Dobrý den,
můžu Vás poprosit o preventivku?
Logfile of random's system information tool 1.10 (written by random/random)
Run by Vladenka at 2016-04-23 19:41:18
Microsoft Windows 7 Home Basic Service Pack 1
System drive C: has 411 GB (86%) free of 476 GB
Total RAM: 3689 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:41:21, on 23.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\Vladenka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8738 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\CapsLK OSD\64\Capsosd.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\AUDIODG.EXE 0x5ac
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e3a7bda2-74e8-403d-b73e-930987a79619 -SystemEventPortName:HostProcess-cf4345c3-6fa4-4c7a-b0c4-071ee5e728ef -IoCancelEventPortName:HostProcess-eec604fa-f6f0-4616-8fa5-b8ef18e844ca -NonStateChangingEventPortName:HostProcess-ec7a1c26-7a91-4974-b7ec-638234613ebe -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:53e24f9f-03f3-4264-8637-1f06be529220 -DeviceGroupId:WpdFsGroup
taskeng.exe {7ACC9C53-854A-4D34-9D8C-14863EED18F3}
taskeng.exe {3492FC56-D374-4C9A-8F86-7A7D8F375935}
"C:\Users\Vladenka\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-03-15 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-14 902624]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-03-15 895776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19 2348848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2016-03-15 163016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-14 679680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2016-03-15 720160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19 1741104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2010-04-28 307768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-10-21 2396968]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2015-09-01 9739680]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2015-09-01 5374880]
"{BA1E422A-80A8-4AA0-B67B-CAA3D04C5162}"=C:\Program Files\CapsLK OSD\64\CAPSOSD.EXE [2010-10-25 3699752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-26 55100016]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-06-07 336384]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2010-01-15 536576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-17 7390608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-23 19:37:46 ----D---- C:\rsit
2016-04-23 19:37:46 ----D---- C:\Program Files\trend micro
2016-04-17 18:03:53 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-17 18:03:50 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-17 18:03:49 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-17 18:03:33 ----A---- C:\Windows\system32\rpcss.dll
2016-04-17 18:03:32 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-17 18:03:32 ----A---- C:\Windows\system32\msxml3.dll
2016-04-17 18:03:31 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-17 18:03:31 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-17 18:03:30 ----A---- C:\Windows\system32\generaltel.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\invagent.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\devinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-17 18:03:29 ----A---- C:\Windows\system32\appraiser.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aepic.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aeinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\acmigration.dll
2016-04-17 18:03:27 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-17 18:03:21 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-17 18:03:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-17 18:03:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-17 18:03:18 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-17 18:03:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\certcli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\wow64win.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\winsrv.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\smss.exe
2016-04-17 18:03:15 ----A---- C:\Windows\system32\schannel.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kernel32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-17 18:03:15 ----A---- C:\Windows\system32\advapi32.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wow64.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\sspicli.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\srcore.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\lsass.exe
2016-04-17 18:03:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-17 18:03:14 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\conhost.exe
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\rstrui.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-17 18:03:13 ----A---- C:\Windows\system32\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidapi.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\adtschema.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msaudite.dll
2016-04-17 18:02:51 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapi.dll
2016-04-17 18:02:44 ----A---- C:\Windows\system32\win32k.sys
2016-04-17 18:02:37 ----A---- C:\Windows\system32\samsrv.dll
2016-04-17 18:02:36 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-17 18:02:36 ----A---- C:\Windows\system32\samlib.dll
2016-04-17 18:02:22 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-17 18:02:22 ----A---- C:\Windows\system32\tzres.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\iernonce.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-17 18:02:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\inseng.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-17 18:02:04 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\urlmon.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\occache.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-17 18:01:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-17 18:01:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-17 18:01:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\iesetup.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-17 18:01:50 ----A---- C:\Windows\system32\iertutil.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-17 18:01:48 ----A---- C:\Windows\system32\vbscript.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-17 18:01:47 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-17 18:01:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-17 18:01:41 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-17 18:01:40 ----A---- C:\Windows\system32\webcheck.dll
2016-04-17 18:01:40 ----A---- C:\Windows\system32\jscript.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9.dll
2016-04-17 18:01:37 ----A---- C:\Windows\system32\wininet.dll
2016-04-17 18:01:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-17 18:01:34 ----A---- C:\Windows\system32\msrating.dll
2016-04-17 18:01:33 ----A---- C:\Windows\system32\mshtml.dll
2016-04-14 16:37:51 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-14 16:37:50 ----A---- C:\Windows\system32\drivers\aswNetSec.sys
2016-04-14 16:37:18 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-14 16:36:50 ----A---- C:\Windows\avastSS.scr
2016-04-14 16:34:31 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
======List of files/folders modified in the last 1 month======
2016-04-23 19:41:19 ----D---- C:\Windows\Temp
2016-04-23 19:37:46 ----RD---- C:\Program Files
2016-04-23 19:32:21 ----D---- C:\Users\Vladenka\AppData\Roaming\Skype
2016-04-23 19:31:49 ----D---- C:\Windows\system32\config
2016-04-23 19:24:33 ----D---- C:\Windows
2016-04-23 19:20:01 ----D---- C:\Windows\inf
2016-04-23 19:18:31 ----D---- C:\Windows\debug
2016-04-23 19:11:48 ----D---- C:\Users\Vladenka\AppData\Roaming\Seznam Browser
2016-04-23 19:09:09 ----RD---- C:\Program Files (x86)
2016-04-23 19:08:03 ----SHD---- C:\Windows\Installer
2016-04-23 19:07:44 ----SHD---- C:\System Volume Information
2016-04-23 09:26:22 ----D---- C:\Windows\System32
2016-04-23 09:26:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-22 09:33:53 ----HD---- C:\ProgramData
2016-04-19 19:55:13 ----D---- C:\Windows\Microsoft.NET
2016-04-19 19:55:11 ----RSD---- C:\Windows\assembly
2016-04-19 19:41:47 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-04-19 19:37:07 ----D---- C:\Program Files\Microsoft Office 15
2016-04-18 16:51:05 ----D---- C:\Windows\rescache
2016-04-18 14:47:21 ----D---- C:\Windows\winsxs
2016-04-18 14:42:18 ----D---- C:\Windows\SysWOW64
2016-04-18 14:41:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-18 14:41:44 ----D---- C:\Windows\system32\drivers
2016-04-18 14:41:43 ----D---- C:\Windows\system32\cs-CZ
2016-04-18 14:41:42 ----D---- C:\Windows\system32\en-US
2016-04-18 14:41:21 ----D---- C:\Windows\AppPatch
2016-04-18 14:41:14 ----D---- C:\Windows\system32\Boot
2016-04-18 14:41:05 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-18 14:41:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-18 14:41:03 ----D---- C:\Windows\system32\wbem
2016-04-18 14:40:59 ----D---- C:\Windows\system32\appraiser
2016-04-18 14:40:59 ----D---- C:\Windows\Logs
2016-04-18 14:39:59 ----D---- C:\Program Files\Internet Explorer
2016-04-18 14:39:51 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-18 14:39:19 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-18 14:39:13 ----D---- C:\Windows\system32\DriverStore
2016-04-17 21:45:48 ----D---- C:\Windows\system32\MRT
2016-04-17 21:37:27 ----A---- C:\Windows\system32\MRT.exe
2016-04-17 21:32:53 ----D---- C:\Windows\system32\catroot2
2016-04-14 16:54:06 ----D---- C:\Windows\system32\Tasks
2016-04-14 16:37:08 ----D---- C:\ProgramData\AVAST Software
2016-04-14 16:35:41 ----D---- C:\Program Files\AVAST Software
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-03-31 18:51:01 ----D---- C:\Users\Vladenka\AppData\Roaming\vlc
2016-03-28 23:32:34 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-28 23:32:33 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2010-11-11 77952]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2010-11-11 37504]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-14 287528]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2015-09-01 39008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-14 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-04-14 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-14 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-14 465792]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-14 166432]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2015-09-01 29792]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-06-08 9360896]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-06-08 309760]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-04-14 28312]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2010-12-08 1574016]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-02-25 2426672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-10-21 1396784]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-29 44672]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2010-10-21 228224]
R3 vmuvcflt;Vimicro USB Camera Filter; C:\Windows\System32\Drivers\vmuvcflt.sys [2010-08-16 8320]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2010-11-30 307304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-06-08 204288]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-06-07 365568]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-14 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-04-14 370656]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-03-08 2829552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-08-13 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-08-13 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-01-30 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivka //VYŘEŠENO
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
preventivka //VYŘEŠENO
Naposledy upravil(a) Mystic56 dne 24 dub 2016 10:29, celkem upraveno 1 x.
"Jen dvě věci na světě jsou nekonečné, vesmír a lidská hloupost, tím prvním si ale nejsem jistý." Albert Einstein
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivka
# AdwCleaner v5.112 - Log soubor vytvořen 23/04/2016 o 21:36:39
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-19.5 [Server]
# Operační systém : Windows 7 Home Basic Service Pack 1 (X64)
# Jméno uživatele : Vladenka - VLADENKA-PC
# Spuštěno z : C:\Users\Vladenka\Desktop\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
***** [ Webové prohlížeče ] *****
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [773 bytes] - [23/04/2016 21:36:39]
C:\AdwCleaner\AdwCleaner[S1].txt - [816 bytes] - [23/04/2016 21:30:04]
C:\AdwCleaner\AdwCleaner[S2].txt - [888 bytes] - [23/04/2016 21:34:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [989 bytes] ##########
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-19.5 [Server]
# Operační systém : Windows 7 Home Basic Service Pack 1 (X64)
# Jméno uživatele : Vladenka - VLADENKA-PC
# Spuštěno z : C:\Users\Vladenka\Desktop\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
***** [ Webové prohlížeče ] *****
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [773 bytes] - [23/04/2016 21:36:39]
C:\AdwCleaner\AdwCleaner[S1].txt - [816 bytes] - [23/04/2016 21:30:04]
C:\AdwCleaner\AdwCleaner[S2].txt - [888 bytes] - [23/04/2016 21:34:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [989 bytes] ##########
"Jen dvě věci na světě jsou nekonečné, vesmír a lidská hloupost, tím prvním si ale nejsem jistý." Albert Einstein
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivka
Logfile of random's system information tool 1.10 (written by random/random)
Run by Vladenka at 2016-04-24 08:47:47
Microsoft Windows 7 Home Basic Service Pack 1
System drive C: has 421 GB (88%) free of 476 GB
Total RAM: 3689 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:47:51, on 24.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vladenka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9225 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {524BC0CE-B8E4-43C7-B5E1-56C5F94D1C13}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
C:\Windows\system32\AUDIODG.EXE 0x570
taskeng.exe {8F68A8EB-636A-4B60-9850-DABDE214B39B}
"C:\Program Files\CapsLK OSD\64\Capsosd.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Vladenka\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.112 --handshake-handle=0xdc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4796.0.1986679615\1018126668" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,25,54 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x9806 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.862.0.0 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.2.478439303\1774967138" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.3.103723493\2065191309" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.4.1649342264\885465376" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.5.1213748403\429099930" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.7.405831239\705288219" /prefetch:1
"C:\Users\Vladenka\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-03-15 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-14 902624]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-03-15 895776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19 2348848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2016-03-15 163016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-14 679680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2016-03-15 720160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19 1741104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2010-04-28 307768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-10-21 2396968]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2015-09-01 9739680]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2015-09-01 5374880]
"{BA1E422A-80A8-4AA0-B67B-CAA3D04C5162}"=C:\Program Files\CapsLK OSD\64\CAPSOSD.EXE [2010-10-25 3699752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-26 55100016]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-06-07 336384]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2010-01-15 536576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-17 7390608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-24 08:28:52 ----D---- C:\_OTM
2016-04-23 21:29:50 ----D---- C:\AdwCleaner
2016-04-23 19:47:33 ----D---- C:\Program Files\Defraggler
2016-04-23 19:37:46 ----D---- C:\rsit
2016-04-23 19:37:46 ----D---- C:\Program Files\trend micro
2016-04-17 18:03:53 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-17 18:03:50 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-17 18:03:49 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-17 18:03:33 ----A---- C:\Windows\system32\rpcss.dll
2016-04-17 18:03:32 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-17 18:03:32 ----A---- C:\Windows\system32\msxml3.dll
2016-04-17 18:03:31 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-17 18:03:31 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-17 18:03:30 ----A---- C:\Windows\system32\generaltel.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\invagent.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\devinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-17 18:03:29 ----A---- C:\Windows\system32\appraiser.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aepic.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aeinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\acmigration.dll
2016-04-17 18:03:27 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-17 18:03:21 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-17 18:03:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-17 18:03:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-17 18:03:18 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-17 18:03:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\certcli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\wow64win.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\winsrv.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\smss.exe
2016-04-17 18:03:15 ----A---- C:\Windows\system32\schannel.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kernel32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-17 18:03:15 ----A---- C:\Windows\system32\advapi32.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wow64.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\sspicli.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\srcore.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\lsass.exe
2016-04-17 18:03:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-17 18:03:14 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\conhost.exe
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\rstrui.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-17 18:03:13 ----A---- C:\Windows\system32\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidapi.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\adtschema.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msaudite.dll
2016-04-17 18:02:51 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapi.dll
2016-04-17 18:02:44 ----A---- C:\Windows\system32\win32k.sys
2016-04-17 18:02:37 ----A---- C:\Windows\system32\samsrv.dll
2016-04-17 18:02:36 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-17 18:02:36 ----A---- C:\Windows\system32\samlib.dll
2016-04-17 18:02:22 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-17 18:02:22 ----A---- C:\Windows\system32\tzres.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\iernonce.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-17 18:02:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\inseng.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-17 18:02:04 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\urlmon.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\occache.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-17 18:01:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-17 18:01:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-17 18:01:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\iesetup.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-17 18:01:50 ----A---- C:\Windows\system32\iertutil.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-17 18:01:48 ----A---- C:\Windows\system32\vbscript.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-17 18:01:47 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-17 18:01:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-17 18:01:41 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-17 18:01:40 ----A---- C:\Windows\system32\webcheck.dll
2016-04-17 18:01:40 ----A---- C:\Windows\system32\jscript.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9.dll
2016-04-17 18:01:37 ----A---- C:\Windows\system32\wininet.dll
2016-04-17 18:01:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-17 18:01:34 ----A---- C:\Windows\system32\msrating.dll
2016-04-17 18:01:33 ----A---- C:\Windows\system32\mshtml.dll
2016-04-14 16:37:51 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-14 16:37:50 ----A---- C:\Windows\system32\drivers\aswNetSec.sys
2016-04-14 16:37:18 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-14 16:36:50 ----A---- C:\Windows\avastSS.scr
2016-04-14 16:34:31 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
======List of files/folders modified in the last 1 month======
2016-04-24 08:47:49 ----D---- C:\Windows\Temp
2016-04-24 08:47:22 ----D---- C:\Users\Vladenka\AppData\Roaming\Skype
2016-04-24 08:28:52 ----D---- C:\Windows\Tasks
2016-04-24 03:08:51 ----SHD---- C:\System Volume Information
2016-04-23 21:45:04 ----D---- C:\Windows\system32\config
2016-04-23 20:31:20 ----D---- C:\Windows\System32
2016-04-23 20:31:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-23 20:31:19 ----D---- C:\Windows\inf
2016-04-23 19:47:33 ----RD---- C:\Program Files
2016-04-23 19:24:33 ----D---- C:\Windows
2016-04-23 19:18:31 ----D---- C:\Windows\debug
2016-04-23 19:11:48 ----D---- C:\Users\Vladenka\AppData\Roaming\Seznam Browser
2016-04-23 19:09:09 ----RD---- C:\Program Files (x86)
2016-04-23 19:08:03 ----SHD---- C:\Windows\Installer
2016-04-22 09:33:53 ----HD---- C:\ProgramData
2016-04-19 19:55:13 ----D---- C:\Windows\Microsoft.NET
2016-04-19 19:55:11 ----RSD---- C:\Windows\assembly
2016-04-19 19:41:47 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-04-19 19:37:07 ----D---- C:\Program Files\Microsoft Office 15
2016-04-18 16:51:05 ----D---- C:\Windows\rescache
2016-04-18 14:47:21 ----D---- C:\Windows\winsxs
2016-04-18 14:42:18 ----D---- C:\Windows\SysWOW64
2016-04-18 14:41:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-18 14:41:44 ----D---- C:\Windows\system32\drivers
2016-04-18 14:41:43 ----D---- C:\Windows\system32\cs-CZ
2016-04-18 14:41:42 ----D---- C:\Windows\system32\en-US
2016-04-18 14:41:21 ----D---- C:\Windows\AppPatch
2016-04-18 14:41:14 ----D---- C:\Windows\system32\Boot
2016-04-18 14:41:05 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-18 14:41:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-18 14:41:03 ----D---- C:\Windows\system32\wbem
2016-04-18 14:40:59 ----D---- C:\Windows\system32\appraiser
2016-04-18 14:40:59 ----D---- C:\Windows\Logs
2016-04-18 14:39:59 ----D---- C:\Program Files\Internet Explorer
2016-04-18 14:39:51 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-18 14:39:19 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-18 14:39:13 ----D---- C:\Windows\system32\DriverStore
2016-04-17 21:45:48 ----D---- C:\Windows\system32\MRT
2016-04-17 21:37:27 ----A---- C:\Windows\system32\MRT.exe
2016-04-17 21:32:53 ----D---- C:\Windows\system32\catroot2
2016-04-14 16:54:06 ----D---- C:\Windows\system32\Tasks
2016-04-14 16:37:08 ----D---- C:\ProgramData\AVAST Software
2016-04-14 16:35:41 ----D---- C:\Program Files\AVAST Software
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-03-31 18:51:01 ----D---- C:\Users\Vladenka\AppData\Roaming\vlc
2016-03-28 23:32:34 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-28 23:32:33 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2010-11-11 77952]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2010-11-11 37504]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-14 287528]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2015-09-01 39008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-14 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-04-14 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-14 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-14 465792]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-14 166432]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2015-09-01 29792]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-06-08 9360896]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-06-08 309760]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-04-14 28312]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2010-12-08 1574016]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-02-25 2426672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-10-21 1396784]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-29 44672]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2010-10-21 228224]
R3 vmuvcflt;Vimicro USB Camera Filter; C:\Windows\System32\Drivers\vmuvcflt.sys [2010-08-16 8320]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2010-11-30 307304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-06-08 204288]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-06-07 365568]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-14 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-04-14 370656]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-03-08 2829552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-08-13 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-08-13 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-01-30 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Run by Vladenka at 2016-04-24 08:47:47
Microsoft Windows 7 Home Basic Service Pack 1
System drive C: has 421 GB (88%) free of 476 GB
Total RAM: 3689 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:47:51, on 24.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Vladenka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9225 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {524BC0CE-B8E4-43C7-B5E1-56C5F94D1C13}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
C:\Windows\system32\AUDIODG.EXE 0x570
taskeng.exe {8F68A8EB-636A-4B60-9850-DABDE214B39B}
"C:\Program Files\CapsLK OSD\64\Capsosd.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Vladenka\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.112 --handshake-handle=0xdc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4796.0.1986679615\1018126668" --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,11,25,54 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x9806 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.862.0.0 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.2.478439303\1774967138" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.3.103723493\2065191309" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.4.1649342264\885465376" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.5.1213748403\429099930" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/28DaySingleProfile/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A6/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/Enabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_44/*UMA-Uniformity-Trial-10-Percent/group_05/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="4796.7.405831239\705288219" /prefetch:1
"C:\Users\Vladenka\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-03-15 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-14 902624]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-03-15 895776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19 2348848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2016-03-15 163016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-14 679680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2016-03-15 720160]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19 1741104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2010-04-28 307768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-10-21 2396968]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2015-09-01 9739680]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2015-09-01 5374880]
"{BA1E422A-80A8-4AA0-B67B-CAA3D04C5162}"=C:\Program Files\CapsLK OSD\64\CAPSOSD.EXE [2010-10-25 3699752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-08-26 55100016]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-06-07 336384]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2010-01-15 536576]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-17 7390608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-24 08:28:52 ----D---- C:\_OTM
2016-04-23 21:29:50 ----D---- C:\AdwCleaner
2016-04-23 19:47:33 ----D---- C:\Program Files\Defraggler
2016-04-23 19:37:46 ----D---- C:\rsit
2016-04-23 19:37:46 ----D---- C:\Program Files\trend micro
2016-04-17 18:03:53 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-17 18:03:50 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-17 18:03:49 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-17 18:03:33 ----A---- C:\Windows\system32\rpcss.dll
2016-04-17 18:03:32 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-17 18:03:32 ----A---- C:\Windows\system32\msxml3.dll
2016-04-17 18:03:31 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-17 18:03:31 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-17 18:03:30 ----A---- C:\Windows\system32\generaltel.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\invagent.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\devinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-17 18:03:29 ----A---- C:\Windows\system32\appraiser.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aepic.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\aeinv.dll
2016-04-17 18:03:29 ----A---- C:\Windows\system32\acmigration.dll
2016-04-17 18:03:27 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-17 18:03:21 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\ole32.dll
2016-04-17 18:03:21 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-17 18:03:20 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-17 18:03:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-17 18:03:18 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-17 18:03:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\ntdll.dll
2016-04-17 18:03:17 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-17 18:03:16 ----A---- C:\Windows\system32\certcli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\wow64win.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\winsrv.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\smss.exe
2016-04-17 18:03:15 ----A---- C:\Windows\system32\schannel.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kernel32.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\kerberos.dll
2016-04-17 18:03:15 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-17 18:03:15 ----A---- C:\Windows\system32\advapi32.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-17 18:03:14 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wow64.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\wdigest.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\sspicli.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\srcore.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\lsass.exe
2016-04-17 18:03:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-17 18:03:14 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-17 18:03:14 ----A---- C:\Windows\system32\conhost.exe
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-17 18:03:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\srclient.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\secur32.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\rstrui.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-17 18:03:13 ----A---- C:\Windows\system32\credssp.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\auditpol.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-17 18:03:13 ----A---- C:\Windows\system32\appidapi.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-17 18:03:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-17 18:03:12 ----A---- C:\Windows\system32\adtschema.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msobjs.dll
2016-04-17 18:03:11 ----A---- C:\Windows\system32\msaudite.dll
2016-04-17 18:02:51 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\tbs.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-17 18:02:51 ----A---- C:\Windows\system32\fveapi.dll
2016-04-17 18:02:44 ----A---- C:\Windows\system32\win32k.sys
2016-04-17 18:02:37 ----A---- C:\Windows\system32\samsrv.dll
2016-04-17 18:02:36 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-17 18:02:36 ----A---- C:\Windows\system32\samlib.dll
2016-04-17 18:02:22 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-17 18:02:22 ----A---- C:\Windows\system32\tzres.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-17 18:02:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-17 18:02:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\iernonce.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-17 18:02:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-17 18:02:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-17 18:02:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\inseng.dll
2016-04-17 18:02:05 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-17 18:02:04 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-17 18:02:04 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-17 18:01:59 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\urlmon.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\occache.dll
2016-04-17 18:01:59 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-17 18:01:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-17 18:01:58 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-17 18:01:57 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-17 18:01:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-17 18:01:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-17 18:01:56 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-17 18:01:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\iesetup.dll
2016-04-17 18:01:53 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-17 18:01:50 ----A---- C:\Windows\system32\iertutil.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-17 18:01:48 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-17 18:01:48 ----A---- C:\Windows\system32\vbscript.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-17 18:01:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-17 18:01:47 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-17 18:01:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-17 18:01:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-17 18:01:42 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-17 18:01:41 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-17 18:01:40 ----A---- C:\Windows\system32\webcheck.dll
2016-04-17 18:01:40 ----A---- C:\Windows\system32\jscript.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-17 18:01:39 ----A---- C:\Windows\system32\jscript9.dll
2016-04-17 18:01:37 ----A---- C:\Windows\system32\wininet.dll
2016-04-17 18:01:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-17 18:01:34 ----A---- C:\Windows\system32\msrating.dll
2016-04-17 18:01:33 ----A---- C:\Windows\system32\mshtml.dll
2016-04-14 16:37:51 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-14 16:37:50 ----A---- C:\Windows\system32\drivers\aswNetSec.sys
2016-04-14 16:37:18 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-14 16:36:50 ----A---- C:\Windows\avastSS.scr
2016-04-14 16:34:31 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
======List of files/folders modified in the last 1 month======
2016-04-24 08:47:49 ----D---- C:\Windows\Temp
2016-04-24 08:47:22 ----D---- C:\Users\Vladenka\AppData\Roaming\Skype
2016-04-24 08:28:52 ----D---- C:\Windows\Tasks
2016-04-24 03:08:51 ----SHD---- C:\System Volume Information
2016-04-23 21:45:04 ----D---- C:\Windows\system32\config
2016-04-23 20:31:20 ----D---- C:\Windows\System32
2016-04-23 20:31:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-23 20:31:19 ----D---- C:\Windows\inf
2016-04-23 19:47:33 ----RD---- C:\Program Files
2016-04-23 19:24:33 ----D---- C:\Windows
2016-04-23 19:18:31 ----D---- C:\Windows\debug
2016-04-23 19:11:48 ----D---- C:\Users\Vladenka\AppData\Roaming\Seznam Browser
2016-04-23 19:09:09 ----RD---- C:\Program Files (x86)
2016-04-23 19:08:03 ----SHD---- C:\Windows\Installer
2016-04-22 09:33:53 ----HD---- C:\ProgramData
2016-04-19 19:55:13 ----D---- C:\Windows\Microsoft.NET
2016-04-19 19:55:11 ----RSD---- C:\Windows\assembly
2016-04-19 19:41:47 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-04-19 19:37:07 ----D---- C:\Program Files\Microsoft Office 15
2016-04-18 16:51:05 ----D---- C:\Windows\rescache
2016-04-18 14:47:21 ----D---- C:\Windows\winsxs
2016-04-18 14:42:18 ----D---- C:\Windows\SysWOW64
2016-04-18 14:41:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-18 14:41:44 ----D---- C:\Windows\system32\drivers
2016-04-18 14:41:43 ----D---- C:\Windows\system32\cs-CZ
2016-04-18 14:41:42 ----D---- C:\Windows\system32\en-US
2016-04-18 14:41:21 ----D---- C:\Windows\AppPatch
2016-04-18 14:41:14 ----D---- C:\Windows\system32\Boot
2016-04-18 14:41:05 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-18 14:41:04 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-18 14:41:03 ----D---- C:\Windows\system32\wbem
2016-04-18 14:40:59 ----D---- C:\Windows\system32\appraiser
2016-04-18 14:40:59 ----D---- C:\Windows\Logs
2016-04-18 14:39:59 ----D---- C:\Program Files\Internet Explorer
2016-04-18 14:39:51 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-18 14:39:19 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-18 14:39:13 ----D---- C:\Windows\system32\DriverStore
2016-04-17 21:45:48 ----D---- C:\Windows\system32\MRT
2016-04-17 21:37:27 ----A---- C:\Windows\system32\MRT.exe
2016-04-17 21:32:53 ----D---- C:\Windows\system32\catroot2
2016-04-14 16:54:06 ----D---- C:\Windows\system32\Tasks
2016-04-14 16:37:08 ----D---- C:\ProgramData\AVAST Software
2016-04-14 16:35:41 ----D---- C:\Program Files\AVAST Software
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-03-31 18:51:01 ----D---- C:\Users\Vladenka\AppData\Roaming\vlc
2016-03-28 23:32:34 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-28 23:32:33 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2010-11-11 77952]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2010-11-11 37504]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-14 287528]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2015-09-01 39008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-14 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-04-14 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-14 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-14 465792]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-14 166432]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2015-09-01 29792]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-06-08 9360896]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-06-08 309760]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-04-14 28312]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2010-12-08 1574016]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-02-25 2426672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-10-21 1396784]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-11-29 44672]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2010-10-21 228224]
R3 vmuvcflt;Vimicro USB Camera Filter; C:\Windows\System32\Drivers\vmuvcflt.sys [2010-08-16 8320]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2010-11-30 307304]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-06-08 204288]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-06-07 365568]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-14 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-04-14 370656]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-03-08 2829552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-08-13 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-08-13 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-01-30 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
"Jen dvě věci na světě jsou nekonečné, vesmír a lidská hloupost, tím prvním si ale nejsem jistý." Albert Einstein
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: preventivka
Děkuji za pomoc a vyčištění.
Přeji krásný zbytek víkendu.
Přeji krásný zbytek víkendu.
"Jen dvě věci na světě jsou nekonečné, vesmír a lidská hloupost, tím prvním si ale nejsem jistý." Albert Einstein
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: preventivka //VYŘEŠENO
Hezký víkend i vám a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?