Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Notebook Lenovo

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Radek04
Návštěvník
Návštěvník
Příspěvky: 132
Registrován: 28 bře 2007 19:43

Notebook Lenovo

#1 Příspěvek od Radek04 »

Dobrý den, mám rok koupené lenovo a pořád se u něj dějí nějaké nepravosti. Chvíli funguje a pak se zase zasekne, naběhne, pak spustí automatická oprava - u ní to někdy napíše že se sám neopraví že se má dát do servisu a zase chvíli funguje. A takhle stále dokola. Pomohli byste? Děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Stáňa at 2017-08-19 18:50:13
Microsoft Windows 8.1
System drive C: has 696 GB (76%) free of 911 GB
Total RAM: 8084 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:50:15, on 19. 8. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files\trend micro\Stáňa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={4F144289 ... 2015-07-21 16:14:40&v=4.3.1.831&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKCU\..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: VisualDiscovery - Unknown owner - C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9270 bytes

======Listing Processes======





wininit.exe

winlogon.exe


C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"C:\windows\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService

C:\windows\system32\WLANExt.exe 701389506208
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\SysWOW64\SAsrv.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-50b9841a-704d-4885-a1d8-f8f71c2e7c2a -SystemEventPortName:HostProcess-ae788648-9f03-4196-a158-4284db4a86ad -IoCancelEventPortName:HostProcess-8118e7f0-752e-41f5-8e04-e52806521428 -NonStateChangingEventPortName:HostProcess-6e06e462-f020-4ee2-ab60-09e1e55c0728 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a6be12e-a291-4be2-a1f8-075c5d6162ef -DeviceGroupId:WudfDefaultDevicePool

"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\windows\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Stáňa\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Stáňa\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=60.0.3112.90 --initial-client-data=0x120,0x124,0x128,0x11c,0x12c,0x7ffaa58d29c0,0x7ffaa58d29d8,0x7ffaa58d29e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4164 --on-initialized-event-handle=504 --parent-handle=508 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,19,20,21,24,26,43,64,77 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3379 --gpu-driver-date=12-20-2013 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1341 --service-request-channel-token=0CC28937D94C278CD4E0E77C4CB54036 --mojo-platform-channel-handle=1216 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=A3641672AC2B97E274D64B897B75A79B --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=A3641672AC2B97E274D64B897B75A79B --renderer-client-id=4 --mojo-platform-channel-handle=2636 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=02A2573790A6FA8ED6112A3FE6C89C13 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=02A2573790A6FA8ED6112A3FE6C89C13 --renderer-client-id=5 --mojo-platform-channel-handle=2708 /prefetch:1
"C:\Windows\System32\igfxtray.exe"
"C:\windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe" -start
AvastUI.exe /nogui
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Users\Stáňa\AppData\Local\Pokki\Engine\StartMenuIndexer.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=937A5F5DA4CB88AE183C4D137856173F --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=937A5F5DA4CB88AE183C4D137856173F --renderer-client-id=8 --mojo-platform-channel-handle=4624 /prefetch:1
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=C4F5D29C83945554D3F9159E9CCF0011 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=C4F5D29C83945554D3F9159E9CCF0011 --renderer-client-id=11 --mojo-platform-channel-handle=5272 /prefetch:1
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=59EDE27E38645836068E3653D211CB21 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=59EDE27E38645836068E3653D211CB21 --renderer-client-id=52 --mojo-platform-channel-handle=5956 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=4F1522F2CD9972737B225EC8977D5B7D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=4F1522F2CD9972737B225EC8977D5B7D --renderer-client-id=55 --mojo-platform-channel-handle=8964 /prefetch:1
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Stáňa\Downloads\Carodejky\8. serie\Charmed 08x17.avi"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=E644A5B2945B631ED63940FBBD731069 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=E644A5B2945B631ED63940FBBD731069 --renderer-client-id=61 --mojo-platform-channel-handle=7608 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1208,3356863549909005260,14222738616803016209,131072 --service-pipe-token=5AF3162BE363AB940CCB686CC4206FFC --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=5AF3162BE363AB940CCB686CC4206FFC --renderer-client-id=62 --mojo-platform-channel-handle=7692 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe57_ Global\UsGthrCtrlFltPipeMssGthrPipe57 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
"C:\windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Stáňa\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-01 896048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-07-01 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-01 774440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-07-01 193136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-07-01 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-07-01 193136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-24 391152]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-24 771568]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-24 770544]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-10-18 1028384]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-10-10 7818040]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-08-04 213832]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-07-14 303928]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Stáňa\AppData\Local\Pokki\Engine\Launcher.dll [2014-04-29 1893144]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-12-18 624640]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDWFP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VisualDiscovery]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-08-19 18:49:00 ----D---- C:\rsit
2017-08-19 18:49:00 ----D---- C:\Program Files\trend micro
2017-08-17 16:15:10 ----SD---- C:\windows\SYSWOW64\Microsoft
2017-08-16 22:56:50 ----D---- C:\Program Files\iTunes
2017-08-16 22:56:50 ----D---- C:\Program Files\iPod
2017-08-16 22:54:56 ----D---- C:\Program Files\Bonjour
2017-08-16 22:54:56 ----D---- C:\Program Files (x86)\Bonjour
2017-08-16 22:54:39 ----D---- C:\Program Files (x86)\Apple Software Update
2017-08-16 22:54:37 ----SHD---- C:\Config.Msi
2017-08-10 19:36:02 ----D---- C:\windows\Minidump
2017-08-09 12:59:43 ----A---- C:\windows\system32\mshtml.dll
2017-08-09 12:59:42 ----A---- C:\windows\SYSWOW64\mshtml.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\jscript9.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\ieframe.dll
2017-08-09 12:59:40 ----A---- C:\windows\SYSWOW64\jscript9.dll
2017-08-09 12:59:40 ----A---- C:\windows\system32\glcndFilter.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrepl40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd3x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd2x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjtes40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjetoledb40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjet40.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\win32k.sys
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mstext40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mspbde40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msltus40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2017-08-09 12:59:36 ----A---- C:\windows\system32\drivers\tcpip.sys
2017-08-09 12:59:36 ----A---- C:\windows\system32\authui.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\tquery.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\msxbde40.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\wlansvc.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\tquery.dll
2017-08-09 12:59:34 ----A---- C:\windows\system32\lsasrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\authui.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\termsrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\dnsapi.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\SessEnv.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\umrdp.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\dnsrslvr.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlansec.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswstr10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswdat10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\msjter40.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\wer.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\drivers\nwifi.sys
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\wer.dll
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\msjint40.dll
2017-08-09 12:59:29 ----A---- C:\windows\system32\ntoskrnl.exe
2017-08-09 12:59:29 ----A---- C:\windows\system32\drivers\msiscsi.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\volmgrx.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\clfs.sys
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\jscript.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\tdx.sys
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2017-08-09 12:59:26 ----A---- C:\windows\system32\winresume.exe
2017-08-09 12:59:26 ----A---- C:\windows\system32\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\SYSWOW64\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\system32\winload.exe
2017-08-09 12:59:25 ----A---- C:\windows\system32\drivers\pdc.sys
2017-08-09 12:59:22 ----A---- C:\windows\SYSWOW64\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\ProximityService.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\certcli.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlansec.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlanmsm.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\certcli.dll
2017-08-09 12:59:19 ----A---- C:\windows\SYSWOW64\ieframe.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\wininet.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\urlmon.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\wininet.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\urlmon.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\jscript.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\system32\rdsdwmdr.dll
2017-08-04 13:02:33 ----A---- C:\windows\system32\aspnet_counters.dll
2017-08-04 13:02:30 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2017-08-04 13:02:13 ----A---- C:\windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-04 13:02:13 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2017-08-04 13:02:12 ----A---- C:\windows\system32\msvcp120_clr0400.dll
2017-08-04 13:02:06 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\system32\msvcr120_clr0400.dll
2017-08-04 11:47:26 ----A---- C:\windows\system32\aswBoot.exe
2017-07-21 20:04:18 ----SHD---- C:\found.000

======List of files/folders modified in the last 1 month======

2017-08-19 18:50:04 ----D---- C:\windows\Prefetch
2017-08-19 18:49:39 ----D---- C:\windows\Temp
2017-08-19 18:49:00 ----RD---- C:\Program Files
2017-08-19 16:00:00 ----D---- C:\windows\system32\sru
2017-08-19 14:48:26 ----HD---- C:\ProgramData
2017-08-19 14:38:44 ----D---- C:\Users\Stáňa\AppData\Roaming\vlc
2017-08-19 13:37:11 ----D---- C:\windows\Microsoft.NET
2017-08-19 10:58:16 ----D---- C:\windows\system32\drivers
2017-08-18 19:40:54 ----RD---- C:\windows\assembly
2017-08-18 17:55:56 ----D---- C:\windows\rescache
2017-08-18 17:49:52 ----D---- C:\windows\system32\config
2017-08-17 16:19:15 ----RAD---- C:\windows\System32
2017-08-17 16:19:15 ----D---- C:\windows\Inf
2017-08-17 16:19:15 ----A---- C:\windows\system32\PerfStringBackup.INI
2017-08-17 16:15:24 ----D---- C:\windows\WinSxS
2017-08-17 16:15:10 ----D---- C:\windows\SysWOW64
2017-08-17 16:15:08 ----D---- C:\windows\system32\DriverStore
2017-08-17 16:13:05 ----D---- C:\windows\SYSWOW64\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\Boot
2017-08-17 16:12:59 ----D---- C:\Users\Stáňa\AppData\Roaming\uTorrent
2017-08-16 22:57:36 ----SHD---- C:\windows\Installer
2017-08-16 22:56:46 ----D---- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2017-08-16 22:56:32 ----RD---- C:\Program Files (x86)
2017-08-16 22:56:32 ----D---- C:\Program Files\Common Files\Apple
2017-08-16 22:54:40 ----D---- C:\windows\system32\Tasks
2017-08-15 11:49:13 ----D---- C:\windows\system32\MRT
2017-08-15 11:47:37 ----AC---- C:\windows\system32\MRT.exe
2017-08-15 11:47:32 ----D---- C:\windows\CbsTemp
2017-08-13 15:05:01 ----SHD---- C:\System Volume Information
2017-08-10 19:36:02 ----AD---- C:\Windows
2017-08-10 13:09:37 ----HD---- C:\Program Files\WindowsApps
2017-08-10 13:09:37 ----D---- C:\windows\AppReadiness
2017-08-09 12:49:18 ----D---- C:\windows\system32\catroot2
2017-08-04 21:32:54 ----D---- C:\windows\system32\LogFiles
2017-07-29 02:03:54 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2017-07-23 11:46:52 ----D---- C:\windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2017-08-04 198976]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2017-08-04 343288]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2017-08-04 57728]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2017-07-01 84392]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2017-07-01 361336]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2017-08-04 320008]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2017-07-01 110352]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2017-08-12 1015880]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2017-07-01 585608]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2017-08-12 146704]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2017-07-01 198768]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem15.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2013-07-23 140600]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2013-10-19 1408824]
R3 CnxtHdAudService;@oem64.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2014-01-27 1474240]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem16.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\windows\system32\DRIVERS\ibtusb.sys [2013-10-18 142280]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2013-12-18 4216320]
R3 iwdbus;@oem7.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2013-12-15 27032]
R3 MEIx64;@oem10.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;@oem66.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\windows\system32\DRIVERS\NETwbw02.sys [2013-12-25 3609568]
R3 nvlddmkm;nvlddmkm; C:\windows\system32\DRIVERS\nvlddmkm.sys [2014-01-06 12651296]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-08-08 329944]
R3 RTL8168;@oem65.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-24 34544]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-12-24 532720]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S3 ACPIVPC;@oem71.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2014-10-16 35600]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2017-07-01 46984]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem6.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2013-12-15 39320]
S3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2013-12-18 450520]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 rtsuvc;@oem46.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys []
S3 USBAAPL64;@oem18.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-08-04 263312]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-10-03 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-10-03 1157496]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-11-21 631024]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-10-16 198192]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2014-01-06 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-18 1914656]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-11-21 154864]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe []
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-08-04 7430992]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-07-14 689976]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 VisualDiscovery;VisualDiscovery; C:\Program Files (x86)\Lenovo\VisualDiscovery\VisualDiscovery.exe []
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2013-12-24 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2017-07-01 194032]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-11-21 284912]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Notebook Lenovo

#2 Příspěvek od Rudy »

Zdravím!
Zkusíme vyčistit. Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Radek04
Návštěvník
Návštěvník
Příspěvky: 132
Registrován: 28 bře 2007 19:43

Re: Notebook Lenovo

#3 Příspěvek od Radek04 »

Přikládám sken

# AdwCleaner 7.0.1.0 - Logfile created on Sat Aug 19 18:22:19 2017
# Updated on 2017/05/08 by Malwarebytes
# Database: 08-17-2017.2
# Running on Windows 8.1 (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

PUP.Optional.Legacy, VisualDiscovery
PUP.Optional.VisualDiscovery, VisualDiscovery


***** [ Folders ] *****

PUP.Optional.Legacy, C:\ProgramData\Pokki
PUP.Optional.Legacy, C:\ProgramData\Application Data\Pokki
PUP.Optional.Legacy, C:\Users\All Users\Pokki
PUP.Optional.Legacy, C:\Users\Default\AppData\Local\Pokki
PUP.Optional.Legacy, C:\Users\Default User\AppData\Local\Pokki
PUP.Optional.Legacy, C:\Users\Stáňa\AppData\Local\Pokki
PUP.Optional.VisualDiscovery, C:\Program Files (x86)\Lenovo\VisualDiscovery
PUP.Adware.Heuristic, C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7


***** [ Files ] *****

PUP.Optional.PCAppStore, C:\Users\Stáňa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PC App Store.lnk
PUP.Optional.Winsock.WnskRST, C:\Windows\System32\VisualDiscoveryOff.ini
PUP.Optional.Winsock.WnskRST, C:\Windows\SysNative\VisualDiscoveryOff.ini
PUP.Optional.Winsock.WnskRST, C:\Windows\SysWOW64\VisualDiscoveryOff.ini
PUP.Optional.VisualDiscovery, C:\Windows\System32\VisualDiscovery.ini
PUP.Optional.VisualDiscovery, C:\Windows\SysWOW64\VisualDiscovery.ini


***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
PUP.Optional.Legacy, [Data] - HKCU\Software\Microsoft\Internet Explorer\Main | Start Page [https:\\mysearch.avg.com\?cid={4F144289-2686-46F3-8D24-7E86CF7CB2A4}&mid=0ecb1308098d47cda1d2013773f607c3-c91922b4e7e6dbbf9a02756c3cbcf44d19978aea&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0616tb&pr=fr&d=2015-07-21 16:14:40&v=4.3.1.831&pid=wtu&sg=&sap=hp]
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3756104987-2834615331-2915130515-1002\Software\Pokki
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3756104987-2834615331-2915130515-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
PUP.Optional.Legacy, [Key] - HKCU\Software\Pokki
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{617E26CE-E6E1-4C75-A68A-A001F2B98491}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{8128586C-DF69-4266-873F-CF4C6F705A7C}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{9AD5C084-B6E6-456A-8BA2-A559663780E5}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{70C7334A-66D9-46DE-A4E2-6B923C7DB94E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{5780633B-414C-446F-8EB2-FF1C9A731C99}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{4EECDED2-40FB-4500-85B4-86FB0EBECA68}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{10A7F29D-4B00-40EC-B07D-8616DF8135E6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{05FF6A00-76A3-4AA1-A9A4-A782152ABE60}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{02966FA9-C01A-47E7-A169-C83AEA1FB0BA}
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-3756104987-2834615331-2915130515-1002\Software\Microsoft\Windows\CurrentVersion\Run | Pokki
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-3756104987-2834615331-2915130515-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | Pokki
PUP.Optional.Legacy, [Value] - HKCU\Software\Microsoft\Windows\CurrentVersion\Run | Pokki
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\CLASSES\APPID\VISUALDISCOVERY.EXE
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\VISUALDISCOVERY.EXE
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VDWFP
PUP.Optional.Legacy, [Key] - HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VisualDiscovery
PUP.Optional.WebWatcher, [Key] - HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
PUP.Optional.WebWatcher, [Key] - HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
PUP.Optional.WebWatcher, [Key] - HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
PUP.Optional.VisualDiscovery, [Key] - HKLM\SOFTWARE\VisualDiscovery
PUP.Optional.VisualDiscovery, [Key] - HKLM\SOFTWARE\Superfish Inc. VisualDiscovery
PUP.Optional.VisualDiscovery, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Superfish Inc. VisualDiscovery


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Notebook Lenovo

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Radek04
Návštěvník
Návštěvník
Příspěvky: 132
Registrován: 28 bře 2007 19:43

Re: Notebook Lenovo

#5 Příspěvek od Radek04 »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Stáňa at 2017-08-19 21:19:30
Microsoft Windows 8.1
System drive C: has 696 GB (76%) free of 911 GB
Total RAM: 8084 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:19:31, on 19. 8. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Stáňa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 8726 bytes

======Listing Processes======





wininit.exe

winlogon.exe


C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\windows\system32\nvvsvc.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService

C:\windows\system32\WLANExt.exe 1003674680512
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\SysWOW64\SAsrv.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe

C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8054c824-5e8c-43e0-80e1-ff5af48ec06d -SystemEventPortName:HostProcess-2f6331e7-749d-4df9-a9e0-26e9d7a71c5c -IoCancelEventPortName:HostProcess-805178ab-61f9-42a7-b23e-d9cdbfa4a593 -NonStateChangingEventPortName:HostProcess-1fae58ea-ab90-481b-9a80-aafd0b116c9c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a00e338-3eb4-409a-8a26-7e0e109c00b1 -DeviceGroupId:WudfDefaultDevicePool
C:\windows\Explorer.EXE
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\skydrive.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Stáňa\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Stáňa\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=60.0.3112.101 --initial-client-data=0x11c,0x120,0x124,0x118,0x128,0x7ffbe77729c0,0x7ffbe77729d8,0x7ffbe77729e8
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4304 --on-initialized-event-handle=496 --parent-handle=512 /prefetch:6
AvastUI.exe /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,19,20,21,24,26,43,64,77 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3379 --gpu-driver-date=12-20-2013 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1341 --service-request-channel-token=43AE0A9CEDEDBFD5843D4804E45DF1D8 --mojo-platform-channel-handle=1220 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=9664DF58B390EF576FB2CF0EDF31CD5A --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=9664DF58B390EF576FB2CF0EDF31CD5A --renderer-client-id=4 --mojo-platform-channel-handle=2624 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=90088B178E388A9D4D19AFC22196593F --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=90088B178E388A9D4D19AFC22196593F --renderer-client-id=5 --mojo-platform-channel-handle=2688 /prefetch:1
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding

"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=13188D49F9C6C5F1F65B043164EC6DD9 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=13188D49F9C6C5F1F65B043164EC6DD9 --renderer-client-id=18 --mojo-platform-channel-handle=5404 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=F4F2A035EC7E8D0BD777986E6746E444 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F4F2A035EC7E8D0BD777986E6746E444 --renderer-client-id=20 --mojo-platform-channel-handle=6640 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=CDA9E3EB955FA6535C940DCB78620579 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=CDA9E3EB955FA6535C940DCB78620579 --renderer-client-id=25 --mojo-platform-channel-handle=3000 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=3EBF55CFD94AC009B0456CA3A31C6F32 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=3EBF55CFD94AC009B0456CA3A31C6F32 --renderer-client-id=26 --mojo-platform-channel-handle=1872 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1212,7437137857526945637,8098639588637623555,131072 --service-pipe-token=72BA1756A3B26869FFE5C220A05A16E6 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=72BA1756A3B26869FFE5C220A05A16E6 --renderer-client-id=30 --mojo-platform-channel-handle=3316 /prefetch:1
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Stáňa\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-01 896048]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-07-01 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-01 774440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-07-01 193136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-07-01 255088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-07-01 193136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-24 391152]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-24 771568]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-24 770544]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-10-18 1028384]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-10-10 7818040]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-08-04 213832]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-07-14 303928]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-12-18 624640]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-08-19 20:21:15 ----D---- C:\AdwCleaner
2017-08-19 18:49:00 ----D---- C:\rsit
2017-08-19 18:49:00 ----D---- C:\Program Files\trend micro
2017-08-17 16:15:10 ----SD---- C:\windows\SYSWOW64\Microsoft
2017-08-16 22:56:50 ----D---- C:\Program Files\iTunes
2017-08-16 22:56:50 ----D---- C:\Program Files\iPod
2017-08-16 22:54:56 ----D---- C:\Program Files\Bonjour
2017-08-16 22:54:56 ----D---- C:\Program Files (x86)\Bonjour
2017-08-16 22:54:39 ----D---- C:\Program Files (x86)\Apple Software Update
2017-08-16 22:54:37 ----SHD---- C:\Config.Msi
2017-08-10 19:36:02 ----D---- C:\windows\Minidump
2017-08-09 12:59:43 ----A---- C:\windows\system32\mshtml.dll
2017-08-09 12:59:42 ----A---- C:\windows\SYSWOW64\mshtml.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\jscript9.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\ieframe.dll
2017-08-09 12:59:40 ----A---- C:\windows\SYSWOW64\jscript9.dll
2017-08-09 12:59:40 ----A---- C:\windows\system32\glcndFilter.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrepl40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd3x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd2x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjtes40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjetoledb40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjet40.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\win32k.sys
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mstext40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mspbde40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msltus40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2017-08-09 12:59:36 ----A---- C:\windows\system32\drivers\tcpip.sys
2017-08-09 12:59:36 ----A---- C:\windows\system32\authui.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\tquery.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\msxbde40.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\wlansvc.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\tquery.dll
2017-08-09 12:59:34 ----A---- C:\windows\system32\lsasrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\authui.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\termsrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\dnsapi.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\SessEnv.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\umrdp.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\dnsrslvr.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlansec.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswstr10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswdat10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\msjter40.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\wer.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\drivers\nwifi.sys
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\wer.dll
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\msjint40.dll
2017-08-09 12:59:29 ----A---- C:\windows\system32\ntoskrnl.exe
2017-08-09 12:59:29 ----A---- C:\windows\system32\drivers\msiscsi.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\volmgrx.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\clfs.sys
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\jscript.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\tdx.sys
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2017-08-09 12:59:26 ----A---- C:\windows\system32\winresume.exe
2017-08-09 12:59:26 ----A---- C:\windows\system32\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\SYSWOW64\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\system32\winload.exe
2017-08-09 12:59:25 ----A---- C:\windows\system32\drivers\pdc.sys
2017-08-09 12:59:22 ----A---- C:\windows\SYSWOW64\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\ProximityService.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\certcli.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlansec.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlanmsm.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\certcli.dll
2017-08-09 12:59:19 ----A---- C:\windows\SYSWOW64\ieframe.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\wininet.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\urlmon.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\wininet.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\urlmon.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\jscript.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\system32\rdsdwmdr.dll
2017-08-04 13:02:33 ----A---- C:\windows\system32\aspnet_counters.dll
2017-08-04 13:02:30 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2017-08-04 13:02:13 ----A---- C:\windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-04 13:02:13 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2017-08-04 13:02:12 ----A---- C:\windows\system32\msvcp120_clr0400.dll
2017-08-04 13:02:06 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\system32\msvcr120_clr0400.dll
2017-08-04 11:47:26 ----A---- C:\windows\system32\aswBoot.exe
2017-07-21 20:04:18 ----SHD---- C:\found.000

======List of files/folders modified in the last 1 month======

2017-08-19 21:18:22 ----D---- C:\Users\Stáňa\AppData\Roaming\vlc
2017-08-19 21:14:57 ----D---- C:\windows\Temp
2017-08-19 21:00:00 ----D---- C:\windows\system32\sru
2017-08-19 20:31:36 ----RAD---- C:\windows\System32
2017-08-19 20:31:36 ----A---- C:\windows\system32\PerfStringBackup.INI
2017-08-19 20:31:35 ----D---- C:\windows\Inf
2017-08-19 20:25:37 ----D---- C:\windows\Prefetch
2017-08-19 20:23:19 ----HD---- C:\ProgramData
2017-08-19 20:23:19 ----D---- C:\windows\SysWOW64
2017-08-19 20:23:19 ----D---- C:\Program Files (x86)\Lenovo
2017-08-19 18:49:00 ----RD---- C:\Program Files
2017-08-19 13:37:11 ----D---- C:\windows\Microsoft.NET
2017-08-19 10:58:16 ----D---- C:\windows\system32\drivers
2017-08-18 19:40:54 ----RD---- C:\windows\assembly
2017-08-18 17:55:56 ----D---- C:\windows\rescache
2017-08-18 17:49:52 ----D---- C:\windows\system32\config
2017-08-17 16:15:24 ----D---- C:\windows\WinSxS
2017-08-17 16:15:08 ----D---- C:\windows\system32\DriverStore
2017-08-17 16:13:05 ----D---- C:\windows\SYSWOW64\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\Boot
2017-08-17 16:12:59 ----D---- C:\Users\Stáňa\AppData\Roaming\uTorrent
2017-08-16 22:57:36 ----SHD---- C:\windows\Installer
2017-08-16 22:56:32 ----RD---- C:\Program Files (x86)
2017-08-16 22:56:32 ----D---- C:\Program Files\Common Files\Apple
2017-08-16 22:54:40 ----D---- C:\windows\system32\Tasks
2017-08-15 11:49:13 ----D---- C:\windows\system32\MRT
2017-08-15 11:47:37 ----AC---- C:\windows\system32\MRT.exe
2017-08-15 11:47:32 ----D---- C:\windows\CbsTemp
2017-08-13 15:05:01 ----SHD---- C:\System Volume Information
2017-08-10 19:36:02 ----AD---- C:\Windows
2017-08-10 13:09:37 ----HD---- C:\Program Files\WindowsApps
2017-08-10 13:09:37 ----D---- C:\windows\AppReadiness
2017-08-09 12:49:18 ----D---- C:\windows\system32\catroot2
2017-08-04 21:32:54 ----D---- C:\windows\system32\LogFiles
2017-07-29 02:03:54 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2017-07-23 11:46:52 ----D---- C:\windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2017-08-04 198976]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2017-08-04 343288]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2017-08-04 57728]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2017-07-01 84392]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2017-07-01 361336]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2017-08-04 320008]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2017-07-01 110352]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2017-08-12 1015880]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2017-07-01 585608]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2017-08-12 146704]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2017-07-01 198768]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem15.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2013-07-23 140600]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2013-10-19 1408824]
R3 CnxtHdAudService;@oem64.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2014-01-27 1474240]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem16.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\windows\system32\DRIVERS\ibtusb.sys [2013-10-18 142280]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2013-12-18 4216320]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2013-12-18 450520]
R3 iwdbus;@oem7.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2013-12-15 27032]
R3 MEIx64;@oem10.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;@oem66.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\windows\system32\DRIVERS\NETwbw02.sys [2013-12-25 3609568]
R3 nvlddmkm;nvlddmkm; C:\windows\system32\DRIVERS\nvlddmkm.sys [2014-01-06 12651296]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-08-08 329944]
R3 RTL8168;@oem65.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-24 34544]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-12-24 532720]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S3 ACPIVPC;@oem71.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2014-10-16 35600]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2017-07-01 46984]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem6.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2013-12-15 39320]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 rtsuvc;@oem46.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys []
S3 USBAAPL64;@oem18.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-08-04 263312]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-10-03 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-10-03 1157496]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-11-21 631024]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-10-16 198192]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2014-01-06 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-18 1914656]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-11-21 154864]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe []
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-08-04 7430992]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-07-14 689976]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2013-12-24 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2017-07-01 194032]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-11-21 284912]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Notebook Lenovo

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files\Bonjour
C:\Program Files (x86)\Bonjour
C:\Program Files (x86)\Bonjour

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64

:services
Bonjour Service

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Radek04
Návštěvník
Návštěvník
Příspěvky: 132
Registrován: 28 bře 2007 19:43

Re: Notebook Lenovo

#7 Příspěvek od Radek04 »

Tady je log. Děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Stáňa at 2017-08-24 14:18:11
Microsoft Windows 8.1
System drive C: has 697 GB (77%) free of 911 GB
Total RAM: 8084 MB (82% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:18:14, on 24. 8. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
C:\Program Files\AVAST Software\Avast\AvLaunch.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Stáňa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O10 - Broken Internet access because of LSP provider 'c:\program files (x86)\bonjour\mdnsnsp.dll' missing
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 8520 bytes

======Listing Processes======





wininit.exe



C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
winlogon.exe
"C:\windows\system32\nvvsvc.exe"
"dwm.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService

C:\windows\system32\WLANExt.exe 99920547664
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\SysWOW64\SAsrv.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe

C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2113ea97-4103-41d6-a744-6fffc38da4f0 -SystemEventPortName:HostProcess-ca04e88b-2d67-4c88-9aa7-e60c8be98fd3 -IoCancelEventPortName:HostProcess-af75975d-ddc2-45a8-9fa7-9ff8c0c5ea8e -NonStateChangingEventPortName:HostProcess-b376ec4d-f5eb-4a3f-bf65-24764f8c6f5b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c061805c-d765-492c-a6b9-27a3977146d3 -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
AvastUI.exe /nogui
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files\iPod\bin\iPodService.exe"

C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Stáňa\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-01 896048]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-01 774440]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-24 391152]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-24 771568]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-24 770544]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-10-18 1028384]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-10-10 7818040]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-08-04 213832]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-07-14 303928]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-12-18 624640]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-08-24 14:10:55 ----D---- C:\_OTM
2017-08-19 20:21:15 ----D---- C:\AdwCleaner
2017-08-19 18:49:00 ----D---- C:\rsit
2017-08-19 18:49:00 ----D---- C:\Program Files\trend micro
2017-08-17 16:15:10 ----SD---- C:\windows\SYSWOW64\Microsoft
2017-08-16 22:56:50 ----D---- C:\Program Files\iTunes
2017-08-16 22:56:50 ----D---- C:\Program Files\iPod
2017-08-16 22:54:39 ----D---- C:\Program Files (x86)\Apple Software Update
2017-08-16 22:54:37 ----SHD---- C:\Config.Msi
2017-08-10 19:36:02 ----D---- C:\windows\Minidump
2017-08-09 12:59:43 ----A---- C:\windows\system32\mshtml.dll
2017-08-09 12:59:42 ----A---- C:\windows\SYSWOW64\mshtml.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\jscript9.dll
2017-08-09 12:59:41 ----A---- C:\windows\system32\ieframe.dll
2017-08-09 12:59:40 ----A---- C:\windows\SYSWOW64\jscript9.dll
2017-08-09 12:59:40 ----A---- C:\windows\system32\glcndFilter.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrepl40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd3x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msrd2x40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjtes40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjetoledb40.dll
2017-08-09 12:59:39 ----A---- C:\windows\SYSWOW64\msjet40.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2017-08-09 12:59:38 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2017-08-09 12:59:37 ----A---- C:\windows\system32\win32k.sys
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mstext40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\mspbde40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msltus40.dll
2017-08-09 12:59:36 ----A---- C:\windows\SYSWOW64\msexcl40.dll
2017-08-09 12:59:36 ----A---- C:\windows\system32\drivers\tcpip.sys
2017-08-09 12:59:36 ----A---- C:\windows\system32\authui.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\tquery.dll
2017-08-09 12:59:35 ----A---- C:\windows\SYSWOW64\msxbde40.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\wlansvc.dll
2017-08-09 12:59:35 ----A---- C:\windows\system32\tquery.dll
2017-08-09 12:59:34 ----A---- C:\windows\system32\lsasrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2017-08-09 12:59:33 ----A---- C:\windows\SYSWOW64\authui.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\termsrv.dll
2017-08-09 12:59:33 ----A---- C:\windows\system32\dnsapi.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\SessEnv.dll
2017-08-09 12:59:32 ----A---- C:\windows\system32\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\SYSWOW64\mprapi.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\umrdp.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\rastls.dll
2017-08-09 12:59:31 ----A---- C:\windows\system32\dnsrslvr.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlansec.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswstr10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\mswdat10.dll
2017-08-09 12:59:30 ----A---- C:\windows\SYSWOW64\msjter40.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\wer.dll
2017-08-09 12:59:30 ----A---- C:\windows\system32\drivers\nwifi.sys
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\wer.dll
2017-08-09 12:59:29 ----A---- C:\windows\SYSWOW64\msjint40.dll
2017-08-09 12:59:29 ----A---- C:\windows\system32\ntoskrnl.exe
2017-08-09 12:59:29 ----A---- C:\windows\system32\drivers\msiscsi.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\volmgrx.sys
2017-08-09 12:59:28 ----A---- C:\windows\system32\drivers\clfs.sys
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\SYSWOW64\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\wlanapi.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\wermgr.exe
2017-08-09 12:59:27 ----A---- C:\windows\system32\jscript.dll
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\tdx.sys
2017-08-09 12:59:27 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2017-08-09 12:59:26 ----A---- C:\windows\system32\winresume.exe
2017-08-09 12:59:26 ----A---- C:\windows\system32\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\SYSWOW64\ntdll.dll
2017-08-09 12:59:25 ----A---- C:\windows\system32\winload.exe
2017-08-09 12:59:25 ----A---- C:\windows\system32\drivers\pdc.sys
2017-08-09 12:59:22 ----A---- C:\windows\SYSWOW64\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\wfdprov.dll
2017-08-09 12:59:21 ----A---- C:\windows\system32\ProximityService.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\SYSWOW64\certcli.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlansec.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\wlanmsm.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\werdiagcontroller.dll
2017-08-09 12:59:20 ----A---- C:\windows\system32\certcli.dll
2017-08-09 12:59:19 ----A---- C:\windows\SYSWOW64\ieframe.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\wininet.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\urlmon.dll
2017-08-09 12:59:19 ----A---- C:\windows\system32\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\wininet.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\urlmon.dll
2017-08-09 12:59:18 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\vbscript.dll
2017-08-09 12:59:18 ----A---- C:\windows\system32\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2017-08-09 12:59:17 ----A---- C:\windows\SYSWOW64\jscript.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\mssrch.dll
2017-08-09 12:59:17 ----A---- C:\windows\system32\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2017-08-09 12:59:16 ----A---- C:\windows\system32\rdsdwmdr.dll
2017-08-04 13:02:33 ----A---- C:\windows\system32\aspnet_counters.dll
2017-08-04 13:02:30 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2017-08-04 13:02:13 ----A---- C:\windows\SYSWOW64\msvcp120_clr0400.dll
2017-08-04 13:02:13 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2017-08-04 13:02:12 ----A---- C:\windows\system32\msvcp120_clr0400.dll
2017-08-04 13:02:06 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\SYSWOW64\msvcr120_clr0400.dll
2017-08-04 13:01:42 ----A---- C:\windows\system32\msvcr120_clr0400.dll
2017-08-04 11:47:26 ----A---- C:\windows\system32\aswBoot.exe

======List of files/folders modified in the last 1 month======

2017-08-24 14:17:46 ----D---- C:\windows\Temp
2017-08-24 14:17:31 ----D---- C:\windows\Prefetch
2017-08-24 14:16:14 ----HD---- C:\ProgramData
2017-08-24 14:15:46 ----D---- C:\windows\AppReadiness
2017-08-24 14:12:35 ----AD---- C:\Windows
2017-08-24 14:10:56 ----RD---- C:\Program Files (x86)
2017-08-24 14:10:56 ----RD---- C:\Program Files
2017-08-24 14:10:56 ----D---- C:\Program Files (x86)\Google
2017-08-20 07:28:42 ----D---- C:\windows\system32\sru
2017-08-19 22:09:02 ----D---- C:\Users\Stáňa\AppData\Roaming\vlc
2017-08-19 20:31:36 ----RAD---- C:\windows\System32
2017-08-19 20:31:36 ----A---- C:\windows\system32\PerfStringBackup.INI
2017-08-19 20:31:35 ----D---- C:\windows\Inf
2017-08-19 20:23:19 ----D---- C:\windows\SysWOW64
2017-08-19 20:23:19 ----D---- C:\Program Files (x86)\Lenovo
2017-08-19 13:37:11 ----D---- C:\windows\Microsoft.NET
2017-08-19 10:58:16 ----D---- C:\windows\system32\drivers
2017-08-18 19:40:54 ----RD---- C:\windows\assembly
2017-08-18 17:55:56 ----D---- C:\windows\rescache
2017-08-18 17:49:52 ----D---- C:\windows\system32\config
2017-08-17 16:15:24 ----D---- C:\windows\WinSxS
2017-08-17 16:15:08 ----D---- C:\windows\system32\DriverStore
2017-08-17 16:13:05 ----D---- C:\windows\SYSWOW64\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\en-US
2017-08-17 16:13:05 ----D---- C:\windows\system32\Boot
2017-08-17 16:12:59 ----D---- C:\Users\Stáňa\AppData\Roaming\uTorrent
2017-08-16 22:57:36 ----SHD---- C:\windows\Installer
2017-08-16 22:56:32 ----D---- C:\Program Files\Common Files\Apple
2017-08-16 22:54:40 ----D---- C:\windows\system32\Tasks
2017-08-15 11:49:13 ----D---- C:\windows\system32\MRT
2017-08-15 11:47:37 ----AC---- C:\windows\system32\MRT.exe
2017-08-15 11:47:32 ----D---- C:\windows\CbsTemp
2017-08-13 15:05:01 ----SHD---- C:\System Volume Information
2017-08-10 13:09:37 ----HD---- C:\Program Files\WindowsApps
2017-08-09 12:49:18 ----D---- C:\windows\system32\catroot2
2017-08-04 21:32:54 ----D---- C:\windows\system32\LogFiles
2017-07-29 02:03:54 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2017-08-04 198976]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2017-08-04 343288]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2017-08-04 57728]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2017-07-01 84392]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2017-07-01 361336]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2013-08-07 644968]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2017-08-04 320008]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2017-07-01 110352]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2017-08-12 1015880]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2017-07-01 585608]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2016-08-13 71680]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2017-08-12 146704]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2017-07-01 198768]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btmaux;@oem15.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2013-07-23 140600]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2013-10-19 1408824]
R3 CnxtHdAudService;@oem64.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2014-01-27 1474240]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 ibtusb;@oem16.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\windows\system32\DRIVERS\ibtusb.sys [2013-10-18 142280]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2013-12-18 4216320]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2013-12-18 450520]
R3 iwdbus;@oem7.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2013-12-15 27032]
R3 MEIx64;@oem10.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;@oem66.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\windows\system32\DRIVERS\NETwbw02.sys [2013-12-25 3609568]
R3 nvlddmkm;nvlddmkm; C:\windows\system32\DRIVERS\nvlddmkm.sys [2014-01-06 12651296]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-08-08 329944]
R3 RTL8168;@oem65.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-24 34544]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-12-24 532720]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2016-08-13 38912]
S3 ACPIVPC;@oem71.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2014-10-16 35600]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2017-07-01 46984]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem6.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2013-12-15 39320]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 rtsuvc;@oem46.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys []
S3 USBAAPL64;@oem18.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-08-04 263312]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-10-03 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-10-03 1157496]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-11-21 631024]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2014-05-22 584960]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-10-16 198192]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2014-01-06 922912]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-18 1914656]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-11-21 154864]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe []
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-08-04 7430992]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-07-14 689976]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2013-12-24 279024]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2017-07-01 194032]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-11-21 284912]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Notebook Lenovo

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Radek04
Návštěvník
Návštěvník
Příspěvky: 132
Registrován: 28 bře 2007 19:43

Re: Notebook Lenovo

#9 Příspěvek od Radek04 »

Podíval jsem se na notebooku na celý film a zatím vše šlape. Je možné že vir se dostal i na externí disk? Nemůže se po připojení k notebooku do něj opět nějak dostat?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Notebook Lenovo

#10 Příspěvek od Rudy »

Disk připojte a pro jistotu je zkontrolujte pomocí USBFix:
Stahnete a spustte http://www.fosshub.com/UsbFix.html
kliknete na Clean, vlozte nakazenou flashku do PC a kliknete na OK
pri dotazu na asistenci kliknete na No
upozorneni na ukonceni procesu - OK
obsah prave vytvoreneho logu vlozte do pristiho prispevku
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět