Děkuji za pomoc!
Log z RSIT:
'Logfile of random's system information tool 1.10 (written by random/random)
Run by Zdena at 2016-07-17 10:43:35
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 213 GB (75%) free of 285 GB
Total RAM: 2036 MB (37% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:44:49, on 17.7.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18347)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files\EgisTec IPS\PmmUpdate.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\Acer\Android Manager\iSync.exe
C:\Program Files\Acer\Updater\iUpdate.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Launch Manager\LMworker.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\EgisTec IPS\EgisUpdate.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Zdena\Downloads\RSIT.exe
C:\Program Files\trend micro\Zdena.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
O4 - HKLM\..\Run: [iSyncData] C:\Program Files\Acer\Android Manager\iSync.exe
O4 - HKLM\..\Run: [AndroidManager] C:\Program Files\Acer\Android Manager\AML.exe
O4 - HKLM\..\Run: [iPatchData] C:\Program Files\Acer\Updater\iUpdate.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MIF5BA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: Fisusy Schedule (fisusyscheduleCherbsy.exe) - Unknown owner - C:\Program Files\Shociph\fisusyscheduleCherbsy.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PC Speed Up Service (PCSUService) - Unknown owner - C:\Program Files\Zrychleni Pocitace\PCSUService.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: WFini WdMan Service (WdMan) - Unknown owner - C:\ProgramData\bwinpb\WFini.exe (file missing)
O23 - Service: winsaber - Unknown owner - C:\Program Files\WinSaber\WinSaber.exe (file missing)
O23 - Service: WinZiper service (winzipersvc) - Unknown owner - C:\Program Files\WinZipper\winzipersvc.exe (file missing)
--
End of file - 8361 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Zdena\AppData\Roaming\Mozilla\Firefox\Profiles\y3s7mgor.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2015-05-19 1418752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-04-03 340848]
"EgisTecPMMUpdate"=C:\Program Files\EgisTec IPS\PmmUpdate.exe [2011-03-29 408432]
"EgisUpdate"=C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-29 202608]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-01-11 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-01-11 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-01-11 150552]
"LManager"=C:\Program Files\Launch Manager\LManager.exe [2011-07-01 1103440]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-10-08 1934632]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-02-11 10025576]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-05-10 715368]
"iSyncData"=C:\Program Files\Acer\Android Manager\iSync.exe [2011-05-10 408128]
"AndroidManager"=C:\Program Files\Acer\Android Manager\AML.exe [2011-05-10 508992]
"iPatchData"=C:\Program Files\Acer\Updater\iUpdate.exe [2011-05-10 492096]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2015-05-19 2598912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-10-24 218112]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-17 10:43:36 ----D---- C:\Program Files\trend micro
2016-07-17 10:43:35 ----D---- C:\rsit
2016-07-09 12:46:17 ----D---- C:\Users\Zdena\AppData\Roaming\Mozilla
2016-07-09 12:46:06 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-07-09 12:45:40 ----D---- C:\Program Files\Mozilla Firefox
2016-07-08 11:02:28 ----D---- C:\Program Files\WinZipper
2016-07-08 11:02:25 ----D---- C:\Users\Zdena\AppData\Roaming\WinZiper
2016-07-08 11:02:25 ----D---- C:\Users\Zdena\AppData\Roaming\eCyber
2016-07-08 10:59:42 ----D---- C:\Program Files\dfptvu6g
2016-07-07 14:44:05 ----D---- C:\Program Files\WinSaber
2016-07-07 14:43:55 ----D---- C:\Program Files\TData
2016-06-30 14:24:18 ----A---- C:\Windows\system32\appraiser.dll
2016-06-30 14:24:17 ----A---- C:\Windows\system32\invagent.dll
2016-06-30 14:24:17 ----A---- C:\Windows\system32\generaltel.dll
2016-06-30 14:24:17 ----A---- C:\Windows\system32\devinv.dll
2016-06-30 14:24:17 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-06-30 14:24:17 ----A---- C:\Windows\system32\centel.dll
2016-06-30 14:24:17 ----A---- C:\Windows\system32\aeinv.dll
2016-06-30 14:24:16 ----A---- C:\Windows\system32\acmigration.dll
2016-06-30 14:24:15 ----A---- C:\Windows\system32\StructuredQuery.dll
2016-06-30 14:24:12 ----A---- C:\Windows\system32\shell32.dll
2016-06-30 14:24:11 ----A---- C:\Windows\explorer.exe
2016-06-30 14:24:10 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-06-30 14:24:04 ----A---- C:\Windows\system32\lpk.dll
2016-06-30 14:24:04 ----A---- C:\Windows\system32\fontsub.dll
2016-06-30 14:24:04 ----A---- C:\Windows\system32\dciman32.dll
2016-06-30 14:24:04 ----A---- C:\Windows\system32\atmlib.dll
2016-06-30 14:24:04 ----A---- C:\Windows\system32\atmfd.dll
2016-06-30 14:24:03 ----A---- C:\Windows\system32\webio.dll
2016-06-30 14:23:30 ----A---- C:\Windows\system32\winipsec.dll
2016-06-30 14:23:30 ----A---- C:\Windows\system32\polstore.dll
2016-06-30 14:23:30 ----A---- C:\Windows\system32\IPSECSVC.DLL
2016-06-30 14:23:30 ----A---- C:\Windows\system32\gpsvc.dll
2016-06-30 14:23:30 ----A---- C:\Windows\system32\gpapi.dll
2016-06-30 14:23:30 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2016-06-30 14:23:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-06-30 14:23:23 ----A---- C:\Windows\system32\drivers\srv.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\wdigest.dll
2016-06-30 14:23:22 ----A---- C:\Windows\system32\rpcrt4.dll
2016-06-30 14:23:22 ----A---- C:\Windows\system32\ncrypt.dll
2016-06-30 14:23:22 ----A---- C:\Windows\system32\kerberos.dll
2016-06-30 14:23:22 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\drivers\cng.sys
2016-06-30 14:23:22 ----A---- C:\Windows\system32\bcryptprimitives.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\TSpkg.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\sspisrv.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\sspicli.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\schannel.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\secur32.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\rpchttp.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\msv1_0.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\msobjs.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\msaudite.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\lsass.exe
2016-06-30 14:23:21 ----A---- C:\Windows\system32\lsasrv.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-06-30 14:23:21 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-06-30 14:23:21 ----A---- C:\Windows\system32\cryptbase.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\credssp.dll
2016-06-30 14:23:21 ----A---- C:\Windows\system32\auditpol.exe
2016-06-30 14:23:21 ----A---- C:\Windows\system32\adtschema.dll
2016-06-30 14:23:16 ----A---- C:\Windows\system32\win32k.sys
2016-06-30 14:23:14 ----A---- C:\Windows\system32\tzres.dll
2016-06-30 14:23:09 ----A---- C:\Windows\system32\ws2_32.dll
2016-06-30 14:23:09 ----A---- C:\Windows\system32\winhttp.dll
2016-06-30 14:23:09 ----A---- C:\Windows\system32\netbtugc.exe
2016-06-30 14:23:09 ----A---- C:\Windows\system32\mswsock.dll
2016-06-30 14:23:09 ----A---- C:\Windows\system32\drivers\netbt.sys
2016-06-30 14:23:06 ----A---- C:\Windows\system32\msimsg.dll
2016-06-30 14:23:06 ----A---- C:\Windows\system32\msihnd.dll
2016-06-30 14:23:06 ----A---- C:\Windows\system32\msiexec.exe
2016-06-30 14:23:06 ----A---- C:\Windows\system32\msi.dll
2016-06-30 14:23:06 ----A---- C:\Windows\system32\consent.exe
2016-06-30 14:23:06 ----A---- C:\Windows\system32\authui.dll
2016-06-30 14:23:06 ----A---- C:\Windows\system32\appinfo.dll
2016-06-30 14:22:53 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-06-30 14:22:53 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-06-30 14:22:52 ----A---- C:\Windows\system32\inseng.dll
2016-06-30 14:22:52 ----A---- C:\Windows\system32\iernonce.dll
2016-06-30 14:22:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-06-30 14:22:52 ----A---- C:\Windows\system32\ie4uinit.exe
2016-06-30 14:22:51 ----A---- C:\Windows\system32\vbscript.dll
2016-06-30 14:22:51 ----A---- C:\Windows\system32\urlmon.dll
2016-06-30 14:22:51 ----A---- C:\Windows\system32\occache.dll
2016-06-30 14:22:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-06-30 14:22:51 ----A---- C:\Windows\system32\iedkcs32.dll
2016-06-30 14:22:50 ----A---- C:\Windows\system32\jsproxy.dll
2016-06-30 14:22:50 ----A---- C:\Windows\system32\jscript9diag.dll
2016-06-30 14:22:50 ----A---- C:\Windows\system32\ieUnatt.exe
2016-06-30 14:22:50 ----A---- C:\Windows\system32\ieapfltr.dll
2016-06-30 14:22:50 ----A---- C:\Windows\system32\dxtmsft.dll
2016-06-30 14:22:49 ----A---- C:\Windows\system32\msfeeds.dll
2016-06-30 14:22:46 ----A---- C:\Windows\system32\webcheck.dll
2016-06-30 14:22:45 ----A---- C:\Windows\system32\msrating.dll
2016-06-30 14:22:45 ----A---- C:\Windows\system32\iesetup.dll
2016-06-30 14:22:44 ----A---- C:\Windows\system32\jscript.dll
2016-06-30 14:22:44 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-06-30 14:22:43 ----A---- C:\Windows\system32\wininet.dll
2016-06-30 14:22:40 ----A---- C:\Windows\system32\dxtrans.dll
2016-06-30 14:22:39 ----A---- C:\Windows\system32\ieui.dll
2016-06-30 14:22:38 ----A---- C:\Windows\system32\ieframe.dll
2016-06-30 14:22:33 ----A---- C:\Windows\system32\mshtmled.dll
2016-06-30 14:22:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-06-30 14:22:30 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-06-30 14:22:27 ----A---- C:\Windows\system32\jscript9.dll
2016-06-30 14:22:25 ----A---- C:\Windows\system32\mshtml.dll
2016-06-30 14:22:20 ----A---- C:\Windows\system32\iertutil.dll
2016-06-30 14:21:56 ----A---- C:\Windows\system32\gdi32.dll
2016-06-29 20:54:56 ----D---- C:\Users\Zdena\AppData\Roaming\TSv
2016-06-29 20:54:49 ----D---- C:\ProgramData\bwinpb
2016-06-29 20:54:41 ----D---- C:\Program Files\TXQQBrowser
2016-06-29 20:54:12 ----D---- C:\Program Files\yowttr4t
2016-06-27 11:32:11 ----A---- C:\Windows\system32\roboot.exe
2016-06-27 11:32:02 ----D---- C:\Users\Zdena\AppData\Roaming\systweak
2016-06-27 11:31:17 ----D---- C:\Users\Zdena\AppData\Roaming\Profiles
2016-06-27 11:31:15 ----D---- C:\Program Files\Shociph
2016-06-27 11:29:01 ----D---- C:\Program Files\DOTX to DOCX Converter
======List of files/folders modified in the last 1 month======
2016-07-17 10:43:53 ----D---- C:\Windows\Temp
2016-07-17 10:43:36 ----RD---- C:\Program Files
2016-07-17 10:32:31 ----SHD---- C:\Windows\Installer
2016-07-17 10:32:03 ----SD---- C:\ProgramData\Microsoft
2016-07-17 10:28:01 ----RD---- C:\Program Files\Skype
2016-07-17 10:27:49 ----SHD---- C:\System Volume Information
2016-07-17 10:26:45 ----D---- C:\Windows\system32\config
2016-07-17 10:26:21 ----D---- C:\Windows\system32\Tasks
2016-07-17 10:17:49 ----D---- C:\ProgramData\AVG2012
2016-07-17 09:52:58 ----D---- C:\Windows\system32\drivers\AVG
2016-07-17 09:48:35 ----D---- C:\Windows\System32
2016-07-17 09:48:23 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-07-13 14:23:29 ----D---- C:\Windows\system32\Macromed
2016-07-08 21:22:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-07-08 21:22:31 ----D---- C:\Windows\inf
2016-07-08 12:08:04 ----D---- C:\Program Files\Google
2016-07-08 11:44:32 ----HD---- C:\ProgramData
2016-07-08 11:41:38 ----D---- C:\Windows\Tasks
2016-07-08 11:12:47 ----D---- C:\Windows\winsxs
2016-07-08 11:11:31 ----D---- C:\Program Files\Microsoft Silverlight
2016-07-08 11:07:23 ----D---- C:\Windows\system32\wbem
2016-07-08 11:07:23 ----D---- C:\Windows\system32\cs-CZ
2016-07-08 11:07:23 ----D---- C:\Windows\system32\appraiser
2016-07-08 11:07:23 ----D---- C:\Windows\cs-CZ
2016-07-08 11:07:23 ----D---- C:\Windows\AppPatch
2016-07-08 11:07:23 ----D---- C:\Windows
2016-07-08 11:07:20 ----D---- C:\Windows\system32\drivers
2016-07-08 11:07:17 ----D---- C:\Windows\system32\en-US
2016-07-08 11:07:15 ----D---- C:\Program Files\Internet Explorer
2016-07-08 11:06:33 ----D---- C:\Users\Zdena\AppData\Roaming\Skype
2016-07-07 14:51:20 ----D---- C:\Windows\system32\MRT
2016-07-03 14:32:15 ----A---- C:\Windows\system32\MRT.exe
2016-06-29 21:13:15 ----D---- C:\Windows\system32\catroot2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2015-05-19 25352]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-05-19 34184]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-05-19 250632]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2015-11-18 42760]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-05-19 302472]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2012-02-17 21600]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2012-02-17 16936]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2012-02-17 62240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2015-05-19 142600]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\avgidsfilterx.sys [2015-05-19 26504]
R3 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-05-19 19976]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-10-24 4807168]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-02-11 3396136]
R3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETwNs32.sys [2011-01-04 7435264]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-03-07 252520]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-12-28 327784]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-10-08 1314736]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 E1G60;Intel(R) PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G60I32.sys [2009-07-14 118784]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2015-05-19 5176832]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2015-05-19 198616]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-05-10 739944]
R2 GREGService;GREGService; C:\Program Files\Acer\Registration\GREGsvc.exe [2011-05-26 29696]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 IconMan_R;IconMan_R; C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-03-07 1755136]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
R2 PCSUService;PC Speed Up Service; C:\Program Files\Zrychleni Pocitace\PCSUService.exe [2011-11-07 235232]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 fisusyscheduleCherbsy.exe;Fisusy Schedule; C:\Program Files\Shociph\fisusyscheduleCherbsy.exe [2016-06-24 705760]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-03-23 327808]
S2 WdMan;WFini WdMan Service; C:\ProgramData\bwinpb\WFini.exe -svr []
S2 winsaber;winsaber; C:\Program Files\WinSaber\WinSaber.exe []
S2 winzipersvc;WinZiper service; C:\Program Files\WinZipper\winzipersvc.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-17 270016]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe [2011-04-03 173424]
S3 GamesAppService;GamesAppService; C:\Program Files\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-05-20 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-24 146888]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-22 1710464]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
něco našel!
Přispějete na provoz fóra?