MCLIENT;Norton Management; C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe [2012-10-11 143928]
R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe [2012-06-16 138272]
R2 NSM;Norton Family; C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe [2012-08-19 143928]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-12 76888]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-12-12 641504]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-08 251248]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-11-07 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-16 129976]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-07 1255736]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#12 Příspěvek od Rudy »

Nejprve odinstalujte cracklé Office. Toto fórum nepodporuje softwarové pirátství. Pak dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#13 Příspěvek od Luvr »

PC už jsem tak koupil ,odinstalováno stejně ho nepoužívám

Logfile of random's system information tool 1.08 (written by random/random)
Run by Luvr at 2013-02-23 18:20:07
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 129 GB (27%) free of 477 GB
Total RAM: 8099 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:17, on 23.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Luvr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Norton Family BHO - {B8E07826-0971-4f16-B133-047B88034E89} - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Praetorian] C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe" Minimum
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Norton Download Manager{NSME22-B22-4abb-B07C-C084B04B4F12}] C:\Program Files (x86)\Norton Management\Engine\3.0.0.133\ccSvcHst.exe /m (User 'Default user')
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Management (MCLIENT) - Symantec Corporation - C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Family (NSM) - Symantec Corporation - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12831 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {7B650F20-FF34-4354-B807-4429340121FB}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
C:\Windows\System32\alg.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
taskeng.exe {BEBF3248-FF58-40AE-BB34-5C6FACC01138}
"C:\Core Temp\PCMeter\PCMeterV0.3.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /s "MCLIENT" /m "C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /s "NSM" /m "C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\diMaster.dll" /prefetch:1
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k regsvc
C:\Windows\system32\vssvc.exe
"C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe" /c /a /s UserSession2
"C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe" /c /a /s UserSession
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Microsoft IntelliType Pro\itype.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Samsung\Kies\Kies.exe" /preload
"C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe" -startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\splwow64.exe 12288
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
taskhost.exe $(Arg0)
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"C:\totalcmd\TOTALCMD.EXE"
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\WmiApSrv.exe
"C:\1\1\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000UA.job
C:\Windows\tasks\Registry Winner Schedule.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-07-27 545264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-07-27 193520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\IPS\IPSBHO.DLL [2012-06-21 210400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-02-01 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B8E07826-0971-4f16-B133-047B88034E89}]
Norton Family BHO - C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\coIEPlg.dll [2013-02-11 509776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-02-01 170912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12 253584]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2012-04-09 798771]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\coIEPlg.dll [2013-02-01 512408]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12 192144]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-19 11613288]
"itype"=c:\Program Files\Microsoft IntelliType Pro\itype.exe [2010-07-21 2306448]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2011-03-14 2779024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Praetorian"=C:\Users\Luvr\AppData\Local\Yandex\Updater\praetorian.exe []
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-12-09 969104]
"MobileDocuments"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe []
"Google Update"=C:\Users\Luvr\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-27 116648]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2012-12-20 1476104]
"KiesAirMessage"=C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [2012-12-18 578560]
"OscarEditor"=C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe Minimum []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-11-28 59280]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2012-12-20 310280]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-12-12 152544]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-02-02 642656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-02-23 18:16:53 ----A---- C:\Windows\KMSEmulator.exe
2013-02-22 21:25:53 ----A---- C:\AdwCleaner[S1].txt
2013-02-22 20:16:32 ----A---- C:\AdwCleaner[R1].txt
2013-02-22 19:19:38 ----D---- C:\rsit
2013-02-22 19:19:38 ----D---- C:\Program Files\trend micro
2013-02-21 16:31:41 ----A---- C:\Windows\system32\taskhost.exe
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-02-20 23:09:37 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-02-20 23:07:40 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\nlasvc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\netcorehc.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\ncsi.dll
2013-02-20 23:07:40 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-02-20 23:07:39 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\nlaapi.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\netevent.dll
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-20 23:07:39 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprtPS.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\wksprt.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\tsgqec.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpudd.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\rdpcorets.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\mstsc.exe
2013-02-20 23:07:38 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-02-20 23:07:38 ----A---- C:\Windows\system32\aaclient.dll
2013-02-20 23:07:37 ----A---- C:\Windows\system32\mstscax.dll
2013-02-20 23:04:55 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-02-20 23:04:55 ----A---- C:\Windows\system32\schannel.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-02-20 23:04:53 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\lsasrv.dll
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-02-20 23:04:53 ----A---- C:\Windows\system32\drivers\cng.sys
2013-02-20 23:03:40 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\rndismpx.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-02-20 23:01:58 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-02-20 23:01:21 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-02-20 23:01:21 ----A---- C:\Windows\system32\qdvd.dll
2013-02-20 22:25:24 ----D---- C:\Program Files (x86)\Registry Winner
2013-02-20 16:14:16 ----D---- C:\Windows\system32\SPReview
2013-02-20 16:12:42 ----D---- C:\Windows\system32\EventProviders
2013-02-20 16:00:57 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----D---- C:\Program Files (x86)\ASUS
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2013-02-20 15:59:45 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2013-02-20 15:59:31 ----D---- C:\Users\Luvr\AppData\Roaming\InstallShield
2013-02-20 15:59:08 ----D---- C:\Asus
2013-02-19 19:46:09 ----D---- C:\Utorrent
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-14 06:23:24 ----A---- C:\Windows\system32\ieui.dll
2013-02-14 06:23:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\SYSWOW64\url.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\urlmon.dll
2013-02-14 06:23:22 ----A---- C:\Windows\system32\url.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-02-14 06:23:21 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-14 06:23:21 ----A---- C:\Windows\system32\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\wininet.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\vbscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\jscript.dll
2013-02-14 06:23:20 ----A---- C:\Windows\system32\iertutil.dll
2013-02-14 06:23:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\mshtml.dll
2013-02-14 06:23:18 ----A---- C:\Windows\system32\ieframe.dll
2013-02-14 06:11:44 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-02-14 06:11:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-02-14 06:11:34 ----A---- C:\Windows\system32\win32k.sys
2013-02-14 06:11:31 ----A---- C:\Windows\system32\winsrv.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\user.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-02-14 06:11:30 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\netio.sys
2013-02-14 06:11:29 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-10 20:19:01 ----D---- C:\ProgramData\CanonIJ
2013-02-10 20:14:37 ----HD---- C:\ProgramData\CanonIJScan
2013-02-10 20:07:55 ----D---- C:\Číra
2013-02-09 17:58:33 ----D---- C:\Users\Luvr\AppData\Roaming\GameRanger
2013-02-09 14:59:08 ----D---- C:\GOG Games
2013-02-07 21:26:22 ----D---- C:\ProgramData\ATI
2013-02-07 21:25:49 ----D---- C:\Program Files (x86)\AMD AVT
2013-02-07 21:25:41 ----D---- C:\Program Files (x86)\AMD APP
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\atimpc64.dll
2013-02-02 22:00:44 ----A---- C:\Windows\system32\amdpcom64.dll
2013-02-02 22:00:42 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2013-02-02 22:00:40 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2013-02-02 22:00:38 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2013-02-02 22:00:36 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2013-02-02 22:00:34 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2013-02-02 22:00:32 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2013-02-02 21:58:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2013-02-02 21:38:46 ----A---- C:\Windows\system32\atio6axx.dll
2013-02-02 21:34:26 ----A---- C:\Windows\system32\atiapfxx.exe
2013-02-02 21:31:58 ----A---- C:\Windows\system32\coinst_12.10.17.dll
2013-02-02 21:31:52 ----A---- C:\Windows\system32\aticalrt64.dll
2013-02-02 21:31:50 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2013-02-02 21:31:44 ----A---- C:\Windows\system32\aticalcl64.dll
2013-02-02 21:31:42 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2013-02-02 21:31:32 ----A---- C:\Windows\system32\aticaldd64.dll
2013-02-02 21:27:04 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2013-02-02 21:21:00 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2013-02-02 21:10:14 ----A---- C:\Windows\system32\atidemgy.dll
2013-02-02 21:09:58 ----A---- C:\Windows\system32\atieclxx.exe
2013-02-02 21:09:08 ----A---- C:\Windows\system32\atiesrxx.exe
2013-02-02 21:07:42 ----A---- C:\Windows\system32\atitmm64.dll
2013-02-02 21:07:28 ----A---- C:\Windows\system32\atimuixx.dll
2013-02-02 21:07:22 ----A---- C:\Windows\system32\atiedu64.dll
2013-02-02 21:07:16 ----A---- C:\Windows\SYSWOW64\ati2edxx.dll
2013-02-02 20:40:50 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2013-02-02 20:40:36 ----A---- C:\Windows\system32\atig6pxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2013-02-02 20:40:32 ----A---- C:\Windows\system32\atiglpxx.dll
2013-02-02 20:40:28 ----A---- C:\Windows\system32\atig6txx.dll
2013-02-02 20:40:20 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2013-02-02 20:40:18 ----A---- C:\Windows\system32\amdave64.dll
2013-02-02 20:40:12 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2013-02-02 20:40:10 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2013-02-02 20:40:00 ----A---- C:\Windows\system32\atisamu64.dll
2013-02-02 20:39:54 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2013-02-02 20:36:28 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2013-02-02 15:44:46 ----A---- C:\Windows\system32\clinfo.exe
2013-02-02 15:44:28 ----A---- C:\Windows\system32\OpenVideo64.dll
2013-02-02 15:44:24 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2013-02-02 15:44:20 ----A---- C:\Windows\system32\OVDecode64.dll
2013-02-02 15:44:16 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2013-02-02 15:44:08 ----A---- C:\Windows\system32\amdocl64.dll
2013-02-02 15:42:14 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2013-02-02 15:40:30 ----A---- C:\Windows\system32\OpenCL.dll
2013-02-02 15:40:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-02-02 15:34:26 ----A---- C:\Windows\system32\amdsc64.dll
2013-02-02 15:34:22 ----A---- C:\Windows\SYSWOW64\amdsc.dll
2013-02-01 23:20:52 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-02-01 23:20:19 ----A---- C:\Windows\SYSWOW64\java.exe

======List of files/folders modified in the last 1 months======

2013-02-23 18:20:17 ----D---- C:\Windows\Prefetch
2013-02-23 18:20:09 ----D---- C:\Windows\Temp
2013-02-23 18:19:49 ----D---- C:\Users\Luvr\AppData\Roaming\uTorrent
2013-02-23 18:17:02 ----D---- C:\Windows\system32\Tasks
2013-02-23 18:16:59 ----D---- C:\Windows\Tasks
2013-02-23 18:16:53 ----D---- C:\Windows
2013-02-23 18:16:01 ----SHD---- C:\Config.Msi
2013-02-23 18:15:01 ----SHD---- C:\System Volume Information
2013-02-23 18:13:53 ----D---- C:\Windows\Microsoft.NET
2013-02-23 18:13:37 ----SHD---- C:\Windows\Installer
2013-02-23 18:13:25 ----D---- C:\ProgramData\Microsoft Help
2013-02-23 18:13:23 ----RSD---- C:\Windows\assembly
2013-02-23 18:11:18 ----SD---- C:\ProgramData\Microsoft
2013-02-23 18:11:18 ----RD---- C:\Program Files (x86)
2013-02-23 18:11:18 ----RD---- C:\Program Files
2013-02-23 18:11:18 ----D---- C:\Program Files\Microsoft Office
2013-02-23 18:11:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-02-23 18:11:18 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-02-23 18:11:05 ----RSD---- C:\Windows\Fonts
2013-02-23 18:11:01 ----D---- C:\Program Files (x86)\MSBuild
2013-02-23 18:11:00 ----D---- C:\Windows\System32
2013-02-23 18:11:00 ----D---- C:\Program Files\Common Files
2013-02-23 18:09:24 ----D---- C:\Windows\ShellNew
2013-02-23 18:09:08 ----RD---- C:\Stahování
2013-02-23 18:09:07 ----A---- C:\Windows\win.ini
2013-02-23 18:08:33 ----D---- C:\Torrenty
2013-02-23 15:06:24 ----D---- C:\Windows\system32\config
2013-02-23 14:40:51 ----D---- C:\Windows\rescache
2013-02-23 13:16:46 ----D---- C:\Windows\SysWOW64
2013-02-22 21:25:58 ----HD---- C:\ProgramData
2013-02-22 19:18:50 ----D---- C:\1
2013-02-22 17:41:18 ----D---- C:\Program Files (x86)\OscarX7Editor5Mode
2013-02-21 21:43:17 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-02-21 20:57:46 ----D---- C:\Windows\winsxs
2013-02-21 20:57:37 ----D---- C:\Windows\system32\drivers\NSMx64
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot2
2013-02-21 16:31:37 ----D---- C:\Windows\system32\catroot
2013-02-21 06:15:40 ----D---- C:\Windows\inf
2013-02-21 06:15:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\migration
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\system32\wbem
2013-02-20 23:11:40 ----D---- C:\Windows\system32\migration
2013-02-20 23:11:40 ----D---- C:\Windows\system32\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers\en-US
2013-02-20 23:11:40 ----D---- C:\Windows\system32\drivers
2013-02-20 23:11:40 ----D---- C:\Windows\system32\cs-CZ
2013-02-20 23:11:40 ----D---- C:\Windows\PolicyDefinitions
2013-02-20 23:11:38 ----D---- C:\Windows\system32\DriverStore
2013-02-20 22:49:43 ----D---- C:\Users\Luvr\AppData\Roaming\LangSoft
2013-02-20 22:49:43 ----D---- C:\TRANSLAT
2013-02-20 18:35:31 ----D---- C:\Users\Luvr\AppData\Roaming\Mumble
2013-02-20 16:42:49 ----SHD---- C:\Boot
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Portable Devices
2013-02-20 16:35:25 ----D---- C:\Program Files (x86)\Windows Mail
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-02-20 16:35:24 ----D---- C:\Program Files (x86)\Windows Media Player
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Sidebar
2013-02-20 16:35:23 ----D---- C:\Program Files\Windows Mail
2013-02-20 16:35:22 ----D---- C:\Program Files\Windows Portable Devices
2013-02-20 16:35:22 ----D---- C:\Program Files\DVD Maker
2013-02-20 16:35:17 ----D---- C:\Program Files\Windows Media Player
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Photo Viewer
2013-02-20 16:35:16 ----D---- C:\Program Files\Windows Journal
2013-02-20 16:35:14 ----D---- C:\Program Files\Common Files\System
2013-02-20 16:35:12 ----D---- C:\Windows\servicing
2013-02-20 16:35:12 ----D---- C:\Program Files\Windows Defender
2013-02-20 16:35:11 ----D---- C:\Windows\ehome
2013-02-20 16:34:54 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\oobe
2013-02-20 16:34:54 ----D---- C:\Windows\SYSWOW64\da-DK
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\Setup
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\cs
2013-02-20 16:34:52 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2013-02-20 16:34:48 ----D---- C:\Windows\SYSWOW64\manifeststore
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\sppui
2013-02-20 16:34:47 ----D---- C:\Windows\SYSWOW64\es-ES
2013-02-20 16:34:45 ----D---- C:\Windows\SYSWOW64\migwiz
2013-02-20 16:34:44 ----D---- C:\Windows\SYSWOW64\Dism
2013-02-20 16:33:40 ----D---- C:\Windows\system32\da-DK
2013-02-20 16:33:39 ----D---- C:\Windows\system32\oobe
2013-02-20 16:33:36 ----D---- C:\Windows\system32\Setup
2013-02-20 16:33:36 ----D---- C:\Windows\system32\cs
2013-02-20 16:33:36 ----D---- C:\Windows\system32\AdvancedInstallers
2013-02-20 16:33:27 ----D---- C:\Windows\system32\manifeststore
2013-02-20 16:33:26 ----D---- C:\Windows\system32\sppui
2013-02-20 16:33:26 ----D---- C:\Windows\system32\es-ES
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\UMDF
2013-02-20 16:33:22 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-02-20 16:33:18 ----D---- C:\Windows\system32\migwiz
2013-02-20 16:33:18 ----D---- C:\Windows\system32\Dism
2013-02-20 16:30:46 ----D---- C:\Windows\AppPatch
2013-02-20 16:29:24 ----D---- C:\Windows\system32\Boot
2013-02-20 16:22:47 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2013-02-20 16:22:46 ----A---- C:\Windows\system32\msclmd.dll
2013-02-20 16:12:18 ----D---- C:\Program Files (x86)\yBook
2013-02-20 16:00:50 ----D---- C:\Windows\SYSWOW64\drivers
2013-02-20 15:59:45 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-02-19 16:26:21 ----D---- C:\ProgramData\CanonIJPLM
2013-02-14 06:53:57 ----D---- C:\Program Files (x86)\Internet Explorer
2013-02-14 06:53:56 ----D---- C:\Program Files\Internet Explorer
2013-02-14 06:46:35 ----A---- C:\Windows\system32\MRT.exe
2013-02-10 20:14:37 ----D---- C:\Users\Luvr\AppData\Roaming\Canon
2013-02-08 22:01:54 ----D---- C:\Users\Luvr\AppData\Roaming\XBMC
2013-02-08 21:21:29 ----D---- C:\Games
2013-02-08 14:03:24 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-02-08 11:15:24 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-02-07 21:25:50 ----D---- C:\ProgramData\AMD
2013-02-07 21:25:13 ----D---- C:\Program Files\ATI Technologies
2013-02-07 21:18:12 ----D---- C:\AMD
2013-02-07 21:10:30 ----D---- C:\Windows\system32\drivers\N360x64
2013-02-06 21:03:17 ----D---- C:\myš
2013-02-05 13:06:09 ----D---- C:\Users\Luvr\AppData\Roaming\.minecraft
2013-02-02 22:00:42 ----A---- C:\Windows\system32\atiuxp64.dll
2013-02-02 22:00:40 ----A---- C:\Windows\system32\atiu9p64.dll
2013-02-02 22:00:38 ----A---- C:\Windows\system32\aticfx64.dll
2013-02-02 22:00:36 ----A---- C:\Windows\system32\atidxx64.dll
2013-02-02 22:00:30 ----A---- C:\Windows\system32\atiumd6a.dll
2013-02-02 22:00:28 ----A---- C:\Windows\system32\atiumd64.dll
2013-02-02 20:41:02 ----A---- C:\Windows\system32\atiadlxx.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-02-01 23:20:10 ----A---- C:\Windows\SYSWOW64\deployJava1.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMDS64.SYS [2011-08-15 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\0604010.00E\SYMEFA64.SYS [2012-05-22 1129120]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\BASHDefs\20130208.001\BHDrvx64.sys [2013-01-16 1388120]
R1 ccSet_MCLIENT;Norton Management Settings Manager; C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys [2012-10-04 168096]
R1 ccSet_N360;Norton 360 Settings Manager; C:\Windows\system32\drivers\N360x64\0604010.00E\ccSetx64.sys [2012-06-07 167072]
R1 ccSet_NSM;Norton Family Settings Manager; C:\Windows\system32\drivers\NSMx64\0206000.03D\ccSetx64.sys [2012-08-07 168096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-07 279616]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2012-12-29 484512]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\IPSDefs\20130222.001\IDSvia64.sys [2012-09-06 513184]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\0604010.00E\SRTSPX64.SYS [2012-07-06 37536]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2011-11-23 43640]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\0604010.00E\Ironx64.SYS [2011-11-16 190072]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\N360x64\0604010.00E\SYMNETS.SYS [2011-11-16 405624]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-02-02 11612672]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-02-02 576000]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-01-15 96768]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-01-19 138912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-23 2565736]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.024\ENG64.SYS [2013-01-19 126192]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.0.145\Definitions\VirusDefs\20130222.024\EX64.SYS [2013-01-19 2087664]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\N360x64\0604010.00E\SRTSP64.SYS [2012-07-06 737952]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2012-11-12 177312]
R3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\Luvr\AppData\Local\Temp\tmpEAF9.tmp []
S3 ALSysIO;ALSysIO; \??\C:\Users\Luvr\AppData\Local\Temp\ALSysIO64.sys []
S3 atillk64;atillk64; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\AtiTool\atillk64.sys [2006-07-19 14608]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-09-20 102368]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 GPCIDrv;GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\atBIOS\GPCIDrv64.sys [2010-02-04 14376]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl64.sys [2011-08-02 22528]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-09-20 203104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 SYMRDR_{78CA3BF0-9C3B-40e1-B46D-38C877EF059A};Symantec Redirector - Norton Family; C:\Windows\System32\Drivers\NSMx64\0206000.03D\SymRdrS.SYS [2012-07-21 243872]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2009-07-14 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-02-02 240640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2011-02-07 138192]
R2 MCLIENT;Norton Management; C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe [2012-10-11 143928]
R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\6.4.1.14\ccSvcHst.exe [2012-06-16 138272]
R2 NSM;Norton Family; C:\Program Files (x86)\Norton Family\Engine\2.6.0.61\ccSvcHst.exe [2012-08-19 143928]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-12 76888]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-12-12 641504]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-08 251248]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-07 136176]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-11-07 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-16 129976]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-07 1255736]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119524
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: zamrzající prohlížeč internetu

#14 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000UA.job
C:\Windows\KMSEmulator.exe

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Luvr
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 21 črc 2011 22:21

Re: zamrzající prohlížeč internetu

#15 Příspěvek od Luvr »

tohle to vyhodilo pošlu ještě ten RSIT

All processes killed
========== FILES ==========
C:\Program Files (x86)\Google\Google Toolbar\Component folder moved successfully.
C:\Program Files (x86)\Google\Google Toolbar folder moved successfully.
C:\Windows\tasks\AutoKMS.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000Core.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-91065700-3525468454-4147694582-1000UA.job moved successfully.
C:\Windows\KMSEmulator.exe moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56478 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Luvr
->Temp folder emptied: 93755587 bytes
->Temporary Internet Files folder emptied: 85243069 bytes
->Java cache emptied: 7159573 bytes
->FireFox cache emptied: 934996458 bytes
->Google Chrome cache emptied: 104095405 bytes
->Flash cache emptied: 176672 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1332 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 753 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67911 bytes
RecycleBin emptied: 1046776230 bytes

Total Files Cleaned = 2 167,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Luvr
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 02232013_185455

Files moved on Reboot...
C:\Users\Luvr\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REG10A4.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGA218.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGC35E.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGE956.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGEDC7.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGEF7C.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Temp\REGF872.tmp moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\SuggestedSites.dat moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T5TD3UYT\viewforum[2].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T5TD3UYT\zrt_lookup[2].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22X25P9M\ads[3].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22X25P9M\afr[1].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22X25P9M\dorf1[2].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22X25P9M\engine[1].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\22X25P9M\viewtopic[1].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LS5ZYDT\dorf1[1].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LS5ZYDT\OTM[1].htm moved successfully.
C:\Users\Luvr\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LS5ZYDT\wrapper[1].htm moved successfully.

Registry entries deleted on Reboot...
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“