První BSOD _ desktop

Zpráva

iwiboy · #1 Příspěvek od **iwiboy** » 08 úno 2016 09:35

Dnes jsem poprvé dostal modrou obrazovku. Prosím o radu, jestli mám nějaký závažnější problém. Velký dík!

Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomovo at 2016-02-08 09:28:25
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 64 GB (14%) free of 451 GB
Total RAM: 1917 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:28:30, on 8.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\windows\SysWOW64\UMonit64.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Tomovo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://klikni.idnes.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\PROGRA~2\IDM\QUICKF~1\PlugIns\IEHelp.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8215 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
winlogon.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs

"C:\Program Files\Tablet\Pen\Pen_TouchService.exe"
/QuitInfo:0000000000000228;000000000000022C; /AddRef;
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:0000000000000258;0000000000000248; /AddRef;
/QuitInfo:0000000000000184;0000000000000268;
"C:\windows\system32\Dwm.exe"
/loadhooks /Parent:0000000000000550
C:\windows\Explorer.EXE
"C:\Program Files\Tablet\Pen\Pen_TouchUser.exe"
taskeng.exe {5E2D4A5E-E1B2-4A14-9680-467EBA492A3C}
C:\windows\System32\spoolsv.exe
"taskhost.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\Windows\jmesoft\Service.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Tablet\Pen\Pen_Tablet.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Tablet\Pen\Pen_TabletUser.exe"
taskeng.exe {D6F24AC9-05EB-48A3-B737-1D70C3804F36}
C:\windows\SysWOW64\UMonit64.exe
"C:\Program Files\Tablet\Pen\Pen_Tablet.exe" au
WLIDSvcM.exe 2316
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\windows\system32\GWX\GWX.exe"
C:\windows\system32\sppsvc.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
taskeng.exe {C5EA7672-9C5A-44C7-B922-EC0499C69684}
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\rundll32.exe dfshim.dll,ShOpenVerbShortcut C:\Users\Tomovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
"C:\Users\Tomovo\Desktop\RSITx64 (1).exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Tomovo\AppData\Roaming\Mozilla\Firefox\Profiles\vmxpa79d.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=1.1.11]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files (x86)\TabletPlugins\npwacom.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1]
"Description"=WebTablet Plugin API
"Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.80.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.80.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll

C:\Program Files\Waterfox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Waterfox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Waterfox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml

C:\Users\Tomovo\AppData\Roaming\Mozilla\Firefox\Profiles\vmxpa79d.default\extensions\
cs@dictionaries.addons.mozilla.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2016-01-13 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-01-05 885152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2016-01-13 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-05 664184]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C08DF07A-3E49-4E25-9AB0-D3882835F153}]
QUICKfind BHO Object - C:\PROGRA~2\IDM\QUICKF~1\PlugIns\IEHelp.dll [2007-02-16 457216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2014-03-13 779776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BambooCore]
C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [2012-10-16 646744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [2009-12-05 103720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_168_Plugin.exe -update plugin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Tomovo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-17 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\windows\system32\hkcmd.exe [2011-02-11 386584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\windows\system32\igfxtray.exe [2011-02-11 162328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jmekey]
C:\windows\jmesoft\hotkey.exe [2011-03-21 118784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jmesoft]
C:\Windows\jmesoft\ServiceLoader.exe [2011-03-16 28672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Dynamic Brightness System]
C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [2010-10-08 285696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo EE Boot Optimizer]
C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [2011-05-25 114688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Eye Distance System]
C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [2010-09-09 265216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe]
C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\windows\system32\igfxpers.exe [2011-02-11 417304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-02-08 10060832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UMonit]
C:\windows\SysWOW64\UMonit.exe [2010-12-01 28672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]
C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePRCShortCut]
C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [2009-05-14 222504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2014-03-13 779776]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Tomovo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk]
C:\PROGRA~2\COMMON~1\LINGEA~1\luc.exe [2011-07-17 275736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-01-05 7021880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-02-11 272896]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\Program Files (x86)\DVD Region+CSS Free\DVDShell.dll [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-02-08 09:28:25 ----D---- C:\rsit
2016-01-15 12:31:07 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-15 12:31:06 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-15 12:31:06 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-15 12:31:06 ----A---- C:\windows\system32\iertutil.dll
2016-01-15 12:31:06 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-15 12:31:06 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-15 12:31:05 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-15 12:31:05 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-15 12:31:05 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-15 12:31:05 ----A---- C:\windows\system32\iernonce.dll
2016-01-15 12:31:05 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-15 12:31:04 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-15 12:31:04 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-15 12:31:04 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-15 12:31:04 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-15 12:31:04 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-15 12:31:04 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-15 12:31:03 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-15 12:31:03 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-15 12:31:02 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-15 12:31:02 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-15 12:31:02 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-15 12:31:02 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-15 12:31:02 ----A---- C:\windows\system32\urlmon.dll
2016-01-15 12:31:02 ----A---- C:\windows\system32\occache.dll
2016-01-15 12:31:02 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-15 12:31:02 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-15 12:31:02 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-15 12:31:01 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-15 12:31:01 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-15 12:31:01 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-15 12:31:01 ----A---- C:\windows\system32\msfeeds.dll
2016-01-15 12:31:01 ----A---- C:\windows\system32\dxtrans.dll
2016-01-15 12:31:00 ----A---- C:\windows\system32\iesetup.dll
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-15 12:30:59 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-15 12:30:59 ----A---- C:\windows\system32\vbscript.dll
2016-01-15 12:30:58 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-15 12:30:58 ----A---- C:\windows\system32\jsproxy.dll
2016-01-15 12:30:58 ----A---- C:\windows\system32\ieui.dll
2016-01-15 12:30:58 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-15 12:30:57 ----A---- C:\windows\system32\ieframe.dll
2016-01-15 12:30:56 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-15 12:30:56 ----A---- C:\windows\system32\mshtmled.dll
2016-01-15 12:30:55 ----A---- C:\windows\system32\webcheck.dll
2016-01-15 12:30:55 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-15 12:30:55 ----A---- C:\windows\system32\jscript9.dll
2016-01-15 12:30:55 ----A---- C:\windows\system32\jscript.dll
2016-01-15 12:30:55 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-15 12:30:55 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-15 12:30:54 ----A---- C:\windows\system32\wininet.dll
2016-01-15 12:30:54 ----A---- C:\windows\system32\msrating.dll
2016-01-15 12:30:54 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-15 12:30:53 ----A---- C:\windows\system32\mshtml.dll
2016-01-14 00:27:14 ----D---- C:\ProgramData\Package Cache
2016-01-13 12:22:31 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 12:22:31 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 12:22:30 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 12:22:30 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 12:22:30 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 12:22:30 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 12:22:23 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 12:22:19 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 12:22:19 ----A---- C:\windows\system32\qedit.dll
2016-01-13 12:22:04 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 12:22:03 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 12:22:02 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 12:22:02 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 12:22:02 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 12:22:01 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 12:22:01 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 12:22:00 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 12:22:00 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 12:22:00 ----A---- C:\windows\system32\mf.dll
2016-01-13 12:21:59 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 12:21:59 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 12:21:59 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 12:21:58 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 12:21:58 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 12:21:58 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 12:21:58 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 12:21:57 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 12:21:57 ----A---- C:\windows\system32\quartz.dll
2016-01-13 12:21:56 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 12:21:56 ----A---- C:\windows\system32\evr.dll
2016-01-13 12:21:55 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 12:21:55 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 12:21:55 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 12:21:55 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 12:21:54 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 12:21:54 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 12:21:54 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 12:21:54 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 12:21:54 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 12:21:54 ----A---- C:\windows\system32\WMALFXGFXDSP.dll
2016-01-13 12:21:53 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 12:21:53 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 12:21:53 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 12:21:53 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 12:21:53 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 12:21:53 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 12:21:53 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 12:21:53 ----A---- C:\windows\system32\devenum.dll
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 12:21:52 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 12:21:52 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 12:21:52 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 12:21:52 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 12:21:51 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 12:21:51 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 12:21:51 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 12:21:51 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 12:21:51 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 12:21:51 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 12:21:51 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 12:21:51 ----A---- C:\windows\system32\qasf.dll
2016-01-13 12:21:51 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 12:21:50 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 12:21:50 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 12:21:50 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 12:21:50 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 12:21:50 ----A---- C:\windows\system32\mfps.dll
2016-01-13 12:21:50 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 12:21:49 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 12:21:49 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 12:21:49 ----A---- C:\windows\system32\mferror.dll
2016-01-13 12:21:49 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 12:21:49 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 12:21:49 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 12:21:49 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 12:21:40 ----A---- C:\windows\system32\win32k.sys
2016-01-13 12:19:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 12:19:03 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\invagent.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\devinv.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\aepic.dll
2016-01-13 12:18:51 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 12:18:50 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 12:18:45 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 12:18:45 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 12:18:31 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 12:18:30 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 12:18:29 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 12:18:29 ----A---- C:\windows\system32\schannel.dll
2016-01-13 12:18:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 12:18:27 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 12:18:27 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 12:18:27 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 12:18:26 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 12:18:26 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 12:18:26 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 12:18:26 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 12:18:25 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 12:18:25 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 12:18:25 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 12:18:25 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 12:18:25 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 12:18:25 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 12:18:24 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 12:18:24 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 12:18:23 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 12:18:23 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 12:18:22 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 12:18:22 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 12:18:22 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 12:18:21 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 12:18:21 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 12:18:21 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 12:18:21 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 12:18:21 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 12:18:21 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 12:18:21 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 12:18:21 ----A---- C:\windows\system32\secur32.dll
2016-01-13 12:18:21 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 12:18:21 ----A---- C:\windows\system32\lsass.exe
2016-01-13 12:18:21 ----A---- C:\windows\system32\credssp.dll
2016-01-13 12:18:20 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 12:18:20 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 12:18:20 ----A---- C:\windows\system32\wow64.dll
2016-01-13 12:18:20 ----A---- C:\windows\system32\srcore.dll
2016-01-13 12:18:20 ----A---- C:\windows\system32\smss.exe
2016-01-13 12:18:20 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 12:18:20 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 12:18:20 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 12:18:20 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 12:18:20 ----A---- C:\windows\system32\conhost.exe
2016-01-13 12:18:19 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 12:18:19 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 12:18:19 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 12:18:19 ----A---- C:\windows\system32\srclient.dll
2016-01-13 12:18:19 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 12:18:17 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 12:18:17 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 12:18:16 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 12:18:16 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 12:18:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 12:18:15 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 12:18:15 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 12:18:15 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 12:18:15 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 12:18:14 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 12:18:13 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 12:18:13 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 12:18:12 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 12:18:12 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 12:18:11 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 12:18:11 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 12:18:11 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 12:18:11 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 12:18:11 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 12:18:11 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 12:18:11 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 12:18:10 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 12:18:10 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 12:18:08 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 12:18:08 ----A---- C:\windows\system32\msobjs.dll
2016-01-13 12:06:34 ----A---- C:\windows\system32\javaws.exe
2016-01-13 12:06:26 ----A---- C:\windows\system32\WindowsAccessBridge-64.dll
2016-01-13 12:06:26 ----A---- C:\windows\system32\javaw.exe
2016-01-13 12:06:25 ----A---- C:\windows\system32\java.exe
2016-01-13 12:06:19 ----D---- C:\Program Files\Java

======List of files/folders modified in the last 1 month======

2016-02-08 09:28:31 ----D---- C:\windows\Prefetch
2016-02-08 09:28:27 ----D---- C:\Program Files\trend micro
2016-02-08 09:25:35 ----D---- C:\windows\Temp
2016-02-08 09:15:17 ----D---- C:\windows\system32\config
2016-02-08 09:12:04 ----AD---- C:\windows\System32
2016-02-08 09:12:04 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-02-08 09:12:03 ----D---- C:\windows\inf
2016-02-05 23:01:29 ----D---- C:\Users\Tomovo\AppData\Roaming\Skype
2016-02-05 20:04:13 ----SHD---- C:\windows\Installer
2016-02-05 20:04:12 ----D---- C:\ProgramData\Skype
2016-02-04 05:17:06 ----SHD---- C:\System Volume Information
2016-02-01 20:28:50 ----D---- C:\Program Files (x86)
2016-02-01 20:28:25 ----D---- C:\windows\Tasks
2016-02-01 20:11:44 ----D---- C:\Users\Tomovo\AppData\Roaming\vlc
2016-02-01 20:00:21 ----D---- C:\Users\Tomovo\AppData\Roaming\dvdcss
2016-01-31 20:24:23 ----HD---- C:\ProgramData
2016-01-31 20:24:03 ----D---- C:\windows\SysWOW64
2016-01-31 09:10:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-01-26 14:18:57 ----D---- C:\Program Files (x86)\Opera beta
2016-01-26 14:18:56 ----D---- C:\windows\system32\Tasks
2016-01-24 20:12:11 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 12:01:44 ----D---- C:\windows\system32\drivers
2016-01-19 13:21:42 ----D---- C:\Program Files (x86)\7-Zip
2016-01-16 07:22:42 ----D---- C:\windows\rescache
2016-01-16 03:40:07 ----D---- C:\windows\system32\catroot2
2016-01-16 03:39:23 ----D---- C:\windows\winsxs
2016-01-16 03:38:32 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-16 03:38:31 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-16 03:36:55 ----D---- C:\windows\SYSWOW64\en-US
2016-01-16 03:36:55 ----D---- C:\Program Files\Internet Explorer
2016-01-16 03:36:54 ----D---- C:\windows\system32\en-US
2016-01-16 03:36:54 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-15 11:15:10 ----D---- C:\windows\system32\DriverStore
2016-01-15 09:30:37 ----D---- C:\windows\system32\MRT
2016-01-15 09:29:45 ----A---- C:\windows\system32\MRT.exe
2016-01-15 09:08:45 ----SD---- C:\windows\system32\CompatTel
2016-01-15 09:08:45 ----D---- C:\windows\system32\appraiser
2016-01-15 09:08:45 ----D---- C:\windows\AppPatch
2016-01-13 12:06:19 ----RD---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys [2016-01-05 466400]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2016-01-05 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2016-01-05 273784]
R0 fbfmon;fbfmon; C:\windows\system32\drivers\fbfmon.sys [2011-05-25 57952]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver; C:\windows\system32\drivers\DDCDrv.sys [2008-04-08 20832]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2016-01-05 28144]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2016-01-05 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-20 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-20 464256]
R1 BPntDrv;BPntDrv; C:\windows\system32\drivers\BPntDrv.sys [2011-05-25 13408]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2016-01-05 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2016-01-05 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2016-01-05 155304]
R3 GeneStor;Genesys Logic Storage Driver; C:\windows\system32\DRIVERS\GeneStor.sys [2015-10-21 185744]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-02-11 10628640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2010-02-08 2267552]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\windows\system32\drivers\IntcHdmi.sys [2010-01-07 144896]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:\windows\system32\DRIVERS\wacommousefilter.sys [2011-05-16 12848]
R3 wacomvhid;Wacom Virtual Hid Driver; C:\windows\system32\DRIVERS\wacomvhid.sys [2011-05-16 16168]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-07-13 5020672]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 LVRS64;Logitech RightSound Filter Driver; C:\windows\system32\DRIVERS\lvrs64.sys [2009-10-07 327704]
S3 LVUVC64;Logitech QuickCam E3500(UVC); C:\windows\system32\DRIVERS\lvuvc64.sys [2009-10-07 6379288]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usb_rndisx;USB RNDIS Adapter; C:\windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 wsvd;wsvd; C:\windows\system32\DRIVERS\wsvd.sys [2009-07-21 121840]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-01-05 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-01-05 109520]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 JME Keyboard;JME Keyboard Driver; C:\Windows\jmesoft\Service.exe [2011-03-16 32768]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 TabletServicePen;TabletServicePen; C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2011-07-05 6581624]
R2 TouchServicePen;Wacom Consumer Touch Service; C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2011-07-05 528760]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-24 269504]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-11 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-12-27 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-08-21 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 08 úno 2016 15:09

Zdravím, nejprve trochu uklidíme.

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

V Knihovně Plánovače úloh zakaž Google Update bude to tam vícekrát.

Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.

Stáhni a nainstaluj Debugging Tools For Windows .

Přes Start >> Všechny programy vyhledej program s jménem WinDbg ve složce Debugging Tools for Windows a spusť.

Ve Windows Vista a Windows 7, spusť WinDbg jako administrátor (budeš přistupovat do adresáře Windows)

První co budeš muset nastavit je cesta k symbolům. Klikni na File -> Symbol File Path a zde nastav http://msdl.microsoft.com/download/symbols

Nyní můžeš začít analyzovat BSOB.

Klikni na File -> Open Crash Dump a najdi složku C:\Windows\Minidump.

Ve složce Minidumps se nacházejí soubory Minixxxxxx-xx.dmp (xxxxxx-xx je datum a pořadové číslo).

Pokud je složka prázdná neměl jsi ještě žádnou BSOD nebo jsi jí vymazal.

Jakmile soubor otevřeš začnou se načítat symboly a po chvilce můžeš zadávat přikazy do přikazového řádku, kde stačí napsat !analyze -v

nebo kliknout myší na příkaz.

Nejdůležitější parametry, které tě mohou zajímat jsou :

PROCESS_NAME (jméno procesu, který způsobil chybu),

IMAGE_NAME

MODULE_NAME

(tyto tři hodnoty mi sem nakopíruj nebo je stačí zadat do Googlu a řešení je jako na dlani)

Nebo použij, WhoCrashed

po spuštění klikni v levo nahoře na Analyze,

aplikace po chvilce ve svém okně níže pod Crash Dump Analysis vytvoří zprávu o příčině pádu, kterou mi sem nakopíruj.

iwiboy · #3 Příspěvek od **iwiboy** » 10 úno 2016 12:57

Děkuji za bohatý program!
Dva dny jsem nebyl u počítače a nyní mi odmítá připojení k netu, a to i v nouzovém režimu.
Až se podaří, dám se do postupu dle rad.

iwiboy · #4 Příspěvek od **iwiboy** » 10 úno 2016 14:15

Zatím aspoň toto, internet jsem nahodil.

# AdwCleaner v5.013 - Logfile created 10/10/2015 at 21:29:09
# Updated 09/10/2015 by Xplode
# Database : 2015-10-09.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Tomovo - LENOVO
# Running from : C:\Users\Tomovo\Desktop\adwcleaner_5.013.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\Partner

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [698 bytes] ##########
# AdwCleaner v5.033 - Logfile created 10/02/2016 at 14:09:45
# Updated 07/02/2016 by Xplode
# Database : 2016-02-07.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Tomovo - LENOVO
# Running from : C:\Users\Tomovo\Downloads\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

[-] File Deleted : C:\Users\Tomovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_dvd-region-css-free-lite.en.softonic.com_0.localstorage
[-] File Deleted : C:\Users\Tomovo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_dvd-region-css-free-lite.en.softonic.com_0.localstorage-journal

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

***** [ Web browsers ] *****

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1780 bytes] ##########

WHOCRASHED:

Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\windows\Minidump

Crash dumps are enabled on your computer.

No valid crash dumps have been found on your computer

#5 Příspěvek od **Roli** » 10 úno 2016 15:42

Plán B

Roli píše:Stáhni a nainstaluj Debugging Tools For Windows .

Přes Start >> Všechny programy vyhledej program s jménem WinDbg ve složce Debugging Tools for Windows a spusť.

Ve Windows Vista a Windows 7, spusť WinDbg jako administrátor (budeš přistupovat do adresáře Windows)

První co budeš muset nastavit je cesta k symbolům. Klikni na File -> Symbol File Path a zde nastav http://msdl.microsoft.com/download/symbols

Nyní můžeš začít analyzovat BSOB.

Klikni na File -> Open Crash Dump a najdi složku C:\Windows\Minidump.

Ve složce Minidumps se nacházejí soubory Minixxxxxx-xx.dmp (xxxxxx-xx je datum a pořadové číslo).

Pokud je složka prázdná neměl jsi ještě žádnou BSOD nebo jsi jí vymazal.

Jakmile soubor otevřeš začnou se načítat symboly a po chvilce můžeš zadávat přikazy do přikazového řádku, kde stačí napsat !analyze -v

nebo kliknout myší na příkaz.

Nejdůležitější parametry, které tě mohou zajímat jsou :

PROCESS_NAME (jméno procesu, který způsobil chybu),

IMAGE_NAME

MODULE_NAME

(tyto tři hodnoty mi sem nakopíruj nebo je stačí zadat do Googlu a řešení je jako na dlani)

iwiboy · #6 Příspěvek od **iwiboy** » 10 úno 2016 17:37

Tak tohle jsem také dělal, dle popisu výše, ale Minidump nenašel

#7 Příspěvek od **Roli** » 11 úno 2016 18:35

No nevadí, kouknem ještě na breberky.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

P.S. nepamatuješ si při jaké činnosti PC spadlo do modré smrti ?

iwiboy · #8 Příspěvek od **iwiboy** » 15 úno 2016 15:34

Byl jsem dlouho mimo svůj počítač, omlouvám se.

Ad P.S.: K BSOD došlo někdy při pohybu kursoru po ploše, chtěl jsem otevřít nějaký .jpg soubor nebo něco takového a kursor zatuhl. Bylo to krátce po zapnutí, asi běžel jen nějaký prohlížeč a pošta.

Log:

ComboFix 16-02-15.01 - Tomovo 15.02.2016 14:40:51.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1033.18.1917.1104 [GMT 1:00]
Spuštěný z: c:\users\Tomovo\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Tomovo\Documents\~WRL0275.tmp
c:\users\Tomovo\Documents\~WRL0643.tmp
c:\users\Tomovo\Documents\~WRL1108.tmp
c:\users\Tomovo\Documents\~WRL3162.tmp
c:\windows\SysWow64\DEBUG.log
.
Nakažená kopie c:\windows\SysWow64\userinit.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\combofix\HarddiskVolumeShadowCopy8_!Windows!SysWOW64!userinit.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-01-15 do 2016-02-15 )))))))))))))))))))))))))))))))
.
.
2016-02-15 13:55 . 2015-12-16 09:15 11154520 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5A1B6281-1998-4676-92F9-E15D29C16537}\mpengine.dll
2016-02-15 13:52 . 2016-02-15 13:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-02-14 19:50 . 2016-02-14 19:50 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4CB0B4CF-FAE3-4CD0-A986-826D31123A54}\offreg.4108.dll
2016-02-12 10:06 . 2015-11-25 11:02 11154520 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4CB0B4CF-FAE3-4CD0-A986-826D31123A54}\mpengine.dll
2016-02-10 22:53 . 2016-02-10 23:53 -------- d-----w- C:\3283230ad754235c05f47f
2016-02-10 20:38 . 2016-01-07 17:53 3211776 ----a-w- c:\windows\system32\win32k.sys
2016-02-10 20:36 . 2016-02-06 10:32 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2016-02-10 20:33 . 2016-01-22 06:48 49664 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub_is.dll
2016-02-10 20:32 . 2016-01-22 06:40 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2016-02-10 20:32 . 2016-01-22 05:13 382976 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2016-02-10 20:32 . 2016-01-22 06:05 199680 ----a-w- c:\windows\system32\msrating.dll
2016-02-10 20:32 . 2016-01-22 06:04 1018368 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2016-02-10 20:32 . 2016-01-22 06:51 10949120 ----a-w- c:\program files\Internet Explorer\F12Resources.dll
2016-02-10 20:29 . 2016-01-16 19:01 2085888 ----a-w- c:\windows\system32\ole32.dll
2016-02-10 20:29 . 2016-01-16 18:36 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2016-02-10 20:24 . 2016-01-22 06:12 6656 ----a-w- c:\windows\system32\apisetschema.dll
2016-02-10 20:24 . 2016-01-22 06:12 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-10 20:24 . 2016-01-22 05:59 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2016-02-10 20:24 . 2016-01-22 04:53 2048 ----a-w- c:\windows\SysWow64\user.exe
2016-02-10 20:24 . 2016-01-22 06:12 686080 ----a-w- c:\windows\system32\adtschema.dll
2016-02-10 20:24 . 2016-01-22 05:59 686080 ----a-w- c:\windows\SysWow64\adtschema.dll
2016-02-10 20:24 . 2016-01-22 06:16 146432 ----a-w- c:\windows\system32\msaudite.dll
2016-02-10 20:24 . 2016-01-22 06:02 146432 ----a-w- c:\windows\SysWow64\msaudite.dll
2016-02-10 20:24 . 2016-01-22 06:16 60416 ----a-w- c:\windows\system32\msobjs.dll
2016-02-10 20:24 . 2016-01-22 06:02 60416 ----a-w- c:\windows\SysWow64\msobjs.dll
2016-02-10 20:21 . 2016-01-22 06:19 14179840 ----a-w- c:\windows\system32\shell32.dll
2016-02-10 20:21 . 2016-01-22 05:19 3231232 ----a-w- c:\windows\explorer.exe
2016-02-10 20:21 . 2016-01-22 06:15 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2016-02-10 20:21 . 2016-01-22 05:12 2973184 ----a-w- c:\windows\SysWow64\explorer.exe
2016-02-10 20:21 . 2016-01-22 06:12 1940992 ----a-w- c:\windows\system32\authui.dll
2016-02-10 20:21 . 2016-01-22 05:59 1805824 ----a-w- c:\windows\SysWow64\authui.dll
2016-02-10 20:21 . 2016-01-22 06:00 1498624 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2016-02-10 13:24 . 2016-02-10 13:24 -------- d-----w- c:\program files (x86)\Debugging Tools for Windows (x86)
2016-02-10 13:22 . 2016-02-10 13:22 -------- d-----w- c:\program files\WhoCrashed
2016-02-10 13:21 . 2016-02-10 13:21 -------- d-----w- c:\users\Tomovo\AppData\Local\Programs
2016-02-10 12:36 . 2016-02-08 08:49 398152 ----a-w- c:\windows\system32\aswBoot.exe
2016-02-08 08:50 . 2016-02-08 08:48 552368 ----a-w- c:\windows\system32\drivers\aswNetSec.sys
2016-02-08 08:49 . 2016-02-08 08:49 52184 ----a-w- c:\windows\avastSS.scr
2016-02-08 08:48 . 2016-02-08 08:48 478128 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2016-02-08 08:28 . 2016-02-08 08:28 -------- d-----w- C:\rsit
2016-01-26 13:20 . 2016-01-26 13:20 -------- d-----w- c:\users\Tomovo\AppData\Local\GHISLER
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-02-10 23:56 . 2011-08-23 15:55 146614896 ----a-w- c:\windows\system32\MRT.exe
2016-02-10 13:08 . 2016-01-04 23:10 287016 ----a-w- c:\windows\system32\drivers\aswvmm.sys
2016-02-08 08:49 . 2016-01-04 23:10 165344 ----a-w- c:\windows\system32\drivers\aswStm.sys
2016-02-08 08:49 . 2016-01-04 23:10 463744 ----a-w- c:\windows\system32\drivers\aswSP.sys
2016-02-08 08:49 . 2016-01-04 23:10 74544 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2016-02-08 08:49 . 2016-01-04 23:10 107792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2016-02-08 08:49 . 2016-01-04 23:10 37656 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2016-02-08 08:49 . 2016-01-04 23:10 103064 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2016-02-08 08:49 . 2016-01-04 23:38 37144 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2016-02-08 08:49 . 2016-01-04 23:09 1065720 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2016-01-24 19:12 . 2012-04-07 15:19 796864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2016-01-24 19:12 . 2011-08-19 17:29 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-01-22 06:19 . 2016-02-10 20:25 344064 ----a-w- c:\windows\system32\schannel.dll
2016-01-22 06:05 . 2016-02-10 20:25 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-01-22 05:59 . 2016-02-10 20:25 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-01-13 11:06 . 2016-01-13 11:06 320424 ----a-w- c:\windows\system32\javaws.exe
2016-01-13 11:06 . 2016-01-13 11:06 189864 ----a-w- c:\windows\system32\javaw.exe
2016-01-13 11:06 . 2016-01-13 11:06 111016 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2016-01-13 11:06 . 2016-01-13 11:06 189864 ----a-w- c:\windows\system32\java.exe
2015-12-22 22:20 . 2015-12-22 22:20 24288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-12-08 21:54 . 2016-01-13 11:22 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2015-12-08 21:54 . 2016-01-13 11:22 902144 ----a-w- c:\windows\SysWow64\WMADMOD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 739328 ----a-w- c:\windows\SysWow64\WMSPDMOD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 815616 ----a-w- c:\windows\SysWow64\WMADMOE.DLL
2015-12-08 21:54 . 2016-01-13 11:21 541184 ----a-w- c:\windows\SysWow64\WMVSDECD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 740352 ----a-w- c:\windows\SysWow64\wmpmde.dll
2015-12-08 21:54 . 2016-01-13 11:21 1568768 ----a-w- c:\windows\SysWow64\WMVENCOD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 665088 ----a-w- c:\windows\SysWow64\WMVXENCD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 358400 ----a-w- c:\windows\SysWow64\WMVSENCD.DLL
2015-12-08 21:54 . 2016-01-13 11:21 1325056 ----a-w- c:\windows\SysWow64\WMSPDMOE.DLL
2015-12-08 21:54 . 2016-01-13 11:21 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-12-08 21:54 . 2016-01-13 11:21 154112 ----a-w- c:\windows\SysWow64\VIDRESZR.DLL
2015-12-08 21:53 . 2016-01-13 11:21 206848 ----a-w- c:\windows\SysWow64\RESAMPLEDMO.DLL
2015-12-08 21:53 . 2016-01-13 11:22 509952 ----a-w- c:\windows\SysWow64\qedit.dll
2015-12-08 21:53 . 2016-01-13 11:21 1329664 ----a-w- c:\windows\SysWow64\quartz.dll
2015-12-08 21:53 . 2016-01-13 11:21 519680 ----a-w- c:\windows\SysWow64\qdvd.dll
2015-12-08 21:53 . 2016-01-13 11:21 206848 ----a-w- c:\windows\SysWow64\qasf.dll
2015-12-08 21:53 . 2016-01-13 11:22 970240 ----a-w- c:\windows\SysWow64\msmpeg2adec.dll
2015-12-08 21:53 . 2016-01-13 11:21 829952 ----a-w- c:\windows\SysWow64\MSMPEG2ENC.DLL
2015-12-08 21:53 . 2016-01-13 11:21 241152 ----a-w- c:\windows\SysWow64\MPG4DECD.DLL
2015-12-08 21:53 . 2016-01-13 11:21 241152 ----a-w- c:\windows\SysWow64\MP43DECD.DLL
2015-12-08 21:53 . 2016-01-13 11:21 79872 ----a-w- c:\windows\SysWow64\MP3DMOD.DLL
2015-12-08 21:53 . 2016-01-13 11:21 415744 ----a-w- c:\windows\SysWow64\MP4SDECD.DLL
2015-12-08 21:53 . 2016-01-13 11:21 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2015-12-08 21:53 . 2016-01-13 11:21 609280 ----a-w- c:\windows\SysWow64\MFWMAAEC.DLL
2015-12-08 21:53 . 2016-01-13 11:21 354816 ----a-w- c:\windows\SysWow64\mfplat.dll
2015-12-08 21:53 . 2016-01-13 11:21 53248 ----a-w- c:\windows\SysWow64\mfvdsp.dll
2015-12-08 21:53 . 2016-01-13 11:21 103424 ----a-w- c:\windows\SysWow64\mfps.dll
2015-12-08 21:53 . 2016-01-13 11:21 4608 ----a-w- c:\windows\SysWow64\ksuser.dll
2015-12-08 21:53 . 2016-01-13 11:21 489984 ----a-w- c:\windows\SysWow64\evr.dll
2015-12-08 21:53 . 2016-01-13 11:21 67584 ----a-w- c:\windows\SysWow64\devenum.dll
2015-12-08 21:53 . 2016-01-13 11:21 153600 ----a-w- c:\windows\SysWow64\COLORCNV.DLL
2015-12-08 21:53 . 2016-01-13 11:21 50176 ----a-w- c:\windows\SysWow64\rrinstaller.exe
2015-12-08 21:53 . 2016-01-13 11:21 23040 ----a-w- c:\windows\SysWow64\mfpmp.exe
2015-12-08 21:53 . 2016-01-13 11:21 193536 ----a-w- c:\windows\SysWow64\ksproxy.ax
2015-12-08 21:52 . 2016-01-13 11:18 312320 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-12-08 21:50 . 2016-01-13 11:21 2048 ----a-w- c:\windows\SysWow64\mferror.dll
2015-12-08 19:07 . 2016-01-13 11:22 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
2015-12-08 19:07 . 2016-01-13 11:22 1232896 ----a-w- c:\windows\system32\WMADMOD.DLL
2015-12-08 19:07 . 2016-01-13 11:22 978944 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2015-12-08 19:07 . 2016-01-13 11:22 666112 ----a-w- c:\windows\system32\WMVSDECD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 1153024 ----a-w- c:\windows\system32\WMADMOE.DLL
2015-12-08 19:07 . 2016-01-13 11:21 1026048 ----a-w- c:\windows\system32\wmpmde.dll
2015-12-08 19:07 . 2016-01-13 11:21 1955328 ----a-w- c:\windows\system32\WMVENCOD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 642048 ----a-w- c:\windows\system32\WMVXENCD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 1575424 ----a-w- c:\windows\system32\WMSPDMOE.DLL
2015-12-08 19:07 . 2016-01-13 11:21 1393152 ----a-w- c:\windows\system32\WMALFXGFXDSP.dll
2015-12-08 19:07 . 2016-01-13 11:21 447488 ----a-w- c:\windows\system32\WMVSENCD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-12-08 19:07 . 2016-01-13 11:21 292352 ----a-w- c:\windows\system32\VIDRESZR.DLL
2015-12-08 19:07 . 2016-01-13 11:21 378880 ----a-w- c:\windows\system32\SysFxUI.dll
2015-12-08 19:07 . 2016-01-13 11:21 225792 ----a-w- c:\windows\system32\RESAMPLEDMO.DLL
2015-12-08 19:07 . 2016-01-13 11:22 624640 ----a-w- c:\windows\system32\qedit.dll
2015-12-08 19:07 . 2016-01-13 11:21 1573888 ----a-w- c:\windows\system32\quartz.dll
2015-12-08 19:07 . 2016-01-13 11:21 371712 ----a-w- c:\windows\system32\qdvd.dll
2015-12-08 19:07 . 2016-01-13 11:21 254464 ----a-w- c:\windows\system32\qasf.dll
2015-12-08 19:07 . 2016-01-13 11:22 1307136 ----a-w- c:\windows\system32\msmpeg2adec.dll
2015-12-08 19:07 . 2016-01-13 11:22 1160192 ----a-w- c:\windows\system32\MSMPEG2ENC.DLL
2015-12-08 19:07 . 2016-01-13 11:22 4121600 ----a-w- c:\windows\system32\mf.dll
2015-12-08 19:07 . 2016-01-13 11:21 1010688 ----a-w- c:\windows\system32\mcmde.dll
2015-12-08 19:07 . 2016-01-13 11:21 653824 ----a-w- c:\windows\system32\MP4SDECD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 484864 ----a-w- c:\windows\system32\MFWMAAEC.DLL
2015-12-08 19:07 . 2016-01-13 11:21 432128 ----a-w- c:\windows\system32\mfplat.dll
2015-12-08 19:07 . 2016-01-13 11:21 70144 ----a-w- c:\windows\system32\mfvdsp.dll
2015-12-08 19:07 . 2016-01-13 11:21 224768 ----a-w- c:\windows\system32\MPG4DECD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 223744 ----a-w- c:\windows\system32\MP43DECD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 100864 ----a-w- c:\windows\system32\MP3DMOD.DLL
2015-12-08 19:07 . 2016-01-13 11:21 206848 ----a-w- c:\windows\system32\mfps.dll
2015-12-08 19:07 . 2016-01-13 11:21 5120 ----a-w- c:\windows\system32\ksuser.dll
2015-12-08 19:07 . 2016-01-13 11:21 632320 ----a-w- c:\windows\system32\evr.dll
2015-12-08 19:07 . 2016-01-13 11:18 405504 ----a-w- c:\windows\system32\gdi32.dll
2015-12-08 19:07 . 2016-01-13 11:21 189952 ----a-w- c:\windows\system32\COLORCNV.DLL
2015-12-08 19:07 . 2016-01-13 11:21 76288 ----a-w- c:\windows\system32\devenum.dll
2015-12-08 19:07 . 2016-01-13 11:21 55808 ----a-w- c:\windows\system32\rrinstaller.exe
2015-12-08 19:06 . 2016-01-13 11:21 24576 ----a-w- c:\windows\system32\mfpmp.exe
2015-12-08 19:06 . 2016-01-13 11:21 250880 ----a-w- c:\windows\system32\ksproxy.ax
2015-12-08 19:04 . 2016-01-13 11:21 2048 ----a-w- c:\windows\system32\mferror.dll
2015-12-08 18:54 . 2016-01-13 11:21 116736 ----a-w- c:\windows\system32\drivers\drmk.sys
2015-12-08 18:12 . 2016-01-13 11:21 230400 ----a-w- c:\windows\system32\drivers\portcls.sys
2015-12-08 18:11 . 2016-01-13 11:21 5632 ----a-w- c:\windows\system32\drivers\drmkaud.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-12-22 19:40 223432 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-12-22 19:40 223432 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-12-22 19:40 223432 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE" [2014-03-13 779776]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2016-02-08 7139768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\program files (x86)\DVD Region+CSS Free\DVDShell.dll" [2004-10-09 49152]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R1 aswNetSec;aswNetSec;c:\windows\system32\drivers\aswNetSec.sys;c:\windows\SYSNATIVE\drivers\aswNetSec.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;Logitech QuickCam E3500(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
S0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 fbfmon;fbfmon;c:\windows\system32\drivers\fbfmon.sys;c:\windows\SYSNATIVE\drivers\fbfmon.sys [x]
S0 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver;c:\windows\system32\drivers\DDCDrv.sys;c:\windows\SYSNATIVE\drivers\DDCDrv.sys [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 BPntDrv;BPntDrv;c:\windows\system32\drivers\BPntDrv.sys;c:\windows\SYSNATIVE\drivers\BPntDrv.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 avast! Firewall;Avast Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 JME Keyboard;JME Keyboard Driver;c:\windows\jmesoft\Service.exe;c:\windows\jmesoft\Service.exe [x]
S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe;c:\program files\Tablet\Pen\Pen_Tablet.exe [x]
S2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe;c:\program files\Tablet\Pen\Pen_TouchService.exe [x]
S3 GeneStor;Genesys Logic Storage Driver;c:\windows\system32\DRIVERS\GeneStor.sys;c:\windows\SYSNATIVE\DRIVERS\GeneStor.sys [x]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys;c:\windows\SYSNATIVE\drivers\IntcHdmi.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-02-10 19:35 1090376 ----a-w- c:\program files (x86)\Google\Chrome\Application\48.0.2564.109\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2016-01-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-07 19:12]
.
2016-02-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-30 06:14]
.
2016-02-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-30 06:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-12-22 19:41 262344 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-12-22 19:41 262344 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-12-22 19:41 262344 ----a-w- c:\users\Tomovo\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2016-02-08 08:49 905248 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
------- Doplňkový sken -------
.
uStart Page = hxxp://klikni.idnes.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\users\Tomovo\AppData\Roaming\Mozilla\Firefox\Profiles\vmxpa79d.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4137841976-1429192737-3493938406-1001\Software\SecuROM\License information*]
"datasecu"=hex:9b,cd,29,d7,f5,75,41,d6,07,77,40,3d,0a,7b,03,62,6e,4b,c4,7a,f5,
67,87,e7,40,2f,5f,05,72,e6,4d,c5,93,a0,7d,db,f9,2f,6c,a9,4e,90,b2,bb,0b,13,\
"rkeysecu"=hex:51,e6,f9,ba,3d,4f,7b,3d,d6,5f,f6,11,d0,51,c6,ec
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil10b.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\FlashUtil10b.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0BE09CC1-42E0-11DD-AE16-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWow64\\Macromed\\Flash\\Flash10b.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
.
**************************************************************************
.
Celkový čas: 2016-02-15 15:04:40 - počítač byl restartován
ComboFix-quarantined-files.txt 2016-02-15 14:04
.
Před spuštěním: 46 112 247 808 bytes free
Po spuštění: 46 395 887 616 bytes free
.
- - End Of File - - 0AE7E13626CFCBD26D349B72A864A7C2
A36C5E4F47E84449FF07ED3517B43A31

#9 Příspěvek od **Roli** » 16 úno 2016 17:25

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Aktualizuj ovladače od grafiky, pokud nevíš co tam máš použij AIDA 64

Sice se jedná o trial ale náš účel splní.

Nainstaluj ji >> spusť >> klik na Počítač >> dále Přehled,

nahoře v aplikaci klikni na Zpráva vyber Rychlá zpráva >> Prostý text

a zkopíruj mi sem vše po Síť :, kouknu se co se s tím dá dělat.

Pak dej vědět jak se PC chová.

iwiboy · #10 Příspěvek od **iwiboy** » 17 úno 2016 12:44

T-Cleaner se mi (s vypnutým Avastem) stáhl, ale nešel spustit, že mám kontaktovat prodejce

EDIT: pak už zase šel, po čase, ale když jsem zvolil A (a ne N), nepokračoval v činnosti.

Aida zde:

--------[ AIDA64 Extreme ]----------------------------------------------------------------------------------------------

Verze AIDA64 v5.60.3700/cz
Modul benchmarku 4.1.643-x64
Domovská stránka http://www.aida64.com/
Typ zprávy Asistent zpráv [ TRIAL VERSION ]
Počítač LENOVO
Vytvořil Tomovo
Operační systém Microsoft Windows 7 Home Premium 6.1.7601.19135 (Win7 RTM)
Datum 2016-02-17
Čas 12:41

--------[ Přehled ]-----------------------------------------------------------------------------------------------------

Počítač:
Typ počítače ACPI x64-based PC
Operační systém Microsoft Windows 7 Home Premium
Aktualizace Service pack [ TRIAL VERSION ]
Internet Explorer 11.0.9600.18204
DirectX DirectX 11.1
Jméno počítače LENOVO
Jméno uživatele Tomovo
Přihlašovací doména [ TRIAL VERSION ]
Datum / Čas 2016-02-17 / 12:41

Základní deska:
Typ CPU DualCore Intel Pentium E6700, 3200 MHz (12 x 267)
Název základní desky Lenovo H410
Čipová sada základní desky Intel Eaglelake G41
Pracovní paměť [ TRIAL VERSION ]
DIMM3: SHARETRONIC [ TRIAL VERSION ]
Typ BIOSu AMI (03/31/11)

Zobrazení:
Grafický adaptér Intel(R) G41 Express Chipset (850556 KB)
Grafický adaptér Intel(R) G41 Express Chipset (850556 KB)
3D-akcelerátor Intel GMA X4500

Multimédia:
Zvukový adaptér Intel Eaglelake HDMI @ Intel 82801GB ICH7 - High Definition Audio Controller [A-1]
Zvukový adaptér Realtek ALC662 @ Intel 82801GB ICH7 - High Definition Audio Controller [A-1]

Nosiče dat:
Ovladač IDE Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
Ovladač IDE Intel(R) 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0
Disková jednotka SAMSUNG HD502HJ ATA Device (500 GB, 7200 RPM, SATA-II)
Optická jednotka Optiarc DVD RW AD-7250H ATA Device
Stav SMART pevného disku OK

Oddíly:
C: (NTFS) [ TRIAL VERSION ]
Celková velikost [ TRIAL VERSION ]

Vstupní zařízení:
Klávesnice Standard PS/2 Keyboard
Myš Microsoft PS/2 Mouse
Myš Wacom Mouse

Síť:
Primární adresa IP [ TRIAL VERSION ]
Primární adresa MAC 10-78-D2-FB-9C-A9
Síťový adaptér Realtek PCIe FE Family Controller (213. [ TRIAL VERSION ])

#11 Příspěvek od **Roli** » 17 úno 2016 18:11

Tak že, ZDE máš ovladač pro grafiku, je to ten druhý pro Windows 7, 64-bit.

Pak dej vědět.

iwiboy · #12 Příspěvek od **iwiboy** » 21 úno 2016 18:53

Roli: Bylo to se mnou tentokrát velmi dlouhé, ale od začátku tohoto vlákna jsem neměl žádný potíže. Graf. ovladač aktualizován a dnes jsem poprvé při zapínání dostal přihlaš. obrazovku se jménem Uživ. profilu (mám tu jen ten jeden) a tak jsem spokojen. Tak to je jediná změna, kterou registruji. Jsem spokojen. Díky!

#13 Příspěvek od **Roli** » 23 úno 2016 16:07

iwiboy píše:Jsem spokojen. Díky!

Není zač a

VIRY.CZ

První BSOD _ desktop

První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop

Re: První BSOD _ desktop