prosim o kontrolu a radu co vse muzu smazat na ntb(s FR.W7)

[kompak]

Pekny den preji, koupil jsem si notebook od zname, nemam instalacni DVD W7.

K Francouzstine jsem Vistalizatorem pridal Cestinu, zda se, ze temer vse je prelozeno, zadny velky problem, smazal jsem co se dalo a mohlo zpomalovat, aktualizoval, co HP chtelo a rad bych vedel co vsecko muzu odinstalovat, abych to osekal na minimum a jelo to co nejrychleji

Zatim jsem pouzival ccleaner, vymenil jsem avast za aviru, testnul i antimalwarem Malwarebytes. NA to ze je to starsi stroj, jede to svizne, chce to jeste rozebrat a vysat chlazeni.

Skoro nic tu nemam, ted bych jeste mohl asi i preinstalovat system, ale pokud to neni nutne, rad bych to uz nechal, jak to je, stravil jsem nad tim dost casu


Obecne davam pozor a s viry apod. se nepotkavam, bude mi stacit W7 firewall?


Dekuji predem za jakekoli rady a navod na uklid


Logfile of random's system information tool 1.09 (written by random/random)
Run by clothilde at 2013-08-01 15:45:18
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 212 GB (73%) free of 289 GB
Total RAM: 1787 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:45:22, on 1.8.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16635)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files\trend micro\clothilde.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/CQNOT/3
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
R3 - URLSearchHook: (no name) - {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: (no name) - !{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
O3 - Toolbar: (no name) - !{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
O3 - Toolbar: (no name) - !{8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O3 - Toolbar: (no name) - !{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O3 - Toolbar: (no name) - !{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O17 - HKLM\System\CS1\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O17 - HKLM\System\CS2\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RtVOsdService Installer (RtVOsdService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater12.2.6 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9536 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\WLANExt.exe 4753264
\??\C:\Windows\system32\conhost.exe "-1863987343289185092-16684586007299624101508920887-18701019999395193571164085380
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"taskhost.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000005bc
C:\Windows\System32\alg.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b6e07fd5-87f5-41b9-bfae-dfeef66ad855 -SystemEventPortName:HostProcess-9be6a199-a0ac-4886-bec5-d950fa871528 -IoCancelEventPortName:HostProcess-3a110b4d-5a6d-470e-bbf2-7d4d88d1bc0e -NonStateChangingEventPortName:HostProcess-45d1e5f3-3d35-4419-a4cf-382a33b976cd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:60a16d0d-9b9d-4d02-b92f-9a5d5fa64c86 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe"
"C:\Program Files\Realtek\RtVOsd\RtVOsd.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe"
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\Users\clothilde\AppData\Local\Opera\Opera\temporary_downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000UA.job
C:\Windows\tasks\HPCeeScheduleForclothilde.job
C:\Windows\tasks\ReclaimerUpdateFiles_clothilde.job
C:\Windows\tasks\ReclaimerUpdateXML_clothilde.job
C:\Windows\tasks\RNUpgradeHelperLogonPrompt_clothilde.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-24 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-24 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
!{3bbd3c14-4c16-4989-8366-95bc9179779d}
!{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
!{8dcb7100-df86-4384-8842-8fa844297b3f}
!{95B7759C-8C7F-4BF1-B163-73684A933233}
!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
!{3bbd3c14-4c16-4989-8366-95bc9179779d}
!{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
!{8dcb7100-df86-4384-8842-8fa844297b3f}
!{95B7759C-8C7F-4BF1-B163-73684A933233}
!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-24 6489704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bing Bar]
C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR]
C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Easybits Recovery]
C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\clothilde\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Quick Launch]
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisorDock]
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-06-18 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-05-19 2736128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup]
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe / /PROMPT /CMPID=ROC_JULY_P1 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_ssl_v12]
C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe / /PROMPT /CMPID=roc_ssl_v12 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-06-17 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-07-24 2281256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter Search Scope Monitor]
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe /m=2 /w /h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4z Browser Plugin Loader]
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^clothilde^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-07-26 345144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-08-01 15:45:18 ----D---- C:\rsit
2013-08-01 15:00:17 ----D---- C:\rsit1
2013-08-01 15:00:17 ----D---- C:\Program Files\trend micro
2013-08-01 01:27:01 ----RA---- C:\acdseepro.exe
2013-08-01 01:21:56 ----D---- C:\Windows\Downloaded Installations
2013-07-27 00:47:34 ----D---- C:\Vyměnitelný disk
2013-07-27 00:22:55 ----D---- C:\Users\clothilde\AppData\Roaming\Opera
2013-07-26 07:56:39 ----D---- C:\ProgramData\Synetic
2013-07-26 07:54:47 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-07-26 07:54:47 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-07-26 07:54:46 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-07-26 07:54:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-07-26 07:54:46 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-07-26 07:54:46 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-07-26 07:54:45 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-07-26 07:54:45 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-07-26 07:54:45 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-07-26 07:54:45 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-07-26 07:54:44 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-07-26 07:54:44 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-07-26 07:54:44 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-07-26 07:54:44 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-07-26 07:54:43 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-07-26 07:54:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-07-26 07:54:43 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-07-26 07:54:43 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-07-26 07:54:42 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-07-26 07:54:42 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-07-26 07:54:40 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-07-26 07:54:40 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-07-26 07:54:40 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-07-26 07:54:40 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-07-26 07:54:39 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-07-26 07:54:39 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-07-26 07:54:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-07-26 07:54:38 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-07-26 07:54:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-07-26 07:54:38 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-07-26 07:54:38 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-07-26 07:54:38 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-07-26 07:54:37 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-07-26 07:54:37 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-07-26 07:54:36 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-07-26 07:54:36 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-07-26 07:54:36 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-07-26 07:54:36 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-07-26 07:54:35 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-07-26 07:54:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-07-26 07:54:35 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-07-26 07:54:35 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-07-26 07:54:34 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-07-26 07:54:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-07-26 07:54:34 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-07-26 07:54:34 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-07-26 07:54:32 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-07-26 07:54:32 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-07-26 07:54:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-07-26 07:54:32 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-07-26 07:54:32 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-07-26 07:54:32 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-07-26 07:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-07-26 07:54:31 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-07-26 07:54:30 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-07-26 07:54:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-07-26 07:54:30 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-07-26 07:54:30 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-07-26 07:54:29 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-07-26 07:54:29 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-07-26 07:54:28 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-07-26 07:54:28 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-07-26 07:54:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-07-26 07:54:28 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-07-26 07:54:28 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-07-26 07:54:28 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-07-26 07:54:27 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-07-26 07:54:27 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-07-26 07:54:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-07-26 07:54:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-07-26 07:54:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-07-26 07:54:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-07-26 07:54:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-07-26 07:54:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-07-26 07:54:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-07-26 07:54:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-07-26 07:54:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-07-26 07:54:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-07-26 07:54:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-07-26 07:54:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-07-26 07:54:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-07-26 07:54:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-07-26 07:54:22 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-07-26 07:54:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-07-26 07:54:22 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-07-26 07:54:22 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-07-26 07:54:20 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-07-26 07:54:20 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-07-26 07:54:18 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-07-26 07:54:18 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-07-26 07:54:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-07-26 07:54:18 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-07-26 07:54:18 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-07-26 07:54:18 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-07-26 07:54:17 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-07-26 07:54:17 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-07-26 07:54:15 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-07-26 07:54:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-07-26 07:54:15 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-07-26 07:54:15 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-07-26 07:54:13 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-07-26 07:54:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-07-26 07:54:13 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-07-26 07:54:13 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-07-26 07:54:12 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-07-26 07:54:12 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-07-26 07:54:12 ----A---- C:\Windows\system32\xinput1_3.dll
2013-07-26 07:54:12 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-07-26 07:54:11 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-07-26 07:54:11 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-07-26 07:54:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-07-26 07:54:11 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-07-26 07:54:11 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-07-26 07:54:11 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-07-26 07:54:10 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-07-26 07:54:10 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-07-26 07:54:10 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-07-26 07:54:10 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-07-26 07:54:08 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-07-26 07:54:08 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-07-26 07:54:08 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-07-26 07:54:08 ----A---- C:\Windows\system32\d3dx10.dll
2013-07-26 07:54:06 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-07-26 07:54:06 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-07-26 07:54:04 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-07-26 07:54:04 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-07-26 07:54:04 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-07-26 07:54:04 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-07-26 07:54:03 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-07-26 07:54:03 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-07-26 07:54:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-07-26 07:54:00 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-07-26 07:54:00 ----A---- C:\Windows\system32\xinput1_2.dll
2013-07-26 07:54:00 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-07-26 07:53:58 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-07-26 07:53:58 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-07-26 07:53:57 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-07-26 07:53:57 ----A---- C:\Windows\system32\xinput1_1.dll
2013-07-26 07:53:53 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-07-26 07:53:53 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-07-26 07:53:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-07-26 07:53:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-07-26 07:53:34 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-07-26 07:53:34 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-07-26 07:53:34 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-07-26 07:53:34 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-07-26 07:53:34 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-07-26 07:53:34 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-07-26 07:53:33 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-07-26 07:53:33 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-07-26 07:53:32 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-07-26 07:53:32 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-07-26 07:53:32 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-07-26 07:53:32 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-07-26 07:53:31 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-07-26 07:53:31 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-07-26 07:53:28 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-07-26 07:53:28 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-07-26 06:52:48 ----D---- C:\tu
2013-07-26 06:51:47 ----A---- C:\setup.exe
2013-07-26 05:41:38 ----D---- C:\Program Files (x86)\Crash Time III
2013-07-26 03:55:19 ----D---- C:\Users\clothilde\AppData\Roaming\Opera Software
2013-07-26 03:55:07 ----D---- C:\Program Files (x86)\Opera
2013-07-26 03:55:02 ----D---- C:\Users\clothilde\AppData\Roaming\Avira
2013-07-26 03:49:54 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-07-26 03:48:39 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-07-26 03:48:39 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-07-26 03:48:38 ----D---- C:\ProgramData\Avira
2013-07-26 03:48:38 ----D---- C:\Program Files (x86)\Avira
2013-07-26 03:48:38 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-07-26 03:05:29 ----SHD---- C:\Config.Msi
2013-07-26 02:48:52 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-07-26 02:40:44 ----D---- C:\Windows\system32\MRT
2013-07-25 23:37:41 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-07-25 23:37:40 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-07-25 23:28:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-07-25 23:28:15 ----A---- C:\Windows\system32\DWrite.dll
2013-07-25 09:57:20 ----D---- C:\Users\clothilde\AppData\Roaming\Malwarebytes
2013-07-25 09:56:20 ----D---- C:\ProgramData\Malwarebytes
2013-07-25 09:56:16 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-25 09:56:16 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-07-25 06:45:25 ----A---- C:\Windows\system32\perfi005.dat
2013-07-25 06:45:23 ----A---- C:\Windows\system32\perfh005.dat
2013-07-25 06:45:23 ----A---- C:\Windows\system32\perfd005.dat
2013-07-25 06:45:23 ----A---- C:\Windows\system32\perfc005.dat
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\en
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\cs
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\0409
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2013-07-25 06:32:45 ----D---- C:\Windows\cs-CZ
2013-07-25 06:32:42 ----D---- C:\Windows\system32\en
2013-07-25 06:32:42 ----D---- C:\Windows\system32\cs
2013-07-25 06:32:42 ----D---- C:\Windows\system32\0409
2013-07-25 06:32:08 ----D---- C:\Windows\system32\drivers\en-US
2013-07-25 06:32:08 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-07-25 05:23:50 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-25 05:23:48 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-07-25 05:23:47 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-07-25 05:23:47 ----A---- C:\Windows\system32\elshyph.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-07-25 05:23:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-07-25 05:23:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-07-25 05:23:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-07-25 05:23:45 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-07-25 05:23:45 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-07-25 05:23:45 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-07-25 05:23:44 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\url.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-07-25 05:23:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-07-25 05:23:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-25 05:23:42 ----A---- C:\Windows\system32\iertutil.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\wininet.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\webcheck.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\urlmon.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\url.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\msrating.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\msls31.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\mshtmled.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\licmgr10.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\inseng.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\iesetup.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\iernonce.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\iedkcs32.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\ieapfltr.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\ieapfltr.dat
2013-07-25 05:23:41 ----A---- C:\Windows\system32\ie4uinit.exe
2013-07-25 05:23:41 ----A---- C:\Windows\system32\icardie.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\dxtrans.dll
2013-07-25 05:23:41 ----A---- C:\Windows\system32\dxtmsft.dll
2013-07-25 05:23:40 ----A---- C:\Windows\system32\wextract.exe
2013-07-25 05:23:40 ----A---- C:\Windows\system32\vbscript.dll
2013-07-25 05:23:40 ----A---- C:\Windows\system32\mshtml.dll
2013-07-25 05:23:40 ----A---- C:\Windows\system32\msfeeds.dll
2013-07-25 05:23:40 ----A---- C:\Windows\system32\iexpress.exe
2013-07-25 05:23:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-07-25 05:23:39 ----A---- C:\Windows\system32\pngfilt.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\occache.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\mshtmler.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\mshta.exe
2013-07-25 05:23:39 ----A---- C:\Windows\system32\msfeedssync.exe
2013-07-25 05:23:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\jscript9.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\jscript.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\imgutil.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\ieUnatt.exe
2013-07-25 05:23:39 ----A---- C:\Windows\system32\ieui.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\iesysprep.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\iepeers.dll
2013-07-25 05:23:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-07-25 05:23:38 ----A---- C:\Windows\system32\ieframe.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 05:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-25 05:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-07-25 05:17:01 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\XpsPrint.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\WMPhoto.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\FntCache.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\dxgi.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d3d10warp.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d3d10core.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d3d10_1.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d3d10.dll
2013-07-25 05:17:01 ----A---- C:\Windows\system32\d2d1.dll
2013-07-25 05:17:00 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-07-25 05:17:00 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-07-25 05:17:00 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-07-25 05:17:00 ----A---- C:\Windows\system32\UIAnimation.dll
2013-07-25 05:17:00 ----A---- C:\Windows\system32\d3d10level9.dll
2013-07-24 16:27:21 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll
2013-07-24 16:27:20 ----A---- C:\Windows\system32\SynTPCo4.dll
2013-07-24 16:27:20 ----A---- C:\Windows\system32\SynTPAPI.dll
2013-07-24 16:27:20 ----A---- C:\Windows\system32\drivers\SynTP.sys
2013-07-24 16:27:16 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll
2013-07-24 16:27:16 ----A---- C:\Windows\SYSWOW64\SynCOM.dll
2013-07-24 16:27:16 ----A---- C:\Windows\system32\SynCtrl.dll
2013-07-24 16:27:16 ----A---- C:\Windows\system32\SynCOM.dll
2013-07-24 16:13:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-07-24 11:22:12 ----A---- C:\Windows\system32\qedit.dll
2013-07-24 11:22:11 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-07-24 11:21:21 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-07-24 11:21:19 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-07-24 11:15:10 ----A---- C:\Windows\system32\win32k.sys
2013-07-24 09:09:15 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-07-24 09:09:15 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-07-24 09:09:01 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-07-24 09:09:01 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-07-24 09:09:01 ----A---- C:\Windows\SYSWOW64\java.exe
2013-07-24 07:32:08 ----D---- C:\Windows\pss
2013-07-24 07:19:55 ----D---- C:\Program Files\CCleaner
2013-07-24 07:18:36 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-07-24 07:18:35 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-07-24 07:18:34 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-07-24 07:18:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-07-24 07:18:31 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-07-24 07:18:31 ----A---- C:\Windows\system32\RtkApi64.dll
2013-07-24 07:18:22 ----A---- C:\Windows\system32\RTCOM64.dll
2013-07-24 07:18:20 ----A---- C:\Windows\system32\RCoInst64.dll
2013-07-24 07:17:09 ----A---- C:\Windows\system32\AERTAC64.dll
2013-07-24 06:35:03 ----A---- C:\Windows\SYSWOW64\shoC13D.tmp
2013-07-24 05:42:13 ----D---- C:\Program Files (x86)\WildTangent Games
2013-07-24 04:43:09 ----SHD---- C:\found.000
2013-07-15 22:02:10 ----A---- C:\Windows\system32\win32spl.dll
2013-07-15 22:02:09 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-07-15 22:02:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-07-15 22:01:50 ----A---- C:\Windows\system32\cryptdlg.dll
2013-07-15 22:01:49 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-07-15 21:58:38 ----A---- C:\Windows\system32\certutil.exe
2013-07-15 21:58:36 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-07-15 21:58:36 ----A---- C:\Windows\system32\crypt32.dll
2013-07-15 21:58:35 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-07-15 21:58:34 ----A---- C:\Windows\system32\cryptsvc.dll
2013-07-15 21:58:34 ----A---- C:\Windows\system32\cryptnet.dll
2013-07-15 21:58:33 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-07-15 21:58:33 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-07-15 21:58:32 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-07-15 21:58:32 ----A---- C:\Windows\system32\certenc.dll
2013-07-15 21:57:31 ----A---- C:\Windows\system32\d3d11.dll
2013-07-15 21:57:30 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-05-21 16:56:36 ----D---- C:\ubuntu
2013-05-21 15:52:20 ----D---- C:\429a12b48dde83de87406c
2013-05-18 00:15:36 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-18 00:15:35 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-18 00:15:35 ----A---- C:\Windows\system32\cdd.dll
2013-05-18 00:15:04 ----A---- C:\Windows\system32\shell32.dll
2013-05-18 00:14:59 ----A---- C:\Windows\system32\authui.dll
2013-05-18 00:14:57 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-18 00:14:55 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-18 00:14:54 ----A---- C:\Windows\system32\consent.exe
2013-05-18 00:14:53 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-18 00:14:52 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-18 00:14:52 ----A---- C:\Windows\system32\appinfo.dll
2013-05-18 00:14:07 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-18 00:14:07 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-02 09:33:57 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

======List of files/folders modified in the last 3 months======

2013-08-01 15:45:21 ----D---- C:\Windows\Temp
2013-08-01 15:44:41 ----D---- C:\Windows\Prefetch
2013-08-01 15:19:50 ----D---- C:\Windows\inf
2013-08-01 15:19:49 ----D---- C:\Windows
2013-08-01 15:00:17 ----RD---- C:\Program Files
2013-08-01 12:19:20 ----D---- C:\Windows\system32\config
2013-08-01 09:51:16 ----SHD---- C:\System Volume Information
2013-08-01 00:48:50 ----D---- C:\Windows\System32
2013-08-01 00:48:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-29 19:06:59 ----D---- C:\Windows\system32\NDF
2013-07-29 17:02:20 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-07-27 03:02:05 ----SHD---- C:\Windows\Installer
2013-07-27 03:02:03 ----D---- C:\Windows\SysWOW64
2013-07-27 03:01:03 ----D---- C:\Windows\system32\catroot2
2013-07-27 00:21:03 ----D---- C:\Windows\Logs
2013-07-26 18:25:14 ----D---- C:\Windows\Tasks
2013-07-26 18:25:14 ----D---- C:\Windows\system32\Tasks
2013-07-26 07:56:39 ----HD---- C:\ProgramData
2013-07-26 07:53:53 ----RSD---- C:\Windows\assembly
2013-07-26 07:53:43 ----D---- C:\Windows\Microsoft.NET
2013-07-26 07:51:09 ----D---- C:\Windows\winsxs
2013-07-26 05:41:38 ----D---- C:\Program Files (x86)
2013-07-26 03:49:54 ----D---- C:\Windows\system32\drivers
2013-07-26 03:49:01 ----D---- C:\Windows\system32\catroot
2013-07-26 03:23:37 ----D---- C:\Program Files (x86)\Common Files
2013-07-26 03:23:36 ----D---- C:\Program Files (x86)\Adobe
2013-07-26 03:20:16 ----D---- C:\Program Files (x86)\Google
2013-07-26 03:18:30 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2013-07-26 03:15:13 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-07-26 03:07:23 ----D---- C:\Windows\Panther
2013-07-26 03:07:22 ----D---- C:\Windows\debug
2013-07-26 03:06:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-07-26 03:05:22 ----D---- C:\Program Files (x86)\Microsoft
2013-07-26 02:06:48 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-07-26 02:06:48 ----D---- C:\Windows\system32\cs-CZ
2013-07-26 02:06:46 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-07-26 02:06:46 ----D---- C:\Windows\system32\fr-FR
2013-07-25 10:55:44 ----D---- C:\Users\clothilde\AppData\Roaming\vlc
2013-07-25 08:50:01 ----D---- C:\SwSetup
2013-07-25 08:11:00 ----SD---- C:\ProgramData\Microsoft
2013-07-25 08:10:49 ----SD---- C:\Users\clothilde\AppData\Roaming\Microsoft
2013-07-25 06:34:10 ----D---- C:\Windows\AppPatch
2013-07-25 06:34:10 ----D---- C:\Program Files\Windows Defender
2013-07-25 06:34:10 ----D---- C:\Program Files (x86)\Windows Defender
2013-07-25 06:34:08 ----D---- C:\Program Files (x86)\Internet Explorer
2013-07-25 06:34:07 ----D---- C:\Program Files\Internet Explorer
2013-07-25 06:34:06 ----D---- C:\Windows\SYSWOW64\migration
2013-07-25 06:34:05 ----D---- C:\Windows\SYSWOW64\en-US
2013-07-25 06:34:01 ----D---- C:\Windows\system32\migration
2013-07-25 06:34:01 ----D---- C:\Windows\PolicyDefinitions
2013-07-25 06:34:00 ----D---- C:\Windows\system32\en-US
2013-07-25 06:33:56 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-07-25 06:33:56 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-07-25 06:33:56 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-07-25 06:33:56 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-07-25 06:33:56 ----D---- C:\Windows\SYSWOW64\it-IT
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\es-ES
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\el-GR
2013-07-25 06:33:55 ----D---- C:\Windows\SYSWOW64\de-DE
2013-07-25 06:33:54 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-07-25 06:33:54 ----D---- C:\Windows\SYSWOW64\da-DK
2013-07-25 06:33:54 ----D---- C:\Windows\system32\pt-PT
2013-07-25 06:33:54 ----D---- C:\Windows\system32\pt-BR
2013-07-25 06:33:54 ----D---- C:\Windows\system32\it-IT
2013-07-25 06:33:53 ----D---- C:\Windows\system32\zh-TW
2013-07-25 06:33:53 ----D---- C:\Windows\system32\zh-HK
2013-07-25 06:33:53 ----D---- C:\Windows\system32\zh-CN
2013-07-25 06:33:53 ----D---- C:\Windows\system32\tr-TR
2013-07-25 06:33:53 ----D---- C:\Windows\system32\sv-SE
2013-07-25 06:33:53 ----D---- C:\Windows\system32\pl-PL
2013-07-25 06:33:53 ----D---- C:\Windows\system32\nl-NL
2013-07-25 06:33:53 ----D---- C:\Windows\system32\ko-KR
2013-07-25 06:33:53 ----D---- C:\Windows\system32\ja-JP
2013-07-25 06:33:53 ----D---- C:\Windows\system32\hu-HU
2013-07-25 06:33:53 ----D---- C:\Windows\system32\fi-FI
2013-07-25 06:33:53 ----D---- C:\Windows\system32\es-ES
2013-07-25 06:33:53 ----D---- C:\Windows\system32\el-GR
2013-07-25 06:33:53 ----D---- C:\Windows\system32\de-DE
2013-07-25 06:33:52 ----D---- C:\Windows\system32\ru-RU
2013-07-25 06:33:52 ----D---- C:\Windows\system32\nb-NO
2013-07-25 06:33:52 ----D---- C:\Windows\system32\da-DK
2013-07-25 06:33:32 ----D---- C:\Program Files\Windows Sidebar
2013-07-25 06:33:31 ----D---- C:\Program Files\Windows Photo Viewer
2013-07-25 06:33:31 ----D---- C:\Program Files\Windows Media Player
2013-07-25 06:33:31 ----D---- C:\Program Files\Windows Mail
2013-07-25 06:33:31 ----D---- C:\Program Files\DVD Maker
2013-07-25 06:33:31 ----D---- C:\Program Files\Common Files\System
2013-07-25 06:33:30 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-07-25 06:33:30 ----D---- C:\Program Files (x86)\Windows Mail
2013-07-25 06:33:29 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-07-25 06:33:29 ----D---- C:\Program Files (x86)\Windows Media Player
2013-07-25 06:33:28 ----D---- C:\Windows\servicing
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\winrm
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\sysprep
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\slmgr
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\Setup
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\oobe
2013-07-25 06:33:22 ----D---- C:\Windows\SYSWOW64\migwiz
2013-07-25 06:33:22 ----D---- C:\Windows\ehome
2013-07-25 06:32:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\WCN
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\MUI
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\drivers\UMDF
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\drivers
2013-07-25 06:32:49 ----D---- C:\Windows\SYSWOW64\Dism
2013-07-25 06:32:46 ----D---- C:\Windows\SYSWOW64\wbem
2013-07-25 06:32:45 ----D---- C:\Windows\SYSWOW64\com
2013-07-25 06:32:44 ----D---- C:\Windows\IME
2013-07-25 06:32:43 ----D---- C:\Windows\system32\winrm
2013-07-25 06:32:43 ----D---- C:\Windows\system32\migwiz
2013-07-25 06:32:42 ----D---- C:\Windows\system32\sysprep
2013-07-25 06:32:42 ----D---- C:\Windows\system32\slmgr
2013-07-25 06:32:42 ----D---- C:\Windows\system32\Setup
2013-07-25 06:32:42 ----D---- C:\Windows\system32\oobe
2013-07-25 06:32:42 ----D---- C:\Windows\system32\Boot
2013-07-25 06:32:08 ----D---- C:\Windows\system32\drivers\UMDF
2013-07-25 06:32:06 ----D---- C:\Windows\system32\WCN
2013-07-25 06:32:06 ----D---- C:\Windows\system32\MUI
2013-07-25 06:32:06 ----D---- C:\Windows\system32\Dism
2013-07-25 06:31:55 ----D---- C:\Windows\system32\DriverStore
2013-07-25 06:31:47 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-07-25 06:31:45 ----D---- C:\Windows\system32\wbem
2013-07-25 06:31:44 ----D---- C:\Windows\system32\com
2013-07-24 20:39:49 ----D---- C:\Program Files (x86)\HP Games
2013-07-24 20:03:51 ----D---- C:\Windows\rescache
2013-07-24 18:21:54 ----D---- C:\ProgramData\WildTangent
2013-07-24 18:05:03 ----D---- C:\Program Files (x86)\AnglaisFacile.com
2013-07-24 17:17:48 ----RSD---- C:\Windows\Fonts
2013-07-24 16:21:37 ----D---- C:\Program Files (x86)\Bing Bar Installer
2013-07-24 16:20:22 ----D---- C:\Program Files\Common Files
2013-07-24 12:56:59 ----D---- C:\Windows\Minidump
2013-07-24 10:17:25 ----DC---- C:\Windows\system32\DRVSTORE
2013-07-24 10:04:30 ----D---- C:\Program Files (x86)\QuickTime
2013-07-24 09:59:32 ----D---- C:\Program Files (x86)\Real
2013-07-24 09:59:25 ----D---- C:\ProgramData\Real
2013-07-24 09:52:03 ----D---- C:\Users\clothilde\AppData\Roaming\SoftGrid Client
2013-07-24 09:08:43 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-07-24 09:08:38 ----D---- C:\Program Files (x86)\Java
2013-07-24 07:26:41 ----HD---- C:\Program Files (x86)\Temp
2013-07-24 07:22:03 ----D---- C:\Program Files\Realtek
2013-07-24 07:20:33 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-07-24 07:11:04 ----A---- C:\Windows\RtlExUpd.dll
2013-07-24 05:48:25 ----D---- C:\Users\clothilde\AppData\Roaming\WildTangent
2013-06-24 00:57:12 ----A---- C:\Windows\system32\MRT.exe
2013-05-22 01:36:08 ----D---- C:\ProgramData\Recovery
2013-05-02 09:14:00 ----D---- C:\Users\clothilde\AppData\Roaming\Adobe
2013-05-02 02:06:08 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-24 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-07-26 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-07-26 28600]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-07-26 100712]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-06-17 6403072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-06-17 188928]
R3 BCM43XX;Pilote pour carte réseau Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-09-15 3060800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-07-24 2494056]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-23 347680]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-07-24 1390640]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-05-11 99384]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-05-11 203320]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-06-17 202752]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-07-26 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-07-26 84024]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-06-18 103992]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]
R2 RtVOsdService;RtVOsdService Installer; C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe [2010-06-24 315392]
R2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-04 722528]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-26 257416]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-14 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-26 589368]

-----------------EOF-----------------

[Roli]

Zdravím, v první řadě odstraň pomocí AVG Removeru zbytky.


Co se týče windows firewallu, pokud nebudeš dělat psí kusy tak ten co je v sedmičkách postačí.


Dále v HJT fixni :

R3 - URLSearchHook: (no name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
R3 - URLSearchHook: (no name) - {ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
O3 - Toolbar: (no name) - !{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
O3 - Toolbar: (no name) - !{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
O3 - Toolbar: (no name) - !{8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O3 - Toolbar: (no name) - !{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O3 - Toolbar: (no name) - !{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)

HJT najdeš zde :

C:\Program Files\trend micro\clothilde.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

LightScribeService Direct Disc Labeling Service

vToolbarUpdater12.2.6

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files 
C:\*.tmp
C:\WINDOWS\System32\*.tmp
C:\WINDOWS\*.tmp
C:\Windows\SYSWOW64\*.tmp
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000UA.job
C:\Program Files (x86)\AVG Secure Search

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_ssl_v12]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]

:services
vToolbarUpdater12.2.6

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem chci zkopírovat obsah logu uloženého na C:\_OTMoveIt\MovedFiles\


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo dole klikni na Search.

Po té proběhne sken a po jeho skončení na Tebe vypadne log, který mi sem zkopíruj.

[kompak]

Děkuji za pomoc, tady to je:

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\*.tmp not found.
C:\WINDOWS\System32\shoC13D.tmp moved successfully.
File/Folder C:\WINDOWS\*.tmp not found.
File/Folder C:\Windows\SYSWOW64\*.tmp not found.
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000Core.job moved successfully.
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-3803311845-3019661533-2917894527-1000UA.job moved successfully.
File/Folder C:\Program Files (x86)\AVG Secure Search not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_ssl_v12\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt\ not found.
========== SERVICES/DRIVERS ==========
Service vToolbarUpdater12.2.6 stopped successfully!
Service vToolbarUpdater12.2.6 deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: clothilde
->Temp folder emptied: 592150 bytes
->Temporary Internet Files folder emptied: 5359266 bytes
->Java cache emptied: 33415 bytes
->Opera cache emptied: 59652528 bytes
->Flash cache emptied: 8200782 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4780 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 342115 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 761 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42312151 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 757 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 111,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 08012013_182802

Files moved on Reboot...
C:\Users\clothilde\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\clothilde\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...





# AdwCleaner v2.306 - Log vytvoøen 01/08/2013 v 18:35:19
# Aktualizováno 19/07/2013 Xplode
# Operaèní systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : clothilde - CLOTHILDE-HP
# Spuštìn systém : Normální
# Spuštìno z : C:\Users\clothilde\Desktop\adwcleaner.exe
# Volba [Prohledat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Nalezeno : C:\Program Files (x86)\Common Files\AVG Secure Search
Složka Nalezeno : C:\Program Files (x86)\Conduit
Složka Nalezeno : C:\ProgramData\boost_interprocess
Složka Nalezeno : C:\Users\clothilde\AppData\Local\Conduit
Složka Nalezeno : C:\Users\clothilde\AppData\Local\Ilivid Player
Složka Nalezeno : C:\Users\clothilde\AppData\Local\PackageAware
Složka Nalezeno : C:\Users\clothilde\AppData\LocalLow\boost_interprocess
Složka Nalezeno : C:\Users\clothilde\AppData\LocalLow\Conduit
Soubor Nalezeno : C:\END
Soubor Nalezeno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Hodnota Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Hodnota Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
Klíè Nalezeno : HKCU\Software\AppDataLow\Software\SmartBar
Klíè Nalezeno : HKCU\Software\DataMngr
Klíè Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíè Nalezeno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíè Nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíè Nalezeno : HKLM\Software\Conduit
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Klíè Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíè Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíè Nalezeno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíè Nalezeno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Klíè Nalezeno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klíè Nalezeno : HKLM\SOFTWARE\DataMngr
Klíè Nalezeno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíè Nalezeno : HKU\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}

***** [Internetové prohlížeèe] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry jsou èisté.

-\\ Chromium v check_default_browser: false
}

Soubor : C:\Users\clothilde\AppData\Local\Chromium\User Data\Default\Preferences

[OK] Soubor je èistý.

-\\ Opera v12.16.1860.0

Soubor : C:\Users\clothilde\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je èistý.

*************************

AdwCleaner[R1].txt - [4209 octets] - [01/08/2013 18:35:19]

########## EOF - C:\AdwCleaner[R1].txt - [4269 octets] ##########


(btw s tou franinou jsem si uzil hodne intuitivni srandy, poprve sedmicky a jeste takhle par dni, nez jsem pridal jazyk )

[Roli]

Znovu spusť OTMoveIt a nahoře v aplikaci klini na CleanUP!

tímto po sobě uklidí.


Znovu spusť AdwCleaner ale tentokrát klikni na Delete,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té na Tebe opět vypadne log který mi sem zkopíruj.

[kompak]

koukam,ze ta cestina tu blbne, nebude to delat neplechu i nekde jinde? diky

co vsecko muzu odinstalovat a ktere bezici programy jsou malo potrebne?

na XP jsem byl zvykly mit vyplou virt. pamet, fungovalo to rychleji, akorat jsem si musel hlidat 1,25GB RAM...

ted v 7 jsem zase zkousel ten readyBoost s flashkou ci kartou, ma to smysl, nebo uskali, napr. pomale karty? diky za rady

btw to catchme co neslo smazat asi v nakem logu me zarazilo trochu :v



# AdwCleaner v2.306 - Log vytvoøen 04/08/2013 v 23:42:14
# Aktualizováno 19/07/2013 Xplode
# Operaèní systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživatel : clothilde - CLOTHILDE-HP
# Spuštìn systém : Normální
# Spuštìno z : C:\Users\clothilde\Desktop\adwcleaner.exe
# Volba [Vymazat]


***** [Služby] *****


***** [Soubory / Složky] *****

Složka Vymazáno : C:\Program Files (x86)\Common Files\AVG Secure Search
Složka Vymazáno : C:\Program Files (x86)\Conduit
Složka Vymazáno : C:\ProgramData\boost_interprocess
Složka Vymazáno : C:\Users\clothilde\AppData\Local\Conduit
Složka Vymazáno : C:\Users\clothilde\AppData\Local\Ilivid Player
Složka Vymazáno : C:\Users\clothilde\AppData\Local\PackageAware
Složka Vymazáno : C:\Users\clothilde\AppData\LocalLow\boost_interprocess
Složka Vymazáno : C:\Users\clothilde\AppData\LocalLow\Conduit
Soubor Vymazáno : C:\END
Soubor Vymazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Hodnota Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Hodnota Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
Klíè Vymazáno : HKCU\Software\AppDataLow\Software\SmartBar
Klíè Vymazáno : HKCU\Software\DataMngr
Klíè Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klíè Vymazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíè Vymazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíè Vymazáno : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Klíè Vymazáno : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Klíè Vymazáno : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Klíè Vymazáno : HKLM\Software\Conduit
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Klíè Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klíè Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíè Vymazáno : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíè Vymazáno : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Klíè Vymazáno : HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Klíè Vymazáno : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Klíè Vymazáno : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Klíè Vymazáno : HKLM\SOFTWARE\DataMngr
Klíè Vymazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}

***** [Internetové prohlížeèe] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry jsou èisté.

-\\ Chromium v check_default_browser: false
}

Soubor : C:\Users\clothilde\AppData\Local\Chromium\User Data\Default\Preferences

[OK] Soubor je èistý.

-\\ Opera v12.16.1860.0

Soubor : C:\Users\clothilde\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Soubor je èistý.

*************************

AdwCleaner[R1].txt - [4320 octets] - [01/08/2013 18:35:19]
AdwCleaner[S1].txt - [3930 octets] - [04/08/2013 23:42:14]

########## EOF - C:\AdwCleaner[S1].txt - [3990 octets] ##########

[Roli]

koukam,ze ta cestina tu blbne, nebude to delat neplechu i nekde jinde?

Maximálně nebude diakritika.

co vsecko muzu odinstalovat a ktere bezici programy jsou malo potrebne?

Poladíme

na XP jsem byl zvykly mit vyplou virt. pamet, fungovalo to rychleji, akorat jsem si musel hlidat 1,25GB RAM...
ted v 7 jsem zase zkousel ten readyBoost s flashkou ci kartou, ma to smysl, nebo uskali, napr. pomale karty? diky za rady

Sedmičky "pracují" trochu jinak, tudíž rychlý start z externího zařízení vyjma SSD disku nemá moc smysl, ale ten správně nastavit není legrace.

btw to catchme co neslo smazat asi v nakem logu me zarazilo trochu

To je zbytek po ComboFixu tak že, nic nebezpečného.


Dej mi sem tedy ještě aktuální log z Rsit, podívám se co by šlo ještě poladit.

[kompak]

Diky, jinak boot neresim, vzdy davam pocitac jen uspat, jde spis o :

Využití paměti v paměťovém zařízení ke zrychlení počítače

Funkce ReadyBoost může zrychlit počítač s využitím úložného prostoru na většině jednotek USB Flash a paměťových karet Flash. Připojíte-li k počítači paměťové zařízení kompatibilní s funkcí ReadyBoost, dialogové okno Přehrát automaticky vám nabídne možnost zrychlit počítač pomocí funkce ReadyBoost. Pokud tuto možnost vyberete, můžete zvolit, kolik paměti v zařízení chcete pro tento účel použít.

Nastavíte-li zařízení pro práci s funkcí ReadyBoost, systém Windows bude zobrazovat doporučenou velikost paměti, jejíž použití máte povolit, abyste dosáhli optimálního výkonu. Aby funkce ReadyBoost účinně zrychlila počítač, měl by na jednotce Flash nebo paměťové kartě zbývat alespoň 1 gigabajt (GB) volného místa. Není-li v zařízení dostatek místa pro funkci ReadyBoost, zobrazí se zpráva s výzvou k uvolnění prostoru v zařízení, pokud je chcete použít ke zrychlení systému.

Funkci ReadyBoost je možné povolit nebo zakázat pro určitou jednotku Flash nebo jiné vyměnitelné paměťové zařízení. Další informace naleznete v tématu Zapnutí nebo vypnutí funkce ReadyBoost pro paměťové zařízení.

napadlo me treba zase zrusit vitr. pamet a v pripade potreby veci pameti dam do usb flashku, ktera asi doplnuje rychlost(pomalost) disku...na starsi karty to nejde a SSD je tak rychle, ze to nema vyznam.














Logfile of random's system information tool 1.09 (written by random/random)
Run by clothilde at 2013-08-06 23:55:25
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 211 GB (73%) free of 289 GB
Total RAM: 1787 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:55:28, on 6.8.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16635)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\trend micro\clothilde.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/CQNOT/3
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: (no name) - !{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
O3 - Toolbar: (no name) - !{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
O3 - Toolbar: (no name) - !{8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O3 - Toolbar: (no name) - !{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O3 - Toolbar: (no name) - !{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O17 - HKLM\System\CS1\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O17 - HKLM\System\CS2\Services\Tcpip\..\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RtVOsdService Installer (RtVOsdService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8904 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 3327136
\??\C:\Windows\system32\conhost.exe "-1216401504-359098638-261266221-2089535146-858631485-674862982-1811140266-1255191122
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
C:\Windows\system32\svchost.exe -k imgsvc
atieclxx
"taskhost.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_0000056c
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\alg.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-082a781d-32ca-4e36-8411-490fcfdb8d99 -SystemEventPortName:HostProcess-145ee8b7-f449-4272-8e98-f25e3a6c60bd -IoCancelEventPortName:HostProcess-1bea78d6-3ef3-4653-a4ef-68b5421db499 -NonStateChangingEventPortName:HostProcess-f8f07e3d-876e-4b2f-b19a-2d7ed3a264f8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b7a01bc9-61a0-490c-9065-74f897fa96eb -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe"
"C:\Program Files\Realtek\RtVOsd\RtVOsd.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForclothilde.job
C:\Windows\tasks\ReclaimerUpdateFiles_clothilde.job
C:\Windows\tasks\ReclaimerUpdateXML_clothilde.job
C:\Windows\tasks\RNUpgradeHelperLogonPrompt_clothilde.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-24 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-24 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
!{3bbd3c14-4c16-4989-8366-95bc9179779d}
!{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
!{8dcb7100-df86-4384-8842-8fa844297b3f}
!{95B7759C-8C7F-4BF1-B163-73684A933233}
!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
!{3bbd3c14-4c16-4989-8366-95bc9179779d}
!{48586425-6bb7-4f51-8dc6-38c88e3ebb58}
!{8dcb7100-df86-4384-8842-8fa844297b3f}
!{95B7759C-8C7F-4BF1-B163-73684A933233}
!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-24 6489704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2013-05-08 41056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bing Bar]
C:\Program Files (x86)\MSN Toolbar\Platform\5.0.1438.0\mswinext.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DATAMNGR]
C:\PROGRA~2\SEARCH~1\Datamngr\DATAMN~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Easybits Recovery]
C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\clothilde\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Quick Launch]
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPAdvisorDock]
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-06-18 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-05-19 2736128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Online Backup]
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1]
C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe / /PROMPT /CMPID=ROC_JULY_P1 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_ssl_v12]
C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe / /PROMPT /CMPID=roc_ssl_v12 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-06-17 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-07-24 2281256]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe -osboot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter Search Scope Monitor]
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe /m=2 /w /h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VideoDownloadConverter_4z Browser Plugin Loader]
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^clothilde^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-07-26 345144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2013-08-06 23:30:36 ----D---- C:\rsit
2013-08-05 00:42:14 ----A---- C:\AdwCleaner[S1].txt
2013-08-01 19:35:19 ----A---- C:\AdwCleaner[R1].txt
2013-08-01 19:06:56 ----A---- C:\avg_remover_stf_x86_2013_3341.exe
2013-08-01 16:00:17 ----D---- C:\rsit1
2013-08-01 16:00:17 ----D---- C:\Program Files\trend micro
2013-08-01 16:00:11 ----A---- C:\RSITx64.exe
2013-08-01 02:27:01 ----RA---- C:\acdseepro.exe
2013-08-01 02:21:56 ----D---- C:\Windows\Downloaded Installations
2013-07-27 01:47:34 ----D---- C:\Vyměnitelný disk
2013-07-27 01:22:55 ----D---- C:\Users\clothilde\AppData\Roaming\Opera
2013-07-26 08:56:39 ----D---- C:\ProgramData\Synetic
2013-07-26 08:54:47 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-07-26 08:54:47 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-07-26 08:54:46 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-07-26 08:54:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-07-26 08:54:46 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-07-26 08:54:46 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-07-26 08:54:45 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-07-26 08:54:45 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-07-26 08:54:45 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-07-26 08:54:45 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-07-26 08:54:44 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-07-26 08:54:44 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-07-26 08:54:44 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-07-26 08:54:44 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-07-26 08:54:43 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-07-26 08:54:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-07-26 08:54:43 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-07-26 08:54:43 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-07-26 08:54:42 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-07-26 08:54:42 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-07-26 08:54:40 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-07-26 08:54:40 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-07-26 08:54:40 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-07-26 08:54:40 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-07-26 08:54:39 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-07-26 08:54:39 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-07-26 08:54:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-07-26 08:54:38 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-07-26 08:54:38 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-07-26 08:54:38 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-07-26 08:54:38 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-07-26 08:54:38 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-07-26 08:54:37 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-07-26 08:54:37 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-07-26 08:54:36 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-07-26 08:54:36 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-07-26 08:54:36 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-07-26 08:54:36 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-07-26 08:54:35 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-07-26 08:54:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-07-26 08:54:35 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-07-26 08:54:35 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-07-26 08:54:34 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-07-26 08:54:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-07-26 08:54:34 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-07-26 08:54:34 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-07-26 08:54:32 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-07-26 08:54:32 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-07-26 08:54:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-07-26 08:54:32 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-07-26 08:54:32 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-07-26 08:54:32 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-07-26 08:54:31 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-07-26 08:54:31 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-07-26 08:54:30 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-07-26 08:54:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-07-26 08:54:30 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-07-26 08:54:30 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-07-26 08:54:29 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-07-26 08:54:29 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-07-26 08:54:28 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-07-26 08:54:28 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-07-26 08:54:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-07-26 08:54:28 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-07-26 08:54:28 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-07-26 08:54:28 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-07-26 08:54:27 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-07-26 08:54:27 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-07-26 08:54:26 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-07-26 08:54:26 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-07-26 08:54:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-07-26 08:54:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-07-26 08:54:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-07-26 08:54:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-07-26 08:54:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-07-26 08:54:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-07-26 08:54:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-07-26 08:54:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-07-26 08:54:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-07-26 08:54:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-07-26 08:54:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-07-26 08:54:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-07-26 08:54:22 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-07-26 08:54:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-07-26 08:54:22 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-07-26 08:54:22 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-07-26 08:54:20 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-07-26 08:54:20 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-07-26 08:54:18 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-07-26 08:54:18 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-07-26 08:54:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-07-26 08:54:18 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-07-26 08:54:18 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-07-26 08:54:18 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-07-26 08:54:17 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-07-26 08:54:17 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-07-26 08:54:15 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-07-26 08:54:15 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-07-26 08:54:15 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-07-26 08:54:15 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-07-26 08:54:13 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-07-26 08:54:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-07-26 08:54:13 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-07-26 08:54:13 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-07-26 08:54:12 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2013-07-26 08:54:12 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-07-26 08:54:12 ----A---- C:\Windows\system32\xinput1_3.dll
2013-07-26 08:54:12 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-07-26 08:54:11 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-07-26 08:54:11 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-07-26 08:54:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-07-26 08:54:11 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-07-26 08:54:11 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-07-26 08:54:11 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-07-26 08:54:10 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-07-26 08:54:10 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-07-26 08:54:10 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-07-26 08:54:10 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-07-26 08:54:08 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-07-26 08:54:08 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-07-26 08:54:08 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-07-26 08:54:08 ----A---- C:\Windows\system32\d3dx10.dll
2013-07-26 08:54:06 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-07-26 08:54:06 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-07-26 08:54:04 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-07-26 08:54:04 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-07-26 08:54:04 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-07-26 08:54:04 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-07-26 08:54:03 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-07-26 08:54:03 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-07-26 08:54:00 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-07-26 08:54:00 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-07-26 08:54:00 ----A---- C:\Windows\system32\xinput1_2.dll
2013-07-26 08:54:00 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-07-26 08:53:58 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-07-26 08:53:58 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-07-26 08:53:57 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-07-26 08:53:57 ----A---- C:\Windows\system32\xinput1_1.dll
2013-07-26 08:53:53 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-07-26 08:53:53 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-07-26 08:53:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-07-26 08:53:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-07-26 08:53:34 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-07-26 08:53:34 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-07-26 08:53:34 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-07-26 08:53:34 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-07-26 08:53:34 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-07-26 08:53:34 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-07-26 08:53:33 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-07-26 08:53:33 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-07-26 08:53:32 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-07-26 08:53:32 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-07-26 08:53:32 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-07-26 08:53:32 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-07-26 08:53:31 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-07-26 08:53:31 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-07-26 08:53:28 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-07-26 08:53:28 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-07-26 07:52:48 ----D---- C:\tu
2013-07-26 07:51:47 ----A---- C:\setup.exe
2013-07-26 06:41:38 ----D---- C:\Program Files (x86)\Crash Time III
2013-07-26 04:55:19 ----D---- C:\Users\clothilde\AppData\Roaming\Opera Software
2013-07-26 04:55:07 ----D---- C:\Program Files (x86)\Opera
2013-07-26 04:55:02 ----D---- C:\Users\clothilde\AppData\Roaming\Avira
2013-07-26 04:49:54 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-07-26 04:48:39 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-07-26 04:48:39 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-07-26 04:48:38 ----D---- C:\ProgramData\Avira
2013-07-26 04:48:38 ----D---- C:\Program Files (x86)\Avira
2013-07-26 04:48:38 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-07-26 04:05:29 ----SHD---- C:\Config.Msi
2013-07-26 03:48:52 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-07-26 03:40:44 ----D---- C:\Windows\system32\MRT
2013-07-26 00:37:41 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-07-26 00:37:40 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-07-26 00:28:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-07-26 00:28:15 ----A---- C:\Windows\system32\DWrite.dll
2013-07-25 10:57:20 ----D---- C:\Users\clothilde\AppData\Roaming\Malwarebytes
2013-07-25 10:56:20 ----D---- C:\ProgramData\Malwarebytes
2013-07-25 10:56:16 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-25 10:56:16 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-07-25 07:45:25 ----A---- C:\Windows\system32\perfi005.dat
2013-07-25 07:45:23 ----A---- C:\Windows\system32\perfh005.dat
2013-07-25 07:45:23 ----A---- C:\Windows\system32\perfd005.dat
2013-07-25 07:45:23 ----A---- C:\Windows\system32\perfc005.dat
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\en
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\cs
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\0409
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2013-07-25 07:32:45 ----D---- C:\Windows\cs-CZ
2013-07-25 07:32:42 ----D---- C:\Windows\system32\en
2013-07-25 07:32:42 ----D---- C:\Windows\system32\cs
2013-07-25 07:32:42 ----D---- C:\Windows\system32\0409
2013-07-25 07:32:08 ----D---- C:\Windows\system32\drivers\en-US
2013-07-25 07:32:08 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-07-25 06:23:50 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-25 06:23:48 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-07-25 06:23:47 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-07-25 06:23:47 ----A---- C:\Windows\system32\elshyph.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-07-25 06:23:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-07-25 06:23:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-07-25 06:23:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-07-25 06:23:45 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-07-25 06:23:45 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-07-25 06:23:45 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-07-25 06:23:44 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\url.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-07-25 06:23:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-07-25 06:23:42 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-25 06:23:42 ----A---- C:\Windows\system32\iertutil.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\wininet.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\webcheck.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\urlmon.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\url.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\msrating.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\msls31.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\mshtmled.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\licmgr10.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\inseng.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\iesetup.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\iernonce.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\iedkcs32.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\ieapfltr.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\ieapfltr.dat
2013-07-25 06:23:41 ----A---- C:\Windows\system32\ie4uinit.exe
2013-07-25 06:23:41 ----A---- C:\Windows\system32\icardie.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\dxtrans.dll
2013-07-25 06:23:41 ----A---- C:\Windows\system32\dxtmsft.dll
2013-07-25 06:23:40 ----A---- C:\Windows\system32\wextract.exe
2013-07-25 06:23:40 ----A---- C:\Windows\system32\vbscript.dll
2013-07-25 06:23:40 ----A---- C:\Windows\system32\mshtml.dll
2013-07-25 06:23:40 ----A---- C:\Windows\system32\msfeeds.dll
2013-07-25 06:23:40 ----A---- C:\Windows\system32\iexpress.exe
2013-07-25 06:23:39 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-07-25 06:23:39 ----A---- C:\Windows\system32\pngfilt.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\occache.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\mshtmler.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\mshta.exe
2013-07-25 06:23:39 ----A---- C:\Windows\system32\msfeedssync.exe
2013-07-25 06:23:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\jscript9.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\jscript.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\imgutil.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\ieUnatt.exe
2013-07-25 06:23:39 ----A---- C:\Windows\system32\ieui.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\iesysprep.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\iepeers.dll
2013-07-25 06:23:39 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-07-25 06:23:38 ----A---- C:\Windows\system32\ieframe.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 06:17:02 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-25 06:17:01 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-07-25 06:17:01 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\XpsPrint.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\WMPhoto.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\FntCache.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\dxgi.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d3d10warp.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d3d10core.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d3d10_1.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d3d10.dll
2013-07-25 06:17:01 ----A---- C:\Windows\system32\d2d1.dll
2013-07-25 06:17:00 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-07-25 06:17:00 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-07-25 06:17:00 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-07-25 06:17:00 ----A---- C:\Windows\system32\UIAnimation.dll
2013-07-25 06:17:00 ----A---- C:\Windows\system32\d3d10level9.dll
2013-07-24 17:27:21 ----A---- C:\Windows\SYSWOW64\SynTPCOM.dll
2013-07-24 17:27:20 ----A---- C:\Windows\system32\SynTPCo4.dll
2013-07-24 17:27:20 ----A---- C:\Windows\system32\SynTPAPI.dll
2013-07-24 17:27:20 ----A---- C:\Windows\system32\drivers\SynTP.sys
2013-07-24 17:27:16 ----A---- C:\Windows\SYSWOW64\SynCtrl.dll
2013-07-24 17:27:16 ----A---- C:\Windows\SYSWOW64\SynCOM.dll
2013-07-24 17:27:16 ----A---- C:\Windows\system32\SynCtrl.dll
2013-07-24 17:27:16 ----A---- C:\Windows\system32\SynCOM.dll
2013-07-24 17:13:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-07-24 12:22:12 ----A---- C:\Windows\system32\qedit.dll
2013-07-24 12:22:11 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-07-24 12:21:21 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-07-24 12:21:19 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-07-24 12:15:10 ----A---- C:\Windows\system32\win32k.sys
2013-07-24 10:09:15 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-07-24 10:09:15 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-07-24 10:09:01 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-07-24 10:09:01 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-07-24 10:09:01 ----A---- C:\Windows\SYSWOW64\java.exe
2013-07-24 08:32:08 ----D---- C:\Windows\pss
2013-07-24 08:19:55 ----D---- C:\Program Files\CCleaner
2013-07-24 08:18:36 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-07-24 08:18:35 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-07-24 08:18:34 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-07-24 08:18:32 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-07-24 08:18:31 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-07-24 08:18:31 ----A---- C:\Windows\system32\RtkApi64.dll
2013-07-24 08:18:22 ----A---- C:\Windows\system32\RTCOM64.dll
2013-07-24 08:18:20 ----A---- C:\Windows\system32\RCoInst64.dll
2013-07-24 08:17:09 ----A---- C:\Windows\system32\AERTAC64.dll
2013-07-24 06:42:13 ----D---- C:\Program Files (x86)\WildTangent Games
2013-07-24 05:43:09 ----SHD---- C:\found.000
2013-07-15 23:02:10 ----A---- C:\Windows\system32\win32spl.dll
2013-07-15 23:02:09 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-07-15 23:02:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-07-15 23:01:50 ----A---- C:\Windows\system32\cryptdlg.dll
2013-07-15 23:01:49 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-07-15 22:58:38 ----A---- C:\Windows\system32\certutil.exe
2013-07-15 22:58:36 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-07-15 22:58:36 ----A---- C:\Windows\system32\crypt32.dll
2013-07-15 22:58:35 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-07-15 22:58:34 ----A---- C:\Windows\system32\cryptsvc.dll
2013-07-15 22:58:34 ----A---- C:\Windows\system32\cryptnet.dll
2013-07-15 22:58:33 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-07-15 22:58:33 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-07-15 22:58:32 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-07-15 22:58:32 ----A---- C:\Windows\system32\certenc.dll
2013-07-15 22:57:31 ----A---- C:\Windows\system32\d3d11.dll
2013-07-15 22:57:30 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-05-21 17:56:36 ----D---- C:\ubuntu
2013-05-21 16:52:20 ----D---- C:\429a12b48dde83de87406c
2013-05-18 01:15:36 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-18 01:15:35 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-18 01:15:35 ----A---- C:\Windows\system32\cdd.dll
2013-05-18 01:15:04 ----A---- C:\Windows\system32\shell32.dll
2013-05-18 01:14:59 ----A---- C:\Windows\system32\authui.dll
2013-05-18 01:14:57 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-18 01:14:55 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-18 01:14:54 ----A---- C:\Windows\system32\consent.exe
2013-05-18 01:14:53 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-18 01:14:52 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-18 01:14:52 ----A---- C:\Windows\system32\appinfo.dll
2013-05-18 01:14:07 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-18 01:14:07 ----A---- C:\Windows\system32\wwanprotdim.dll

======List of files/folders modified in the last 3 months======

2013-08-06 23:55:27 ----D---- C:\Windows\Temp
2013-08-06 23:54:34 ----D---- C:\Windows\Prefetch
2013-08-06 23:53:29 ----D---- C:\Program Files (x86)\HP Games
2013-08-06 19:19:30 ----D---- C:\Windows\inf
2013-08-06 14:07:13 ----D---- C:\Windows\system32\config
2013-08-06 13:55:00 ----SHD---- C:\System Volume Information
2013-08-05 15:37:02 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-08-05 00:42:24 ----HD---- C:\ProgramData
2013-08-05 00:42:24 ----D---- C:\Program Files (x86)\Common Files
2013-08-05 00:42:24 ----D---- C:\Program Files (x86)
2013-08-05 00:31:47 ----D---- C:\Windows
2013-08-03 18:40:37 ----D---- C:\Users\clothilde\AppData\Roaming\vlc
2013-08-02 22:16:55 ----D---- C:\Windows\System32
2013-08-02 22:16:55 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-01 19:28:02 ----D---- C:\Windows\Tasks
2013-08-01 19:28:02 ----D---- C:\Windows\SysWOW64
2013-08-01 16:00:17 ----RD---- C:\Program Files
2013-07-29 20:06:59 ----D---- C:\Windows\system32\NDF
2013-07-27 04:02:05 ----SHD---- C:\Windows\Installer
2013-07-27 04:01:03 ----D---- C:\Windows\system32\catroot2
2013-07-27 01:21:03 ----D---- C:\Windows\Logs
2013-07-26 19:25:14 ----D---- C:\Windows\system32\Tasks
2013-07-26 08:53:53 ----RSD---- C:\Windows\assembly
2013-07-26 08:53:43 ----D---- C:\Windows\Microsoft.NET
2013-07-26 08:51:09 ----D---- C:\Windows\winsxs
2013-07-26 04:49:54 ----D---- C:\Windows\system32\drivers
2013-07-26 04:49:01 ----D---- C:\Windows\system32\catroot
2013-07-26 04:23:36 ----D---- C:\Program Files (x86)\Adobe
2013-07-26 04:20:16 ----D---- C:\Program Files (x86)\Google
2013-07-26 04:18:30 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2013-07-26 04:15:13 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-07-26 04:07:23 ----D---- C:\Windows\Panther
2013-07-26 04:07:22 ----D---- C:\Windows\debug
2013-07-26 04:06:02 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-07-26 04:05:22 ----D---- C:\Program Files (x86)\Microsoft
2013-07-26 03:06:48 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-07-26 03:06:48 ----D---- C:\Windows\system32\cs-CZ
2013-07-26 03:06:46 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-07-26 03:06:46 ----D---- C:\Windows\system32\fr-FR
2013-07-25 09:50:01 ----D---- C:\SwSetup
2013-07-25 09:11:00 ----SD---- C:\ProgramData\Microsoft
2013-07-25 09:10:49 ----SD---- C:\Users\clothilde\AppData\Roaming\Microsoft
2013-07-25 07:34:10 ----D---- C:\Windows\AppPatch
2013-07-25 07:34:10 ----D---- C:\Program Files\Windows Defender
2013-07-25 07:34:10 ----D---- C:\Program Files (x86)\Windows Defender
2013-07-25 07:34:08 ----D---- C:\Program Files (x86)\Internet Explorer
2013-07-25 07:34:07 ----D---- C:\Program Files\Internet Explorer
2013-07-25 07:34:06 ----D---- C:\Windows\SYSWOW64\migration
2013-07-25 07:34:05 ----D---- C:\Windows\SYSWOW64\en-US
2013-07-25 07:34:01 ----D---- C:\Windows\system32\migration
2013-07-25 07:34:01 ----D---- C:\Windows\PolicyDefinitions
2013-07-25 07:34:00 ----D---- C:\Windows\system32\en-US
2013-07-25 07:33:56 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-07-25 07:33:56 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-07-25 07:33:56 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-07-25 07:33:56 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-07-25 07:33:56 ----D---- C:\Windows\SYSWOW64\it-IT
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\es-ES
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\el-GR
2013-07-25 07:33:55 ----D---- C:\Windows\SYSWOW64\de-DE
2013-07-25 07:33:54 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-07-25 07:33:54 ----D---- C:\Windows\SYSWOW64\da-DK
2013-07-25 07:33:54 ----D---- C:\Windows\system32\pt-PT
2013-07-25 07:33:54 ----D---- C:\Windows\system32\pt-BR
2013-07-25 07:33:54 ----D---- C:\Windows\system32\it-IT
2013-07-25 07:33:53 ----D---- C:\Windows\system32\zh-TW
2013-07-25 07:33:53 ----D---- C:\Windows\system32\zh-HK
2013-07-25 07:33:53 ----D---- C:\Windows\system32\zh-CN
2013-07-25 07:33:53 ----D---- C:\Windows\system32\tr-TR
2013-07-25 07:33:53 ----D---- C:\Windows\system32\sv-SE
2013-07-25 07:33:53 ----D---- C:\Windows\system32\pl-PL
2013-07-25 07:33:53 ----D---- C:\Windows\system32\nl-NL
2013-07-25 07:33:53 ----D---- C:\Windows\system32\ko-KR
2013-07-25 07:33:53 ----D---- C:\Windows\system32\ja-JP
2013-07-25 07:33:53 ----D---- C:\Windows\system32\hu-HU
2013-07-25 07:33:53 ----D---- C:\Windows\system32\fi-FI
2013-07-25 07:33:53 ----D---- C:\Windows\system32\es-ES
2013-07-25 07:33:53 ----D---- C:\Windows\system32\el-GR
2013-07-25 07:33:53 ----D---- C:\Windows\system32\de-DE
2013-07-25 07:33:52 ----D---- C:\Windows\system32\ru-RU
2013-07-25 07:33:52 ----D---- C:\Windows\system32\nb-NO
2013-07-25 07:33:52 ----D---- C:\Windows\system32\da-DK
2013-07-25 07:33:32 ----D---- C:\Program Files\Windows Sidebar
2013-07-25 07:33:31 ----D---- C:\Program Files\Windows Photo Viewer
2013-07-25 07:33:31 ----D---- C:\Program Files\Windows Media Player
2013-07-25 07:33:31 ----D---- C:\Program Files\Windows Mail
2013-07-25 07:33:31 ----D---- C:\Program Files\DVD Maker
2013-07-25 07:33:31 ----D---- C:\Program Files\Common Files\System
2013-07-25 07:33:30 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-07-25 07:33:30 ----D---- C:\Program Files (x86)\Windows Mail
2013-07-25 07:33:29 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-07-25 07:33:29 ----D---- C:\Program Files (x86)\Windows Media Player
2013-07-25 07:33:28 ----D---- C:\Windows\servicing
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\winrm
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\sysprep
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\slmgr
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\Setup
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\oobe
2013-07-25 07:33:22 ----D---- C:\Windows\SYSWOW64\migwiz
2013-07-25 07:33:22 ----D---- C:\Windows\ehome
2013-07-25 07:32:51 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\WCN
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\MUI
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\drivers\UMDF
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\drivers
2013-07-25 07:32:49 ----D---- C:\Windows\SYSWOW64\Dism
2013-07-25 07:32:46 ----D---- C:\Windows\SYSWOW64\wbem
2013-07-25 07:32:45 ----D---- C:\Windows\SYSWOW64\com
2013-07-25 07:32:44 ----D---- C:\Windows\IME
2013-07-25 07:32:43 ----D---- C:\Windows\system32\winrm
2013-07-25 07:32:43 ----D---- C:\Windows\system32\migwiz
2013-07-25 07:32:42 ----D---- C:\Windows\system32\sysprep
2013-07-25 07:32:42 ----D---- C:\Windows\system32\slmgr
2013-07-25 07:32:42 ----D---- C:\Windows\system32\Setup
2013-07-25 07:32:42 ----D---- C:\Windows\system32\oobe
2013-07-25 07:32:42 ----D---- C:\Windows\system32\Boot
2013-07-25 07:32:08 ----D---- C:\Windows\system32\drivers\UMDF
2013-07-25 07:32:06 ----D---- C:\Windows\system32\WCN
2013-07-25 07:32:06 ----D---- C:\Windows\system32\MUI
2013-07-25 07:32:06 ----D---- C:\Windows\system32\Dism
2013-07-25 07:31:55 ----D---- C:\Windows\system32\DriverStore
2013-07-25 07:31:47 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-07-25 07:31:45 ----D---- C:\Windows\system32\wbem
2013-07-25 07:31:44 ----D---- C:\Windows\system32\com
2013-07-24 21:03:51 ----D---- C:\Windows\rescache
2013-07-24 19:21:54 ----D---- C:\ProgramData\WildTangent
2013-07-24 19:05:03 ----D---- C:\Program Files (x86)\AnglaisFacile.com
2013-07-24 18:17:48 ----RSD---- C:\Windows\Fonts
2013-07-24 17:21:37 ----D---- C:\Program Files (x86)\Bing Bar Installer
2013-07-24 17:20:22 ----D---- C:\Program Files\Common Files
2013-07-24 13:56:59 ----D---- C:\Windows\Minidump
2013-07-24 11:19:28 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-07-24 11:17:25 ----DC---- C:\Windows\system32\DRVSTORE
2013-07-24 11:04:30 ----D---- C:\Program Files (x86)\QuickTime
2013-07-24 10:59:32 ----D---- C:\Program Files (x86)\Real
2013-07-24 10:59:25 ----D---- C:\ProgramData\Real
2013-07-24 10:52:03 ----D---- C:\Users\clothilde\AppData\Roaming\SoftGrid Client
2013-07-24 10:08:43 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-07-24 10:08:38 ----D---- C:\Program Files (x86)\Java
2013-07-24 08:26:41 ----HD---- C:\Program Files (x86)\Temp
2013-07-24 08:22:03 ----D---- C:\Program Files\Realtek
2013-07-24 08:20:33 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-07-24 08:11:04 ----A---- C:\Windows\RtlExUpd.dll
2013-07-24 06:48:25 ----D---- C:\Users\clothilde\AppData\Roaming\WildTangent
2013-06-24 01:57:12 ----A---- C:\Windows\system32\MRT.exe
2013-05-22 02:36:08 ----D---- C:\ProgramData\Recovery

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-24 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-07-26 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-07-26 28600]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-07-26 100712]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-06-17 6403072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-06-17 188928]
R3 BCM43XX;Pilote pour carte réseau Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2010-09-15 3060800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-07-24 2494056]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-23 347680]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-07-24 1390640]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-05-11 99384]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-06-10 6108416]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-05-11 203320]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-06-17 202752]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-07-26 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-07-26 84024]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-06-18 103992]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]




R2 RtVOsdService;RtVOsdService Installer; C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe [2010-06-24 315392]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-26 257416]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-14 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-26 589368]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]

-----------------EOF-----------------

[Roli]

Co se týče zrychlení PC přes externí úložiště bych neviděl jako kdoví jak úžasné, spíše bych rozšířil RAM.


Tohle fixni v HJT :

O3 - Toolbar: (no name) - !{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
O3 - Toolbar: (no name) - !{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
O3 - Toolbar: (no name) - !{8dcb7100-df86-4384-8842-8fa844297b3f} - (no file)
O3 - Toolbar: (no name) - !{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O3 - Toolbar: (no name) - !{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)

jak na to jsem již psal.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

[kompak]

diky, na pamet ted neni a i se starsi 2GB flashkou (to ma doma kdekdo) jsem pozoroval narust rychlosti, treba u nacitani opakovaneho, takze mi vadi jen to, ze zabira port...

kdyz jsem dal sken hned po fixu, bylo to tam znova, kdyz dam ted, je to tam jakt to?




ComboFix 13-08-09.02 - clothilde 10.08.2013 1:08.2.1 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1029.18.1787.718 [GMT 2:00]
Running from: c:\users\clothilde\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2013-07-09 to 2013-08-09 )))))))))))))))))))))))))))))))
.
.
2013-08-09 23:18 . 2013-08-09 23:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-09 22:49 . 2013-08-09 22:49 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E21A0A48-A771-4356-A2AB-330F4C1BFB16}\offreg.dll
2013-08-09 13:18 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E21A0A48-A771-4356-A2AB-330F4C1BFB16}\mpengine.dll
2013-08-06 21:30 . 2013-08-06 21:30 -------- d-----w- C:\rsit
2013-08-01 17:06 . 2013-08-01 17:06 3529160 ----a-w- C:\avg_remover_stf_x86_2013_3341.exe
2013-08-01 14:00 . 2013-08-09 23:01 -------- d-----w- c:\program files\trend micro
2013-08-01 14:00 . 2013-08-01 14:00 935175 ----a-w- C:\RSITx64.exe
2013-08-01 00:27 . 2012-03-26 06:49 26666200 ----a-r- C:\acdseepro.exe
2013-08-01 00:21 . 2013-08-01 00:21 -------- d-----w- c:\windows\Downloaded Installations
2013-07-27 01:31 . 2013-07-27 01:31 -------- d-----w- c:\users\clothilde\AppData\Local\Chromium
2013-07-26 23:47 . 2013-07-27 01:26 -------- d-----w-itelný disk C:\VYMNIT~1
2013-07-26 23:22 . 2013-07-26 23:22 -------- d-----w- c:\users\clothilde\AppData\Local\Opera
2013-07-26 06:56 . 2013-07-26 06:56 -------- d-----w- c:\programdata\Synetic
2013-07-26 05:52 . 2013-07-26 06:01 -------- d-----w- C:\tu
2013-07-26 05:51 . 2009-11-27 21:24 499995605 ----a-w- C:\setup-1.bin
2013-07-26 04:41 . 2013-07-26 04:43 -------- d-----w- c:\program files (x86)\Crash Time III
2013-07-26 02:55 . 2013-07-26 23:19 -------- d-----w- c:\users\clothilde\AppData\Local\Opera Software
2013-07-26 02:55 . 2013-07-26 23:19 -------- d-----w- c:\users\clothilde\AppData\Roaming\Opera Software
2013-07-26 02:55 . 2013-07-26 23:22 -------- d-----w- c:\program files (x86)\Opera
2013-07-26 02:55 . 2013-07-26 02:55 -------- d-----w- c:\users\clothilde\AppData\Roaming\Avira
2013-07-26 02:49 . 2013-07-26 02:49 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-07-26 02:48 . 2013-07-26 02:46 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-07-26 02:48 . 2013-07-26 02:46 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-07-26 02:48 . 2013-07-26 02:48 -------- d-----w- c:\programdata\Avira
2013-07-26 02:48 . 2013-07-26 02:48 -------- d-----w- c:\program files (x86)\Avira
2013-07-26 02:48 . 2013-07-26 02:46 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-07-26 01:48 . 2013-07-26 01:48 -------- d-s---w- c:\windows\SysWow64\Microsoft
2013-07-26 01:40 . 2013-07-26 01:43 -------- d-----w- c:\windows\system32\MRT
2013-07-25 22:37 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-07-25 22:37 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-07-25 22:28 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
2013-07-25 22:28 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2013-07-25 08:57 . 2013-07-25 08:57 -------- d-----w- c:\users\clothilde\AppData\Roaming\Malwarebytes
2013-07-25 08:56 . 2013-07-25 08:56 -------- d-----w- c:\programdata\Malwarebytes
2013-07-25 08:56 . 2013-07-25 08:56 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-25 08:56 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-25 08:51 . 2013-07-25 08:51 -------- d-----w- c:\users\clothilde\AppData\Local\Programs
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\en
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\cs
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\0409
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\drivers\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\drivers\UMDF\en-US
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\wbem\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\en
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\cs
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\0409
2013-07-25 05:32 . 2013-07-26 01:06 -------- d-----w- c:\windows\system32\drivers\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\UMDF\en-US
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\UMDF\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\en-US
2013-07-25 05:31 . 2013-07-25 05:31 -------- d-----w- c:\windows\system32\wbem\cs-CZ
2013-07-25 04:17 . 2013-07-25 04:17 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 04:01 . 2013-07-25 04:01 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\cs-CZ\LXKPTPRC.DLL.mui
2013-07-24 15:27 . 2013-07-24 15:26 107816 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2013-07-24 15:27 . 2013-07-24 15:26 215336 ----a-w- c:\windows\system32\SynTPAPI.dll
2013-07-24 15:27 . 2013-07-24 15:26 147752 ----a-w- c:\windows\system32\SynTPCo4.dll
2013-07-24 15:27 . 2013-07-24 15:26 1390640 ----a-w- c:\windows\system32\drivers\SynTP.sys
2013-07-24 15:27 . 2013-07-24 15:26 271144 ----a-w- c:\windows\system32\SynCtrl.dll
2013-07-24 15:27 . 2013-07-24 15:26 214312 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2013-07-24 15:27 . 2013-07-24 15:26 173352 ----a-w- c:\windows\SysWow64\SynCOM.dll
2013-07-24 15:27 . 2013-07-24 15:26 400168 ----a-w- c:\windows\system32\SynCOM.dll
2013-07-24 15:13 . 2013-07-26 17:25 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-07-24 10:22 . 2013-05-27 05:50 1011712 ----a-w- c:\program files\Windows Defender\MpSvc.dll
2013-07-24 10:22 . 2013-05-27 05:50 571904 ----a-w- c:\program files\Windows Defender\MpClient.dll
2013-07-24 10:22 . 2013-05-27 04:57 392704 ----a-w- c:\program files (x86)\Windows Defender\MpClient.dll
2013-07-24 10:22 . 2013-05-27 05:50 314880 ----a-w- c:\program files\Windows Defender\MpCommu.dll
2013-07-24 10:22 . 2013-05-27 04:57 54784 ----a-w- c:\program files (x86)\Windows Defender\MpOAV.dll
2013-07-24 10:22 . 2013-05-27 04:57 4608 ----a-w- c:\program files (x86)\Windows Defender\MsMpLics.dll
2013-07-24 10:22 . 2013-05-27 03:15 9216 ----a-w- c:\program files (x86)\Windows Defender\MpAsDesc.dll
2013-07-24 10:22 . 2013-06-04 06:00 624128 ----a-w- c:\windows\system32\qedit.dll
2013-07-24 10:22 . 2013-06-04 04:53 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-07-24 10:21 . 2013-05-06 06:03 1887744 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-07-24 10:21 . 2013-05-06 04:56 1620480 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-07-24 10:15 . 2013-06-05 03:34 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-07-24 10:15 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-07-24 10:14 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-07-24 08:09 . 2013-07-24 08:09 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-07-24 08:09 . 2013-07-24 08:08 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-07-24 08:09 . 2013-07-24 08:08 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-24 06:19 . 2013-07-24 06:20 -------- d-----w- c:\program files\CCleaner
2013-07-24 06:18 . 2013-07-24 06:12 1146984 ----a-w- c:\windows\system32\RTSnMg64.cpl
2013-07-24 06:18 . 2013-07-24 06:12 2048104 ----a-w- c:\windows\system32\RtPgEx64.dll
2013-07-24 06:18 . 2013-07-24 06:12 332392 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2013-07-24 06:18 . 2013-07-24 06:12 2494056 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2013-07-24 06:18 . 2013-07-24 06:12 149608 ----a-w- c:\windows\system32\RtkCfg64.dll
2013-07-24 06:18 . 2013-07-24 06:12 2625640 ----a-w- c:\windows\system32\RtkAPO64.dll
2013-07-24 06:18 . 2013-07-24 06:12 569960 ----a-w- c:\windows\system32\RtkApi64.dll
2013-07-24 06:18 . 2013-07-24 06:12 1215592 ----a-w- c:\windows\system32\RTCOM64.dll
2013-07-24 06:18 . 2013-07-24 06:12 80488 ----a-w- c:\windows\system32\RCoInst64.dll
2013-07-24 06:17 . 2013-07-24 06:11 200800 ----a-w- c:\windows\system32\AERTAC64.dll
2013-07-24 04:42 . 2013-07-24 04:44 -------- d-----w- c:\program files (x86)\WildTangent Games
2013-07-24 03:43 . 2013-07-24 03:43 -------- d-----w- C:\found.000
2013-07-15 21:02 . 2013-04-26 05:51 751104 ----a-w- c:\windows\system32\win32spl.dll
2013-07-15 21:02 . 2013-04-26 04:55 492544 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-07-15 21:02 . 2013-05-08 06:39 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-07-15 21:01 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-07-15 21:01 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-07-15 20:58 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-07-15 20:58 . 2013-05-13 05:51 1464320 ----a-w- c:\windows\system32\crypt32.dll
2013-07-15 20:58 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-07-15 20:58 . 2013-05-13 04:45 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-15 20:58 . 2013-05-13 05:51 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-15 20:58 . 2013-05-13 05:51 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-07-15 20:58 . 2013-05-13 04:45 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-07-15 20:58 . 2013-05-13 04:45 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-07-15 20:58 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-07-15 20:58 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-07-15 20:57 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-07-15 20:57 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-26 17:25 . 2012-02-12 17:28 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-25 04:01 . 2013-07-25 04:01 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2013-07-25 04:00 . 2013-07-25 04:00 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2013-07-25 04:00 . 2013-07-25 04:00 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2013-07-25 03:59 . 2013-07-25 03:59 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2013-07-25 03:59 . 2013-07-25 03:59 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2013-07-25 03:59 . 2013-07-25 03:59 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
2013-07-24 08:08 . 2010-07-12 20:35 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-07-24 06:11 . 2010-09-14 23:41 1251944 ----a-w- c:\windows\RtlExUpd.dll
2013-06-23 23:57 . 2011-02-28 03:02 78277128 ----a-w- c:\windows\system32\MRT.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-07-26 345144]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\system32\userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-05-19 08:36 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-24 17:25]
.
2013-07-26 c:\windows\Tasks\HPCeeScheduleForclothilde.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 01:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-07-24 6489704]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.fr/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: Interfaces\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-!{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
Toolbar-!{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
Toolbar-!{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Toolbar-!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*p&w]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*p&w\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-08-10 01:33:05
ComboFix-quarantined-files.txt 2013-08-09 23:33
ComboFix2.txt 2013-08-09 22:57
.
Pre-Run: Volných bajtu: 221 415 018 496
Post-Run: Volných bajtu: 221 349 490 688
.
- - End Of File - - 0FA83A47AA2A8F37FF99924EE4AF4A30
D41D8CD98F00B204E9800998ECF8427E

[Roli]

diky, na pamet ted neni a i se starsi 2GB flashkou (to ma doma kdekdo) jsem pozoroval narust rychlosti, treba u nacitani opakovaneho, takze mi vadi jen to, ze zabira port...

Dobrá tak to tak nech, já jsem Ti řekl jen svůj názor na věc.

kdyz jsem dal sken hned po fixu, bylo to tam znova, kdyz dam ted, je to tam jakt to?

Spuštěn jako správce ?

Zkus spustit se zpětnou kompatibilitou a nebo vyber volbu Odstranit potíže z kompatibilitou.


Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:



Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci

[kompak]

CF se nechtelo dokoncit (mozna jsem moc necekal, kdyz se nic nedelo ale), ani kdyz jsem zkousel kompatibilitu jinou, nebo dat primo W7, po aktual. CF i Win a restartu to jelo, ale kdyz dam rsit, je to tam furt. zda se, ze s kompat to nema moc spolecneho...

dale me napada, ze mam plno programu zakazanych v ccleaneru po startu, rikam si, ze kdyz to jen pomazu, tak treba neco zbyde...

dale ve spravci uloh je nejak moc sluzeb jakoby, v tom se nevyznam, v XP to tam nebylo. taky kdyz dam procesy vsech uziv., je tam toho nejak moc, byl jsem zvykly na par spust. procesu

napada me,ze nemam zarizeni samsung, asi tam zbylo neco k telefonu.

a co treba framework, daji se odinst. predchozi verze?

co kdyz se zbavim IE? muze to mit nevyhody, ktere se nejaji lehce resit? napr. jsem cetl ze ACDsee potrebuje min IE7 uz pri instalaci, mozna i jine programy, nevim...prijde mi, ze to sebou nese plno nabalenych veci, ale ty mam asi vyple v ccleaneru,nevim...


asi jste se tim chtel zabyvat az po odstraneni toho toolbaru, takze kdyztak upresnete co s tou kompatibilitou, dkyz dam doporucene nast. napr., da to XPsp2 a pak jak to spustim, tak pise ze pg je jen pro uvedene systemy...ale tam jsou od 2000 vsechny, takze to nedava smysl



ComboFix 13-08-14.02 - clothilde 14.08.2013 18:56:50.4.1 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1029.18.1787.772 [GMT 2:00]
Running from: c:\users\clothilde\Desktop\ComboFix.exe
Command switches used :: c:\users\clothilde\Desktop\cfscript.txt.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2013-07-14 to 2013-08-14 )))))))))))))))))))))))))))))))
.
.
2013-08-14 17:06 . 2013-08-14 17:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-14 16:18 . 2013-08-14 16:18 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8CA0B853-7682-4C47-BCCE-D52A68581808}\offreg.dll
2013-08-14 14:08 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll
2013-08-14 14:08 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2013-08-14 14:08 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-08-14 14:08 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-08-14 14:08 . 2013-07-09 05:46 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-14 14:08 . 2013-07-09 05:46 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-14 14:08 . 2013-07-09 04:46 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-08-14 14:08 . 2013-07-09 04:46 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-08-14 14:05 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 14:05 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-14 13:48 . 2013-07-02 08:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8CA0B853-7682-4C47-BCCE-D52A68581808}\mpengine.dll
2013-08-10 02:37 . 2013-08-13 22:02 -------- d-----w- c:\users\clothilde\AppData\Local\ACD Systems
2013-08-10 02:37 . 2013-08-10 02:37 -------- d-----w- c:\users\clothilde\AppData\Roaming\ACD Systems
2013-08-10 02:35 . 2013-08-10 02:35 -------- d-----w- c:\programdata\ACD Systems
2013-08-10 02:34 . 2013-08-10 02:35 -------- d-----w- c:\program files (x86)\Common Files\ACD Systems
2013-08-10 02:34 . 2013-08-10 02:34 -------- d-----w- c:\program files (x86)\ACD Systems
2013-08-10 02:21 . 2013-08-10 02:21 -------- d-----w- c:\users\clothilde\AppData\Local\Downloaded Installations
2013-08-06 21:30 . 2013-08-06 21:30 -------- d-----w- C:\rsit
2013-08-01 14:00 . 2013-08-14 16:54 -------- d-----w- c:\program files\trend micro
2013-08-01 14:00 . 2013-08-01 14:00 935175 ----a-w- C:\RSITx64.exe
2013-08-01 00:27 . 2012-03-26 06:49 26666200 ----a-r- C:\acdseepro.exe
2013-08-01 00:21 . 2013-08-01 00:21 -------- d-----w- c:\windows\Downloaded Installations
2013-07-27 01:31 . 2013-07-27 01:31 -------- d-----w- c:\users\clothilde\AppData\Local\Chromium
2013-07-26 23:47 . 2013-07-27 01:26 -------- d-----w-itelný disk C:\VYMNIT~1
2013-07-26 23:22 . 2013-07-26 23:22 -------- d-----w- c:\users\clothilde\AppData\Local\Opera
2013-07-26 06:56 . 2013-07-26 06:56 -------- d-----w- c:\programdata\Synetic
2013-07-26 05:52 . 2013-07-26 06:01 -------- d-----w- C:\tu
2013-07-26 05:51 . 2009-11-27 21:24 499995605 ----a-w- C:\setup-1.bin
2013-07-26 04:41 . 2013-07-26 04:43 -------- d-----w- c:\program files (x86)\Crash Time III
2013-07-26 02:55 . 2013-07-26 23:19 -------- d-----w- c:\users\clothilde\AppData\Local\Opera Software
2013-07-26 02:55 . 2013-07-26 23:19 -------- d-----w- c:\users\clothilde\AppData\Roaming\Opera Software
2013-07-26 02:55 . 2013-07-26 23:22 -------- d-----w- c:\program files (x86)\Opera
2013-07-26 02:55 . 2013-07-26 02:55 -------- d-----w- c:\users\clothilde\AppData\Roaming\Avira
2013-07-26 02:49 . 2013-07-26 02:49 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-07-26 02:48 . 2013-07-26 02:46 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-07-26 02:48 . 2013-07-26 02:46 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-07-26 02:48 . 2013-07-26 02:48 -------- d-----w- c:\programdata\Avira
2013-07-26 02:48 . 2013-07-26 02:48 -------- d-----w- c:\program files (x86)\Avira
2013-07-26 02:48 . 2013-07-26 02:46 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-07-26 01:48 . 2013-07-26 01:48 -------- d-s---w- c:\windows\SysWow64\Microsoft
2013-07-26 01:40 . 2013-08-14 16:02 -------- d-----w- c:\windows\system32\MRT
2013-07-25 22:37 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-07-25 22:37 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-07-25 22:28 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
2013-07-25 22:28 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2013-07-25 08:57 . 2013-07-25 08:57 -------- d-----w- c:\users\clothilde\AppData\Roaming\Malwarebytes
2013-07-25 08:56 . 2013-07-25 08:56 -------- d-----w- c:\programdata\Malwarebytes
2013-07-25 08:56 . 2013-07-25 08:56 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-25 08:56 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-25 08:51 . 2013-07-25 08:51 -------- d-----w- c:\users\clothilde\AppData\Local\Programs
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\en
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\cs
2013-07-25 05:33 . 2013-07-25 05:33 -------- d-----w- c:\windows\SysWow64\0409
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\drivers\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\drivers\UMDF\en-US
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\SysWow64\wbem\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\en
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\cs
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\0409
2013-07-25 05:32 . 2013-07-26 01:06 -------- d-----w- c:\windows\system32\drivers\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\UMDF\en-US
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\UMDF\cs-CZ
2013-07-25 05:32 . 2013-07-25 05:32 -------- d-----w- c:\windows\system32\drivers\en-US
2013-07-25 05:31 . 2013-07-25 05:31 -------- d-----w- c:\windows\system32\wbem\cs-CZ
2013-07-25 04:17 . 2013-07-25 04:17 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-25 04:01 . 2013-07-25 04:01 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\cs-CZ\LXKPTPRC.DLL.mui
2013-07-24 15:27 . 2013-07-24 15:26 107816 ----a-w- c:\windows\SysWow64\SynTPCOM.dll
2013-07-24 15:27 . 2013-07-24 15:26 215336 ----a-w- c:\windows\system32\SynTPAPI.dll
2013-07-24 15:27 . 2013-07-24 15:26 147752 ----a-w- c:\windows\system32\SynTPCo4.dll
2013-07-24 15:27 . 2013-07-24 15:26 1390640 ----a-w- c:\windows\system32\drivers\SynTP.sys
2013-07-24 15:27 . 2013-07-24 15:26 271144 ----a-w- c:\windows\system32\SynCtrl.dll
2013-07-24 15:27 . 2013-07-24 15:26 214312 ----a-w- c:\windows\SysWow64\SynCtrl.dll
2013-07-24 15:27 . 2013-07-24 15:26 173352 ----a-w- c:\windows\SysWow64\SynCOM.dll
2013-07-24 15:27 . 2013-07-24 15:26 400168 ----a-w- c:\windows\system32\SynCOM.dll
2013-07-24 15:13 . 2013-07-26 17:25 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-07-24 10:22 . 2013-05-27 05:50 1011712 ----a-w- c:\program files\Windows Defender\MpSvc.dll
2013-07-24 10:22 . 2013-05-27 05:50 571904 ----a-w- c:\program files\Windows Defender\MpClient.dll
2013-07-24 10:22 . 2013-05-27 04:57 392704 ----a-w- c:\program files (x86)\Windows Defender\MpClient.dll
2013-07-24 10:22 . 2013-05-27 05:50 314880 ----a-w- c:\program files\Windows Defender\MpCommu.dll
2013-07-24 10:22 . 2013-05-27 04:57 54784 ----a-w- c:\program files (x86)\Windows Defender\MpOAV.dll
2013-07-24 10:22 . 2013-05-27 04:57 4608 ----a-w- c:\program files (x86)\Windows Defender\MsMpLics.dll
2013-07-24 10:22 . 2013-05-27 03:15 9216 ----a-w- c:\program files (x86)\Windows Defender\MpAsDesc.dll
2013-07-24 10:22 . 2013-06-04 06:00 624128 ----a-w- c:\windows\system32\qedit.dll
2013-07-24 10:22 . 2013-06-04 04:53 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2013-07-24 10:15 . 2013-06-05 03:34 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-07-24 10:15 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-07-24 10:14 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-07-24 08:09 . 2013-07-24 08:09 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-07-24 08:09 . 2013-07-24 08:08 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-07-24 08:09 . 2013-07-24 08:08 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-24 06:19 . 2013-07-24 06:20 -------- d-----w- c:\program files\CCleaner
2013-07-24 06:18 . 2013-07-24 06:12 1146984 ----a-w- c:\windows\system32\RTSnMg64.cpl
2013-07-24 06:18 . 2013-07-24 06:12 2048104 ----a-w- c:\windows\system32\RtPgEx64.dll
2013-07-24 06:18 . 2013-07-24 06:12 332392 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2013-07-24 06:18 . 2013-07-24 06:12 2494056 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2013-07-24 06:18 . 2013-07-24 06:12 149608 ----a-w- c:\windows\system32\RtkCfg64.dll
2013-07-24 06:18 . 2013-07-24 06:12 2625640 ----a-w- c:\windows\system32\RtkAPO64.dll
2013-07-24 06:18 . 2013-07-24 06:12 569960 ----a-w- c:\windows\system32\RtkApi64.dll
2013-07-24 06:18 . 2013-07-24 06:12 1215592 ----a-w- c:\windows\system32\RTCOM64.dll
2013-07-24 06:18 . 2013-07-24 06:12 80488 ----a-w- c:\windows\system32\RCoInst64.dll
2013-07-24 06:17 . 2013-07-24 06:11 200800 ----a-w- c:\windows\system32\AERTAC64.dll
2013-07-24 04:42 . 2013-07-24 04:44 -------- d-----w- c:\program files (x86)\WildTangent Games
2013-07-24 03:43 . 2013-07-24 03:43 -------- d-----w- C:\found.000
2013-07-15 21:02 . 2013-04-26 05:51 751104 ----a-w- c:\windows\system32\win32spl.dll
2013-07-15 21:02 . 2013-04-26 04:55 492544 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-07-15 21:01 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-07-15 21:01 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-07-15 20:58 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-07-15 20:58 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-07-15 20:58 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-07-15 20:58 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-07-15 20:57 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-07-15 20:57 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-14 16:00 . 2011-02-28 03:02 78161360 ----a-w- c:\windows\system32\MRT.exe
2013-07-26 17:25 . 2012-02-12 17:28 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-07-25 04:01 . 2013-07-25 04:01 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2013-07-25 04:00 . 2013-07-25 04:00 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2013-07-25 04:00 . 2013-07-25 04:00 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2013-07-25 03:59 . 2013-07-25 03:59 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2013-07-25 03:59 . 2013-07-25 03:59 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2013-07-25 03:59 . 2013-07-25 03:59 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
2013-07-24 08:08 . 2010-07-12 20:35 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-07-24 06:11 . 2010-09-14 23:41 1251944 ----a-w- c:\windows\RtlExUpd.dll
2013-07-09 04:45 . 2013-08-14 14:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-07-26 345144]
"ACSW16EN"="c:\program files (x86)\ACD Systems\ACDSee\16.0\acdIDInTouch2.exe" [2013-07-15 1344840]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\system32\userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-05-19 08:36 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-24 17:25]
.
2013-07-26 c:\windows\Tasks\HPCeeScheduleForclothilde.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 01:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-07-24 6489704]
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.fr/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
TCP: Interfaces\{3279D699-5307-4647-81A9-76DD03C21357}: NameServer = 195.146.100.100,195.146.100.105
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-!{3bbd3c14-4c16-4989-8366-95bc9179779d} - (no file)
Toolbar-!{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - (no file)
Toolbar-!{95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
Toolbar-!{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1} - (no file)
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.032"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.abr"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.apd"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.arw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.bay"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.bw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.cr2"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.crw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.cs1"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.dcr"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.dcx"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.djv"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.djvu"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.dng"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.eps"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.erf"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.fff"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.hdr"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.icn"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.iff"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.ilbm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.int"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.inta"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.iw4"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.j2c"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.j2k"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jbr"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jif"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jp2"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jpc"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jpk"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.jpx"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.kdc"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.lbm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.mef"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.mos"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.mrw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.nef"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.nrw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.orf"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pbm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pbr"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pcd"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pcx"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pef"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pgm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.ppm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.psd"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.psp"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pspbrush"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.pspimage"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.raf"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.ras"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.raw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.rgb"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.rgba"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.rsb"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.rw2"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.rwl"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.sgi"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.sr2"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.srf"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.srw"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.tga"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.thm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v16o\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.v16o"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v16p\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.v16p"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v16pf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.v16pf"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.wbm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.wbmp"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.xbm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.xif"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.xmp"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 16.xpm"
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*p&w]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3803311845-3019661533-2917894527-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*p&w\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2013-08-14 19:19:10
ComboFix-quarantined-files.txt 2013-08-14 17:19
ComboFix2.txt 2013-08-14 16:52
ComboFix3.txt 2013-08-09 23:33
ComboFix4.txt 2013-08-09 22:57
.
Pre-Run: Volných bajtu: 223 583 154 176
Post-Run: Volných bajtu: 223 502 053 376
.
- - End Of File - - 9F21F031045964E38337B332757A89DE
D41D8CD98F00B204E9800998ECF8427E

[Roli]

ComboFix udělal co měl, fix v HJT neřeš jsou to jen zbytečnosti.


Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Pak dej vědět jaký je stav PC.

[kompak]

stav pc je stejny, relativne nic s nim nebylo

nevsiml jsem si odpovedi, takze jsem editoval a dopsal poznatky a dotazy v predesle odpovedi, diky

[Roli]

........., takze jsem editoval a dopsal poznatky a dotazy v predesle odpovedi, diky

lepší je normálně odpovídat, protože kdybys to nyní nenapsal nevšimnu si.

dale me napada, ze mam plno programu zakazanych v ccleaneru po startu, rikam si, ze kdyz to jen pomazu, tak treba neco zbyde...

Netuším co tím pomazáním myslíš.

dale ve spravci uloh je nejak moc sluzeb jakoby, v tom se nevyznam, v XP to tam nebylo. taky kdyz dam procesy vsech uziv., je tam toho nejak moc, byl jsem zvykly na par spust. procesu

To jsou prostě Win 7, normální stav je + - 60 u XP + - 20

napada me,ze nemam zarizeni samsung, asi tam zbylo neco k telefonu

To je dost možné, pokud chceš můžu to smáznout.

a co treba framework, daji se odinst. predchozi verze?

Dají, ale některý softík jej potřebuje ke správné funkci.

co kdyz se zbavim IE? muze to mit nevyhody, ktere se nejaji lehce resit?

Nech ho být ničemu nevadí a když se mu nedovolí se spouštět je to v klidu.

asi jste se tim chtel zabyvat az po odstraneni toho toolbaru, takze kdyztak upresnete co s tou kompatibilitou

Většinou to jde při stisknutí pravého myšítka nad jeho ikonou vybrat Odstranit potíže s kompatibilitou >> Odstranit potíže s programem, pak je tam cosi o oprávnění a nakonec spustit program. Pokud HJT funguje a jde v něm fixnout dej Uložit tato nastavení pro tento program.

P.S. bylo by dobré psát hezky česky, nerad luštím SMSky

[kompak]

1. zrejmě jste odpověděl, jeětě, než jsem doeditoval a až pak jsem si všiml, tak jsem napsal

2. v ccleaneru jsou 4 listy programů spouš. při startu, co nejvíce jsem dal jako nespouštět a myslím, že by to chtělo asi odinstalovat, ne jen vymazat z toho seznamu.

3. díky za info, snad tam teda není nic co nemusí

4. jj, smáznout vše, co nepotřebuji, uvažuju třeba i o adobe readeru, nebo powerdvd...ale co, když vlc zklame...

5. jak tedy zjistím, bude-li mi stačit jen ta poslední verze? moc softíku tu zatím nemám...

6. ok tedy, i v tom ccleaneru jsem dal ne po spuštění ie u většiny pluginů. Jak teda zabránit, aby se v budoucnu nespouštěl? Někdy to asi nahodí nějaká instalace, i když není defaultní prohlížeč

7. s tou komp. to nějak nepomohlo no

ps. ta čeština mi bere přííííliš času