Logfile of random's system information tool 1.10 (written by random/random)
Run by uzivatel at 2018-04-04 14:41:12
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 116 GB (79%) free of 146 GB
Total RAM: 2003 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:41:23, on 4.4.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\simplitec\simpliclean\ServiceProvider.exe
C:\Program Files\AVG Web TuneUp\vprot.exe
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\mmc.exe
C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\config\systemprofile\Downloads\RSIT.exe
C:\Program Files\trend micro\uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Media Search App by Ask BHO - {41545534-5350-2D4D-4544-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4SP-MED\Passport.dll" (file missing)
O2 - BHO: Shopping App by Ask BHO - {41545553-502D-5341-5400-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATUSP-SAT\Passport.dll" (file missing)
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll
O3 - Toolbar: Media Search App by Ask - {41545534-5350-2D4D-4544-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATU4SP-MED\Passport.dll" (file missing)
O3 - Toolbar: Shopping App by Ask - {41545553-502D-5341-5400-7A786E7484D7} - "C:\Program Files\AskPartnerNetwork\Toolbar\ATUSP-SAT\Passport.dll" (file missing)
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKLM\..\Run: [AVGUI.exe] "C:\Program Files\AVG\Antivirus\AvLaunch.exe" /gui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\aswidsagent.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: vToolbarUpdater40.3.8 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 5945 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Power Suite (Tray).job - C:\Program Files\simplitec\simpliclean\ServiceProvider.exe
C:\Windows\tasks\Power Suite.job - C:\Program Files\simplitec\simpliclean\PowerSuite.exe -task
=========Mozilla firefox=========
ProfilePath - C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla\Firefox\Profiles\ud1j9n52.default-1522780431070
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545534-5350-2D4D-4544-7A786E7484D7}]
Media Search App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\ATU4SP-MED\Passport.dll [2016-11-09 10824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41545553-502D-5341-5400-7A786E7484D7}]
Shopping App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\ATUSP-SAT\Passport.dll [2016-11-09 10824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.3.9.626\AVG Web TuneUp.dll [2018-04-03 2263040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{41545534-5350-2D4D-4544-7A786E7484D7} - Media Search App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\ATU4SP-MED\Passport.dll [2016-11-09 10824]
{41545553-502D-5341-5400-7A786E7484D7} - Shopping App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\ATUSP-SAT\Passport.dll [2016-11-09 10824]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"vProt"=C:\Program Files\AVG Web TuneUp\vprot.exe [2018-04-03 2195968]
"ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2016-11-09 1928776]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2017-12-26 295512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-04-04 14:41:12 ----D---- C:\rsit
2018-04-04 14:41:12 ----D---- C:\Program Files\trend micro
2018-04-04 14:33:29 ----D---- C:\ProgramData\McAfee Security Scan
2018-04-03 21:17:55 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2018-04-03 20:50:43 ----A---- C:\Windows\system32\aitstatic.exe
2018-04-03 20:50:42 ----A---- C:\Windows\system32\invagent.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\generaltel.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\devinv.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-04-03 20:50:42 ----A---- C:\Windows\system32\centel.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\appraiser.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\aepic.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\aeinv.dll
2018-04-03 20:50:42 ----A---- C:\Windows\system32\acmigration.dll
2018-04-03 20:50:17 ----A---- C:\Windows\system32\wuwebv.dll
2018-04-03 20:50:17 ----A---- C:\Windows\system32\wudriver.dll
2018-04-03 20:50:17 ----A---- C:\Windows\system32\wuaueng.dll
2018-04-03 20:50:17 ----A---- C:\Windows\system32\wmp.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\wucltux.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\wuauclt.exe
2018-04-03 20:50:16 ----A---- C:\Windows\system32\wuapp.exe
2018-04-03 20:50:16 ----A---- C:\Windows\system32\wuapi.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msrepl40.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msrd3x40.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msrd2x40.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msjtes40.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msjetoledb40.dll
2018-04-03 20:50:16 ----A---- C:\Windows\system32\msjet40.dll
2018-04-03 20:50:15 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-04-03 20:50:15 ----A---- C:\Windows\system32\shell32.dll
2018-04-03 20:50:15 ----A---- C:\Windows\system32\FntCache.dll
2018-04-03 20:50:15 ----A---- C:\Windows\system32\DWrite.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\ucrtbase.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\mf.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-04-03 20:50:14 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-04-03 20:50:13 ----A---- C:\Windows\system32\win32k.sys
2018-04-03 20:50:13 ----A---- C:\Windows\system32\tquery.dll
2018-04-03 20:50:13 ----A---- C:\Windows\system32\msxml6.dll
2018-04-03 20:50:13 ----A---- C:\Windows\system32\mssrch.dll
2018-04-03 20:50:13 ----A---- C:\Windows\system32\mmcndmgr.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\Query.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\ntkrnlpa.exe
2018-04-03 20:50:12 ----A---- C:\Windows\system32\msxbde40.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\mspbde40.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\msltus40.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\msexcl40.dll
2018-04-03 20:50:12 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2018-04-03 20:50:11 ----A---- C:\Windows\system32\ole32.dll
2018-04-03 20:50:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-04-03 20:50:11 ----A---- C:\Windows\system32\mmc.exe
2018-04-03 20:50:10 ----A---- C:\Windows\system32\msxml3.dll
2018-04-03 20:50:10 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-04-03 20:50:10 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-04-03 20:50:09 ----A---- C:\Windows\system32\rdpcorets.dll
2018-04-03 20:50:09 ----A---- C:\Windows\system32\quartz.dll
2018-04-03 20:50:09 ----A---- C:\Windows\system32\kernel32.dll
2018-04-03 20:50:09 ----A---- C:\Windows\system32\crypt32.dll
2018-04-03 20:50:08 ----A---- C:\Windows\system32\PeerDistSvc.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\win32spl.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\sysmain.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-04-03 20:50:07 ----A---- C:\Windows\system32\samsrv.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\rdpcore.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\MPSSVC.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\localspl.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\inetcomm.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-04-03 20:50:07 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-04-03 20:50:06 ----A---- C:\Windows\system32\oleaut32.dll
2018-04-03 20:50:06 ----A---- C:\Windows\system32\msctf.dll
2018-04-03 20:50:06 ----A---- C:\Windows\system32\kerberos.dll
2018-04-03 20:50:06 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2018-04-03 20:50:06 ----A---- C:\Windows\system32\authui.dll
2018-04-03 20:50:06 ----A---- C:\Windows\HelpPane.exe
2018-04-03 20:50:05 ----A---- C:\Windows\system32\wer.dll
2018-04-03 20:50:05 ----A---- C:\Windows\system32\mssph.dll
2018-04-03 20:50:05 ----A---- C:\Windows\system32\drivers\srv.sys
2018-04-03 20:50:04 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-04-03 20:50:04 ----A---- C:\Windows\system32\rpcss.dll
2018-04-03 20:50:04 ----A---- C:\Windows\system32\atmfd.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\Wldap32.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\wlansvc.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\wlansec.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\wintrust.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\winload.exe
2018-04-03 20:50:03 ----A---- C:\Windows\system32\wdc.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\usp10.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\spoolsv.exe
2018-04-03 20:50:03 ----A---- C:\Windows\system32\schannel.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\ntdll.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\mswstr10.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\mswdat10.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\msv1_0.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\msjter40.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\msjint40.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\lsasrv.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\gpedit.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\gdi32.dll
2018-04-03 20:50:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-04-03 20:50:03 ----A---- C:\Windows\system32\cryptsvc.dll
2018-04-03 20:50:02 ----A---- C:\Windows\system32\themeui.dll
2018-04-03 20:50:02 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-04-03 20:50:02 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-04-03 20:50:02 ----A---- C:\Windows\system32\drivers\usbhub.sys
2018-04-03 20:50:02 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-04-03 20:50:02 ----A---- C:\Windows\system32\drivers\nwifi.sys
2018-04-03 20:50:02 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-04-03 20:50:02 ----A---- C:\Windows\system32\drivers\http.sys
2018-04-03 20:50:02 ----A---- C:\Windows\system32\conhost.exe
2018-04-03 20:50:01 ----A---- C:\Windows\system32\wlanmsm.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\wisptis.exe
2018-04-03 20:50:01 ----A---- C:\Windows\system32\WinSCard.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\rpcrt4.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\pla.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\P2P.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\msinfo32.exe
2018-04-03 20:50:01 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\netbt.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\drivers\afd.sys
2018-04-03 20:50:01 ----A---- C:\Windows\system32\cryptnet.dll
2018-04-03 20:50:01 ----A---- C:\Windows\system32\consent.exe
2018-04-03 20:50:01 ----A---- C:\Windows\system32\advapi32.dll
2018-04-03 20:50:00 ----A---- C:\Windows\system32\wmploc.DLL
2018-04-03 20:50:00 ----A---- C:\Windows\system32\winsrv.dll
2018-04-03 20:50:00 ----A---- C:\Windows\system32\vmicsvc.exe
2018-04-03 20:50:00 ----A---- C:\Windows\system32\PeerDist.dll
2018-04-03 20:50:00 ----A---- C:\Windows\system32\inetpp.dll
2018-04-03 20:50:00 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2018-04-03 20:50:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-04-03 20:50:00 ----A---- C:\Windows\system32\clfs.sys
2018-04-03 20:50:00 ----A---- C:\Windows\system32\adtschema.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\wups2.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\wups.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\ntprint.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\ncrypt.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\IcCoinstall.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\halmacpi.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\hal.dll
2018-04-03 20:49:59 ----A---- C:\Windows\system32\drivers\tdx.sys
2018-04-03 20:49:59 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-04-03 20:49:59 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\t2embed.dll
2018-04-03 20:49:58 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-04-03 20:49:58 ----A---- C:\Windows\system32\pdh.dll
2018-04-03 20:49:58 ----A---- C:\Windows\system32\mssphtb.dll
2018-04-03 20:49:58 ----A---- C:\Windows\system32\halacpi.dll
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\netio.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\fastfat.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\exfat.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\drivers\bthpan.sys
2018-04-03 20:49:58 ----A---- C:\Windows\system32\cdosys.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\wlanhlp.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\wermgr.exe
2018-04-03 20:49:57 ----A---- C:\Windows\system32\wdigest.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\srcore.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\shdocvw.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\rundll32.exe
2018-04-03 20:49:57 ----A---- C:\Windows\system32\rdpudd.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\PrintBrmUi.exe
2018-04-03 20:49:57 ----A---- C:\Windows\system32\PeerDistWSDDiscoProv.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\pdhui.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\nsisvc.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\mscms.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\mmcshext.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\mmcbase.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\MigAutoPlay.exe
2018-04-03 20:49:57 ----A---- C:\Windows\system32\mfps.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\itss.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\icm32.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\icfupgd.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2018-04-03 20:49:57 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-04-03 20:49:57 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-04-03 20:49:57 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-04-03 20:49:57 ----A---- C:\Windows\system32\cic.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\bcrypt.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\asycfilt.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\appinfo.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\appidsvc.dll
2018-04-03 20:49:57 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-04-03 20:49:56 ----A---- C:\Windows\system32\wlanapi.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\werdiagcontroller.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\TabSvc.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\mprdim.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\mfmjpegdec.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\drivers\nsiproxy.sys
2018-04-03 20:49:56 ----A---- C:\Windows\system32\drivers\luafv.sys
2018-04-03 20:49:56 ----A---- C:\Windows\system32\drivers\appid.sys
2018-04-03 20:49:56 ----A---- C:\Windows\system32\csrsrv.dll
2018-04-03 20:49:56 ----A---- C:\Windows\system32\cdd.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\vmictimeprovider.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\sspicli.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\smss.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\samlib.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\rtm.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\rstrui.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\oleres.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\netbtugc.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\mssvp.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\msscntrs.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\msaudite.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\lsass.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\itircl.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\fontsub.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2018-04-03 20:49:55 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-04-03 20:49:55 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-04-03 20:49:55 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-04-03 20:49:55 ----A---- C:\Windows\system32\cryptbase.dll
2018-04-03 20:49:55 ----A---- C:\Windows\system32\auditpol.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-04-03 20:49:55 ----A---- C:\Windows\system32\appidapi.dll
2018-04-03 20:49:54 ----A---- C:\Windows\system32\wvc.dll
2018-04-03 20:49:54 ----A---- C:\Windows\system32\srclient.dll
2018-04-03 20:49:54 ----A---- C:\Windows\system32\secur32.dll
2018-04-03 20:49:54 ----A---- C:\Windows\system32\perfmon.exe
2018-04-03 20:49:54 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-04-03 20:49:54 ----A---- C:\Windows\system32\atmlib.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-04-03 20:49:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\wshqos.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\wshnetbs.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\wpnpinst.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\winnsi.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\wfapigp.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\vmicres.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\traffic.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\sspisrv.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\spwmp.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\rrinstaller.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\resmon.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\plasrv.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\PeerDistHttpTrans.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\ntprint.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\nsi.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\msxml6r.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\mssprxy.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\mssitlb.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\msshooks.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\msmmsp.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\mfpmp.exe
2018-04-03 20:49:53 ----A---- C:\Windows\system32\lpk.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\iprtprio.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\inetppui.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\icaapi.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2018-04-03 20:49:53 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-04-03 20:49:53 ----A---- C:\Windows\system32\dciman32.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\credssp.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\comcat.dll
2018-04-03 20:49:53 ----A---- C:\Windows\system32\apisetschema.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-04-03 20:49:52 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\tzres.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\msxml3r.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\mstext40.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\msobjs.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\msexch40.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\mferror.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\INETRES.dll
2018-04-03 20:49:52 ----A---- C:\Windows\system32\dxmasf.dll
2018-04-03 20:42:28 ----D---- C:\Program Files\Common Files\AVG
2018-04-03 20:27:32 ----D---- C:\Windows\system32\appmgmt
======List of files/folders modified in the last 1 month======
2018-04-04 14:41:12 ----RD---- C:\Program Files
2018-04-04 14:40:52 ----D---- C:\Windows\Temp
2018-04-04 14:36:28 ----D---- C:\Program Files\Opera
2018-04-04 14:36:24 ----D---- C:\Windows\system32\config\systemprofile\AppData\Roaming\AVG
2018-04-04 14:36:12 ----D---- C:\Windows\System32
2018-04-04 14:36:12 ----D---- C:\Windows\inf
2018-04-04 14:36:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-04-04 14:33:43 ----SD---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft
2018-04-04 14:33:39 ----D---- C:\Program Files\McAfee Security Scan
2018-04-04 14:33:30 ----HD---- C:\ProgramData
2018-04-04 14:31:42 ----D---- C:\Windows\Microsoft.NET
2018-04-04 14:31:31 ----RSD---- C:\Windows\assembly
2018-04-04 14:30:18 ----D---- C:\Windows\winsxs
2018-04-04 14:28:47 ----D---- C:\Windows\system32\config
2018-04-04 14:25:35 ----SD---- C:\Windows\system32\CompatTel
2018-04-04 14:25:34 ----D---- C:\Windows\system32\appraiser
2018-04-04 14:25:34 ----D---- C:\Windows\AppPatch
2018-04-04 14:25:18 ----D---- C:\Windows\system32\migwiz
2018-04-04 14:25:18 ----D---- C:\Windows\system32\drivers\cs-CZ
2018-04-04 14:25:18 ----D---- C:\Windows\ehome
2018-04-04 14:25:17 ----D---- C:\Windows\system32\drivers\en-US
2018-04-04 14:25:17 ----D---- C:\Windows\system32\drivers
2018-04-04 14:25:16 ----D---- C:\Windows\system32\sk-SK
2018-04-04 14:25:16 ----D---- C:\Windows\system32\migration
2018-04-04 14:25:16 ----D---- C:\Windows\system32\cs-CZ
2018-04-04 14:25:15 ----D---- C:\Windows\system32\Setup
2018-04-04 14:25:15 ----D---- C:\Windows\system32\en-US
2018-04-04 14:24:48 ----D---- C:\Windows
2018-04-04 14:24:47 ----D---- C:\Program Files\Windows Media Player
2018-04-04 14:24:47 ----D---- C:\Program Files\DVD Maker
2018-04-04 14:24:40 ----D---- C:\Windows\system32\Boot
2018-04-04 14:24:35 ----D---- C:\Windows\system32\DriverStore
2018-04-04 14:22:32 ----SHD---- C:\Config.Msi
2018-04-04 14:22:29 ----D---- C:\Program Files\Mozilla Maintenance Service
2018-04-03 21:34:02 ----SHD---- C:\Windows\Installer
2018-04-03 21:18:40 ----D---- C:\Windows\system32\catroot2
2018-04-03 21:17:35 ----SHD---- C:\System Volume Information
2018-04-03 21:14:38 ----D---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Mozilla
2018-04-03 21:14:32 ----D---- C:\Program Files\Mozilla Firefox
2018-04-03 20:49:35 ----D---- C:\!stahovani
2018-04-03 20:42:29 ----D---- C:\Windows\system32\Tasks
2018-04-03 20:42:28 ----D---- C:\Program Files\Common Files
2018-04-03 20:42:11 ----D---- C:\ProgramData\Avg
2018-04-03 20:42:01 ----D---- C:\Program Files\AVG
2018-04-03 20:33:53 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2018-04-03 20:33:36 ----D---- C:\Windows\system32\Macromed
2018-04-03 20:27:17 ----D---- C:\Program Files\OpenOffice 4
2018-04-03 20:26:48 ----RSD---- C:\Windows\Fonts
2018-04-03 20:24:10 ----D---- C:\Windows\Tasks
2018-04-03 20:24:00 ----D---- C:\ProgramData\AVG Web TuneUp
2018-04-03 20:23:54 ----D---- C:\Program Files\AVG Web TuneUp
2018-04-03 20:21:35 ----D---- C:\ProgramData\MFAData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [2017-12-26 151024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgblogx.sys [2017-12-26 270344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [2017-12-26 43992]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2017-12-26 63280]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2017-12-26 287128]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2017-12-26 150672]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [2017-12-26 135872]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [2017-12-26 249232]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2017-12-26 91976]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2017-12-26 775552]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-04-03 382720]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-04-03 116344]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2017-12-26 143776]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2009-06-26 48128]
R3 acpials;Filtr zařízení ALS Sensor; C:\Windows\system32\DRIVERS\acpials.sys [2009-07-14 7680]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-14 1131008]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2017-12-26 35264]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 94208]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-11-09 86056]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-11-09 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-11-09 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-11-09 18344]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2017-08-13 15872]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 winusb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\winusb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 APNMCP;Ask Update Service; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2016-11-09 201800]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2017-12-26 301720]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-08-11 582944]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 vToolbarUpdater40.3.8;vToolbarUpdater40.3.8; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [2018-04-03 1371136]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2018-04-03 811520]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [2017-12-26 5957472]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-03 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-10-04 102912]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [2018-03-27 322792]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-04-03 174544]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2017-10-04 47200]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Poprosím o preventivku staršího ntb díky moc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Poprosím o preventivku staršího ntb díky moc
ahoj,
vycisti PC s ADWCleanerom
vycisti PC s ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Poprosím o preventivku staršího ntb díky moc
# AdwCleaner 7.0.8.0 - Logfile created on Wed Apr 04 13:04:49 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 7 Ultimate (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
PUP.Optional.Legacy, WtuSystemSupport
PUP.Optional.APNToolBar.Gen, APNMCP
PUP.Adware.Heuristic, vToolbarUpdater40.3.8
***** [ Folders ] *****
PUP.Optional.Legacy, C:\ProgramData\AVG Secure Search
PUP.Optional.Legacy, C:\ProgramData\Application Data\AVG Secure Search
PUP.Optional.Legacy, C:\Program Files\Common Files\AVG Secure Search
PUP.Optional.Legacy, C:\Users\All Users\AVG Secure Search
PUP.Optional.Legacy, C:\ProgramData\AVG Security Toolbar
PUP.Optional.Legacy, C:\ProgramData\Application Data\AVG Security Toolbar
PUP.Optional.Legacy, C:\Users\All Users\AVG Security Toolbar
PUP.Optional.Legacy, C:\ProgramData\avg web tuneup
PUP.Optional.Legacy, C:\ProgramData\Application Data\avg web tuneup
PUP.Optional.Legacy, C:\Program Files\avg web tuneup
PUP.Optional.Legacy, C:\Windows\System32\config\systemprofile\AppData\Local\avg web tuneup
PUP.Optional.Legacy, C:\Users\All Users\avg web tuneup
PUP.Optional.Legacy, C:\Users\TEMP\AppData\Local\avg web tuneup
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Local\avg web tuneup
PUP.Optional.Ask, C:\ProgramData\AskPartnerNetwork
PUP.Optional.Ask, C:\ProgramData\Application Data\AskPartnerNetwork
PUP.Optional.Ask, C:\Program Files\AskPartnerNetwork
PUP.Optional.Ask, C:\Windows\System32\config\systemprofile\AppData\Local\AskPartnerNetwork
PUP.Optional.Ask, C:\Users\All Users\AskPartnerNetwork
PUP.Optional.Ask, C:\Users\uzivatel\AppData\Local\AskPartnerNetwork
Rogue.ForcedExtension, C:\ProgramData\apn
Rogue.ForcedExtension, C:\ProgramData\Application Data\apn
Rogue.ForcedExtension, C:\Users\All Users\apn
Rogue.ForcedExtension, C:\Users\TEMP\AppData\Local\Temp\apn
Rogue.ForcedExtension, C:\Users\uzivatel\AppData\Local\Temp\apn
PUP.Optional.APNToolBar.Gen, C:\Users\uzivatel\AppData\Local\Temp\APN-Stub
PUP.Optional.RegistryDr, C:\Program Files\Registry Dr
PUP.Optional.RegistryDr, C:\Users\uzivatel\AppData\Local\RegistryDr
PUP.Optional.RegistryDr, C:\Users\uzivatel\Documents\RegistryDr
***** [ Files ] *****
PUP.Optional.Legacy, C:\Users\All Users\Desktop\simpliclean.lnk
PUP.Optional.Legacy, C:\Users\Public\Desktop\simpliclean.lnk
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\zszbtalf.default\searchplugins\ask-search.xml
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\zszbtalf.default\searchplugins\avg-secure-search.xml
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy, RegistryDr_Popup
PUP.Optional.Legacy, RegistryDr_Start
PUP.Optional.Legacy, Power Suite
PUP.Optional.Legacy, Power Suite (Tray)
***** [ Registry ] *****
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0EE478A6-9786-4503-A43E-3EBA304899CB}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {09F900FD-79CB-4C8B-AEBD-7A8F0139A1DF}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {B5727E1B-8CFD-4964-983B-97B1053E07C5}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C181EDEC-AFEC-4DDD-8034-732FA6BC3980}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {E363DD28-F548-4222-9CB0-7D876176ACBD}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {65A5C367-E96E-4DE9-9A01-1BC9C38C0F37}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {4B173343-EF39-4E0C-A491-47989EE66B92}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0661FE72-F843-4061-93EE-F4EABE759AB7}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{6C1D512F-C165-45E0-A5CE-C51695B17622}C:\program files\simplitec\simpliclean\serviceprovider.exe
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{06CA042B-1ACC-49C8-A6E2-C4C393AC7F61}C:\program files\simplitec\simpliclean\serviceprovider.exe
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\RegistryDrLanguage
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\AVG Tuneup
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD125908-5F10-409F-9C01-F2207CA18887}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | ApnTBMon
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MozillaPlugins\@avg.com\AVG SiteSafety plugin,version=11.0.0.1,application\x-avg-sitesafety-plugin
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
PUP.Optional.Ask, [Key] - HKLM\SOFTWARE\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\.DEFAULT\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\S-1-5-18\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKCU\Software\AskPartnerNetwork
PUP.Optional.RegistryDr, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\RegistryDrConfig
PUP.Adware.Heuristic, [Data] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41545534-5350-2D4D-4544-A758B70C2D01} | InstallSource []
PUP.Adware.Heuristic, [Data] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41545553-502D-5341-5400-A758B70C2D01} | InstallSource []
***** [ Firefox (and derivatives) ] *****
PUP.Optional.Legacy, SearchProvider found: ss.websearch.ask.com - Ask Search
PUP.Optional.Legacy, Startpage found: http://www.search.ask.com/?tpid=ATUSP-S ... psv=&pt=tb
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 7 Ultimate (X86)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
PUP.Optional.Legacy, WtuSystemSupport
PUP.Optional.APNToolBar.Gen, APNMCP
PUP.Adware.Heuristic, vToolbarUpdater40.3.8
***** [ Folders ] *****
PUP.Optional.Legacy, C:\ProgramData\AVG Secure Search
PUP.Optional.Legacy, C:\ProgramData\Application Data\AVG Secure Search
PUP.Optional.Legacy, C:\Program Files\Common Files\AVG Secure Search
PUP.Optional.Legacy, C:\Users\All Users\AVG Secure Search
PUP.Optional.Legacy, C:\ProgramData\AVG Security Toolbar
PUP.Optional.Legacy, C:\ProgramData\Application Data\AVG Security Toolbar
PUP.Optional.Legacy, C:\Users\All Users\AVG Security Toolbar
PUP.Optional.Legacy, C:\ProgramData\avg web tuneup
PUP.Optional.Legacy, C:\ProgramData\Application Data\avg web tuneup
PUP.Optional.Legacy, C:\Program Files\avg web tuneup
PUP.Optional.Legacy, C:\Windows\System32\config\systemprofile\AppData\Local\avg web tuneup
PUP.Optional.Legacy, C:\Users\All Users\avg web tuneup
PUP.Optional.Legacy, C:\Users\TEMP\AppData\Local\avg web tuneup
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Local\avg web tuneup
PUP.Optional.Ask, C:\ProgramData\AskPartnerNetwork
PUP.Optional.Ask, C:\ProgramData\Application Data\AskPartnerNetwork
PUP.Optional.Ask, C:\Program Files\AskPartnerNetwork
PUP.Optional.Ask, C:\Windows\System32\config\systemprofile\AppData\Local\AskPartnerNetwork
PUP.Optional.Ask, C:\Users\All Users\AskPartnerNetwork
PUP.Optional.Ask, C:\Users\uzivatel\AppData\Local\AskPartnerNetwork
Rogue.ForcedExtension, C:\ProgramData\apn
Rogue.ForcedExtension, C:\ProgramData\Application Data\apn
Rogue.ForcedExtension, C:\Users\All Users\apn
Rogue.ForcedExtension, C:\Users\TEMP\AppData\Local\Temp\apn
Rogue.ForcedExtension, C:\Users\uzivatel\AppData\Local\Temp\apn
PUP.Optional.APNToolBar.Gen, C:\Users\uzivatel\AppData\Local\Temp\APN-Stub
PUP.Optional.RegistryDr, C:\Program Files\Registry Dr
PUP.Optional.RegistryDr, C:\Users\uzivatel\AppData\Local\RegistryDr
PUP.Optional.RegistryDr, C:\Users\uzivatel\Documents\RegistryDr
***** [ Files ] *****
PUP.Optional.Legacy, C:\Users\All Users\Desktop\simpliclean.lnk
PUP.Optional.Legacy, C:\Users\Public\Desktop\simpliclean.lnk
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\zszbtalf.default\searchplugins\ask-search.xml
PUP.Optional.Legacy, C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\zszbtalf.default\searchplugins\avg-secure-search.xml
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
PUP.Optional.Legacy, RegistryDr_Popup
PUP.Optional.Legacy, RegistryDr_Start
PUP.Optional.Legacy, Power Suite
PUP.Optional.Legacy, Power Suite (Tray)
***** [ Registry ] *****
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0EE478A6-9786-4503-A43E-3EBA304899CB}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {09F900FD-79CB-4C8B-AEBD-7A8F0139A1DF}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {B5727E1B-8CFD-4964-983B-97B1053E07C5}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {C181EDEC-AFEC-4DDD-8034-732FA6BC3980}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {E363DD28-F548-4222-9CB0-7D876176ACBD}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {65A5C367-E96E-4DE9-9A01-1BC9C38C0F37}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {4B173343-EF39-4E0C-A491-47989EE66B92}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {0661FE72-F843-4061-93EE-F4EABE759AB7}
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | TCP Query User{6C1D512F-C165-45E0-A5CE-C51695B17622}C:\program files\simplitec\simpliclean\serviceprovider.exe
PUP.Optional.Legacy, [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | UDP Query User{06CA042B-1ACC-49C8-A6E2-C4C393AC7F61}C:\program files\simplitec\simpliclean\serviceprovider.exe
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\RegistryDrLanguage
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\AVG Tuneup
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{BD125908-5F10-409F-9C01-F2207CA18887}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run | ApnTBMon
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\MozillaPlugins\@avg.com\AVG SiteSafety plugin,version=11.0.0.1,application\x-avg-sitesafety-plugin
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
PUP.Optional.Ask, [Key] - HKLM\SOFTWARE\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\.DEFAULT\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKU\S-1-5-18\Software\AskPartnerNetwork
PUP.Optional.Ask, [Key] - HKCU\Software\AskPartnerNetwork
PUP.Optional.RegistryDr, [Key] - HKU\S-1-5-21-1145245196-2990020871-2182520447-1000.bak\Software\RegistryDrConfig
PUP.Adware.Heuristic, [Data] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41545534-5350-2D4D-4544-A758B70C2D01} | InstallSource []
PUP.Adware.Heuristic, [Data] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41545553-502D-5341-5400-A758B70C2D01} | InstallSource []
***** [ Firefox (and derivatives) ] *****
PUP.Optional.Legacy, SearchProvider found: ss.websearch.ask.com - Ask Search
PUP.Optional.Legacy, Startpage found: http://www.search.ask.com/?tpid=ATUSP-S ... psv=&pt=tb
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
Re: Poprosím o preventivku staršího ntb díky moc
vsetko najdene nechaj odstranit + odinstaluj McAfee Security Scan
ak nie su problemy hotovo
ak nie su problemy hotovo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?