Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

připojení na internet

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

připojení na internet

#1 Příspěvek od haulinka »

Ahoj, mohla bych poprosit o radu?

mám windows 8, takže notebook moc nevypínám, probuzení z režimu spánku je opravdu rychlé (2 vteřiny)... asi před měsícem začal být problém, že se po probuzení občas zasekl, nedalo se ani hýbat myší, takže jsem buď restartovala "natvrdo", nebo jsem ho vypínala pokaždé, protože po běžném zapnutí (né po probuzení z režimu spánku) fungoval bez problémů. Projela jsem antivirem (NOD 32), vyčistila CCleanerem, Wise Registry Cleanerem, defragmentovala, odinstalovala, co jsem neznala a zakázala všechny automaticky po startu spouštěný procesy, který neměly jako vydavatele intel, asus, eset nebo microsoft corporation. Obzvlášť po wise registry cleaneru a zakázání spouštění věcí po startu to bylo chvilku lepší... ale postupně začal zamrzat kdykoliv, nejen po probuzení a to se dál zhoršuje... podařilo se mi pustit notebook i v nouzovém režimu (u windows 8 to u sebe považuju docela za výkon :D ) a tam fungoval v pořádku. Zapnula jsem všechny možné nejnáročnější programy, co mám - Adobe photoshop, macromedia dreamweaver, wolffram mathematicu, geogebru, the sims 2 :D, stronghold crusader a fungoval rychle, nechala jsem ho tak fakt dlouho, nechala jsem překopírovávat soubory a žádný problém.

Teď už se prakticky hned po zapnutí zasekne. Jediné, co funguje - zapnout režim v letadle a nebýt na internetu - opět jsem (tentokrát v běžném chodu, né v nouzovém režimu) pustila všechny programy a funguje dobře... dokud se nepřipojím na internet.

Mohl by to mít na svědomí nějaký vir jako bitcoin miner (soudím pouze z toho, že se problémy projeví pouze při připojení na internet)? jak by se to dalo poznat? - ideálně něčím, co se dá přenést na fleshce, online scaner by mi moc nepomohl...

Děkuju moc za jakoukoli odpověď.
L. Haubeltová
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: připojení na internet

#2 Příspěvek od Márty84 »

Zdravim :)

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786 a mrknem na to ;-)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#3 Příspěvek od haulinka »

Omlouvám se, že odpovídám až teď, ale až teď měl světlou chvilku, že se to dalo stáhnout :)

Logfile of random's system information tool 1.10 (written by random/random)
Run by Libuše at 2014-09-28 12:14:50
Microsoft Windows 8.1
System drive C: has 227 GB (80%) free of 286 GB
Total RAM: 3982 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:14:59, on 28. 9. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17278)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Libuše.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=6826
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem28.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 9837 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
"dwm.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted


c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k networkservice
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\svchost.exe -k localservicenonetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {14fb602e-20aa-4b9c-bd1d1deb4a5dc199}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
c:\windows\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\viakaraokesrv.exe
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
c:\windows\system32\svchost.exe -k localservicepeernet
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe"
C:\WINDOWS\Explorer.EXE
taskhost.exe $(Arg0)
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
KBFiltr.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
taskhostex.exe
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\totalcmd\TOTALCMD.EXE"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe"
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3156.0.603925912\1925602166" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3308 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.6.1463597596\1384646035" /prefetch:673131151
"C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.13.1961406205\1824939206" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.14.785571922\1712850640" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3156.15.2028184888\1759572369" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Elex-tech\YAC\ipcdl.exe" 862615575
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.16.1512637712\630366104" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.17.491316869\1609885515" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.18.525104023\1057791280" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/SuggestFeatureAblation_Stable_Experiment_R2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_44/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --channel="3156.19.467464509\1532565986" /prefetch:673131151
C:\WINDOWS\system32\AUDIODG.EXE 0xd7c
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\Libuše\Downloads\RSITx64 (1).exe"
"C:\Program Files\AVAST Software\Avast\setup\instup.exe" /instop:update_vps

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\avast! Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\tasks\FTdownloader V4.0-codedownloader.job - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe /reinstallapp /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=7735D680107D4846AA5E017B9E376E95IE /verifier=bd2bae6e6ad0eabfb119476d81513b40 /installerversion=1_27_153 /installerfullversion=1.27.153.8 /installationtime=1376420996 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /codedownloaddomain=http://cr.install-daddy.com /allusers /externallog=''
C:\WINDOWS\tasks\FTdownloader V4.0-enabler.job - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-enabler.exe /enablebho /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=7735D680107D4846AA5E017B9E376E95IE /verifier=bd2bae6e6ad0eabfb119476d81513b40 /installerversion=1_27_153 /installationtime=1376420996 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /bhoguid=11111111-1111-1111-1111-110311551174 /allusers /externallog=''
C:\WINDOWS\tasks\FTdownloader V4.0-updater.job - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-updater.exe /runupdater /agentregpath='FTdownloader V4.0' /appid=35574 /srcid='000179' /subid='0' /zdata='0' /bic=7735D680107D4846AA5E017B9E376E95IE /verifier=bd2bae6e6ad0eabfb119476d81513b40 /installerversion=1_27_153 /installationtime=1376420996 /statsdomain=http://stats.datasrvstats.com /errorsdomain=http://errors.datasrvstats.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.datasrvstats.com /updaterversion=2 /externallog=''
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf2b606c1d394b.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Libuše\AppData\Roaming\Mozilla\Firefox\Profiles\m6eyo3ga.default

prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\TorchVLC]
"Description"=VLC Multimedia Plugin
"Path"=C:\Users\Libuše\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll


C:\Users\Libuše\AppData\Roaming\Mozilla\Firefox\Profiles\m6eyo3ga.default\searchplugins\
ask-search.xml
Ask.xml
bing-avast.xml
firmy.cz-141846.xml
Google.xml
seznam.cz-141846.xml
videa.seznam.cz-141846.xml
yqs-barff-yandex.xml
zbozi.cz-141846.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-10 64640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-09-24 612248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-21 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-09-24 457712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-21 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-10-01 771032]
"BtTray"=C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [2012-08-10 764032]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-08-10 127616]
"ACMON"=C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-06-07 90832]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-08-16 5264016]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-08-23 366720]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [2012-08-28 3417984]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-09-24 4085896]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-10-01 623104]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - "C:\Program Files (x86)\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1"
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-09-28 12:14:50 ----D---- C:\rsit
2014-09-28 12:14:50 ----D---- C:\Program Files\trend micro
2014-09-24 13:03:53 ----D---- C:\Users\Libuše\AppData\Roaming\AVAST Software
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2014-09-24 12:59:35 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-09-24 12:59:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-09-24 12:59:30 ----A---- C:\WINDOWS\avastSS.scr
2014-09-24 12:59:27 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2014-09-24 12:57:50 ----D---- C:\Program Files\AVAST Software
2014-09-24 12:37:32 ----D---- C:\Users\Libuše\AppData\Roaming\eCyber
2014-09-24 12:36:25 ----D---- C:\WINDOWS\system32\log
2014-09-24 12:36:25 ----A---- C:\WINDOWS\system32\drivers\iSafeNetFilter.sys
2014-09-24 12:36:25 ----A---- C:\WINDOWS\system32\drivers\iSafeKrnlBoot.sys
2014-09-24 12:36:23 ----D---- C:\Program Files (x86)\Elex-tech
2014-09-24 12:36:13 ----D---- C:\Users\Libuše\AppData\Roaming\Elex-tech
2014-09-24 12:34:18 ----A---- C:\WINDOWS\ntbtlog.txt
2014-09-14 14:51:24 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-09-14 14:51:24 ----A---- C:\WINDOWS\system32\tcpmon.dll
2014-09-14 14:51:23 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-09-14 14:51:23 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-09-14 14:51:23 ----A---- C:\WINDOWS\explorer.exe
2014-09-14 14:51:22 ----A---- C:\WINDOWS\system32\twinui.dll
2014-09-14 14:51:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-09-14 14:51:20 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-09-14 14:51:20 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-09-14 14:51:20 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-09-14 14:51:20 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-09-14 14:50:21 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-09-14 14:50:18 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-09-14 14:50:18 ----A---- C:\WINDOWS\system32\authui.dll
2014-09-14 14:50:17 ----A---- C:\WINDOWS\system32\shell32.dll
2014-09-14 14:50:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-09-14 14:50:13 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-09-14 14:50:12 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-09-14 14:50:11 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-14 14:50:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-09-14 14:50:08 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-09-14 14:50:06 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-09-14 14:50:05 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-09-14 14:50:01 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-09-14 14:50:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-09-14 14:49:59 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-09-14 14:49:59 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-09-14 14:49:58 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-09-14 14:49:58 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-09-14 14:49:58 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-09-14 14:49:56 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-09-14 14:49:55 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\system32\localspl.dll
2014-09-14 14:49:54 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-09-14 14:49:53 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-09-14 14:49:53 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-09-14 14:49:52 ----A---- C:\WINDOWS\system32\SRH.dll
2014-09-14 14:49:52 ----A---- C:\WINDOWS\system32\printui.dll
2014-09-14 14:49:52 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-09-14 14:49:52 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-09-14 14:49:51 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-09-14 14:49:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-09-14 14:49:51 ----A---- C:\WINDOWS\system32\mispace.dll
2014-09-14 14:49:51 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-09-14 14:49:50 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2014-09-14 14:49:50 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-09-14 14:49:49 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-09-14 14:49:49 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-09-14 14:49:49 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-09-14 14:49:49 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-09-14 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2014-09-14 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-09-14 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-09-14 14:49:48 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-09-14 14:49:48 ----A---- C:\WINDOWS\system32\aclui.dll
2014-09-14 14:49:47 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-09-14 14:49:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-09-14 14:49:46 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-09-14 14:49:46 ----A---- C:\WINDOWS\system32\spoolsv.exe
2014-09-14 14:49:46 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-09-14 14:49:45 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-09-14 14:49:45 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-09-14 14:49:45 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-09-14 14:49:45 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-09-14 14:49:44 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2014-09-14 14:49:44 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-09-14 14:49:43 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-09-14 14:49:43 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\usbmon.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\mftranscode.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-09-14 14:49:43 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-09-14 14:49:42 ----A---- C:\WINDOWS\system32\wisp.dll
2014-09-14 14:49:42 ----A---- C:\WINDOWS\system32\winload.exe
2014-09-14 14:49:42 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-09-14 14:49:42 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-09-14 14:49:41 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-09-14 14:49:41 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-09-14 14:49:41 ----A---- C:\WINDOWS\system32\wsecedit.dll
2014-09-14 14:49:41 ----A---- C:\WINDOWS\system32\winresume.exe
2014-09-14 14:49:41 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-09-14 14:49:41 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-09-14 14:49:40 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-09-14 14:49:39 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-09-14 14:49:39 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2014-09-14 14:49:39 ----A---- C:\WINDOWS\system32\winmmbase.dll
2014-09-14 14:49:39 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-09-14 14:49:39 ----A---- C:\WINDOWS\system32\user32.dll
2014-09-14 14:49:38 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-09-14 14:49:38 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-09-14 14:49:37 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-09-14 14:49:37 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-09-14 14:49:37 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-09-14 14:49:37 ----A---- C:\WINDOWS\system32\conhost.exe
2014-09-14 14:49:36 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\VAN.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\Display.dll
2014-09-14 14:49:36 ----A---- C:\WINDOWS\system32\AppxSip.dll
2014-09-14 14:49:35 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-09-14 14:49:35 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2014-09-14 14:49:35 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-09-14 14:49:35 ----A---- C:\WINDOWS\system32\osk.exe
2014-09-14 14:49:35 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-09-14 14:49:34 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-09-14 14:49:34 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-09-14 14:49:34 ----A---- C:\WINDOWS\system32\mfps.dll
2014-09-14 14:49:34 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-09-14 14:49:34 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-09-14 14:49:34 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2014-09-14 14:49:34 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-09-14 14:49:33 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-09-14 14:49:33 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\winmm.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-09-14 14:49:33 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2014-09-14 14:49:32 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2014-09-14 14:49:32 ----A---- C:\WINDOWS\system32\prnntfy.dll
2014-09-14 14:49:31 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2014-09-14 14:49:31 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2014-09-14 14:49:31 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-09-14 14:49:31 ----A---- C:\WINDOWS\system32\gpedit.dll
2014-09-14 14:49:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-09-14 14:49:30 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2014-09-14 14:49:30 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2014-09-14 14:49:30 ----A---- C:\WINDOWS\system32\puiapi.dll
2014-09-14 14:49:30 ----A---- C:\WINDOWS\system32\iasnap.dll
2014-09-14 14:49:29 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-09-14 14:49:29 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-09-14 14:49:29 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-09-14 14:49:29 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-09-14 14:49:28 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-09-14 14:49:28 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-09-14 14:49:28 ----A---- C:\WINDOWS\system32\wups.dll
2014-09-14 14:49:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-09-14 14:49:27 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-09-14 14:49:27 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-09-14 14:49:27 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-09-14 14:49:27 ----A---- C:\WINDOWS\system32\stobject.dll
2014-09-14 14:49:27 ----A---- C:\WINDOWS\system32\dab.dll
2014-09-14 14:49:27 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-09-14 14:49:26 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2014-09-14 14:49:26 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-09-14 14:49:26 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-09-14 14:49:25 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-09-14 14:49:25 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2014-09-14 14:49:25 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-09-14 14:49:25 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-09-14 14:49:25 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-09-14 14:49:24 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-09-14 14:49:24 ----A---- C:\WINDOWS\system32\wups2.dll
2014-09-14 14:49:24 ----A---- C:\WINDOWS\system32\wshbth.dll
2014-09-14 14:49:24 ----A---- C:\WINDOWS\system32\schannel.dll
2014-09-14 14:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2014-09-14 14:49:23 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-09-14 14:49:22 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2014-09-14 14:49:22 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-09-14 14:49:21 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2014-09-14 14:49:21 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-09-14 14:49:21 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-09-14 14:49:21 ----A---- C:\WINDOWS\system32\browser.dll
2014-09-14 14:49:20 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2014-09-14 14:49:20 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-09-14 14:49:18 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-09-14 14:49:17 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2014-09-14 14:49:17 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-09-14 14:49:16 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-09-14 14:49:16 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2014-09-14 14:49:15 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-09-14 14:49:14 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-09-14 14:49:13 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2014-09-14 14:49:13 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2014-09-14 14:49:13 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2014-09-14 14:49:13 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2014-09-14 14:49:12 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-09-14 14:49:12 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2014-09-14 14:49:12 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2014-09-14 14:49:12 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2014-09-14 14:49:12 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2014-09-14 14:49:12 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2014-09-14 14:49:10 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-09-14 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-09-14 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2014-09-14 14:49:10 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-09-14 14:49:10 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-09-14 14:49:10 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-09-14 14:49:10 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2014-09-14 14:49:10 ----A---- C:\WINDOWS\system32\compstui.dll
2014-09-14 14:49:10 ----A---- C:\WINDOWS\system32\certcli.dll
2014-09-14 14:49:09 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2014-09-14 14:49:09 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-09-14 14:49:08 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\SYSWOW64\KBDTT102.DLL
2014-09-14 14:49:07 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-09-14 14:49:07 ----A---- C:\WINDOWS\system32\KBDTT102.DLL
2014-09-14 13:36:10 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-09-11 09:56:45 ----D---- C:\Users\Libuše\AppData\Roaming\PDAppFlex
2014-09-11 09:38:15 ----D---- C:\ProgramData\Package Cache
2014-09-10 10:20:45 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-09-10 10:20:45 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-09-10 10:20:43 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-09-10 10:20:43 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-09-10 10:20:41 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-09-10 10:20:41 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-09-10 10:20:41 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-09-10 10:20:41 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-10 10:20:38 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-09-10 10:20:38 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-09-10 10:20:38 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-09-10 10:20:38 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-09-10 10:20:36 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-09-10 10:20:36 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-09-10 10:20:36 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-09-10 10:20:36 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-09-10 10:20:36 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-09-10 10:20:35 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-09-10 10:20:35 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-09-10 10:20:35 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-09-10 10:20:35 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-09-10 10:20:33 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-09-10 10:20:29 ----A---- C:\WINDOWS\system32\wininet.dll
2014-09-10 10:20:28 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-09-10 10:20:28 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-09-10 10:20:28 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-09-10 10:20:28 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-09-10 10:20:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-09-10 10:20:26 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-09-10 10:20:25 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-09-10 10:20:23 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-09-10 10:20:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-09-10 10:20:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-09-10 09:58:32 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-09-10 09:58:32 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-09-10 09:58:31 ----A---- C:\WINDOWS\system32\aepic.dll
2014-09-10 08:50:24 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2014-09-10 08:50:24 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-09-10 08:48:12 ----A---- C:\WINDOWS\system32\schedsvc.dll

======List of files/folders modified in the last 1 month======

2014-09-28 12:14:50 ----D---- C:\Program Files
2014-09-28 12:02:00 ----D---- C:\WINDOWS\system32\sru
2014-09-28 11:58:17 ----D---- C:\WINDOWS\Temp
2014-09-27 10:44:58 ----D---- C:\WINDOWS\System32
2014-09-27 10:44:58 ----D---- C:\WINDOWS\Inf
2014-09-27 10:44:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-27 10:40:59 ----D---- C:\WINDOWS\Prefetch
2014-09-27 10:40:12 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-09-24 14:56:52 ----D---- C:\WINDOWS\Microsoft.NET
2014-09-24 13:31:12 ----HD---- C:\ProgramData
2014-09-24 13:31:09 ----RD---- C:\Program Files (x86)
2014-09-24 13:31:09 ----D---- C:\Windows
2014-09-24 13:09:21 ----SHD---- C:\WINDOWS\Installer
2014-09-24 13:08:20 ----D---- C:\ProgramData\ESET
2014-09-24 13:07:29 ----D---- C:\WINDOWS\system32\DriverStore
2014-09-24 13:07:26 ----D---- C:\WINDOWS\system32\drivers
2014-09-24 12:59:42 ----D---- C:\WINDOWS\Tasks
2014-09-24 12:57:50 ----D---- C:\ProgramData\AVAST Software
2014-09-24 10:00:38 ----D---- C:\Users\Libuše\AppData\Roaming\XnView
2014-09-24 08:30:01 ----SD---- C:\ProgramData\Microsoft
2014-09-24 08:25:00 ----D---- C:\WINDOWS\SoftwareDistribution
2014-09-24 08:19:16 ----D---- C:\ProgramData\Adobe
2014-09-24 02:45:37 ----D---- C:\WINDOWS\system32\config
2014-09-24 01:50:26 ----SHD---- C:\System Volume Information
2014-09-23 23:15:42 ----D---- C:\Users\Libuše\AppData\Roaming\Adobe
2014-09-23 22:47:05 ----D---- C:\Program Files (x86)\Adobe
2014-09-23 22:46:18 ----D---- C:\ProgramData\Mathematica
2014-09-23 22:46:18 ----D---- C:\Program Files\Common Files
2014-09-23 22:46:18 ----D---- C:\Program Files (x86)\Common Files
2014-09-23 21:29:40 ----D---- C:\WINDOWS\debug
2014-09-21 13:09:53 ----A---- C:\IFRToolLog.txt
2014-09-21 13:04:39 ----D---- C:\WINDOWS\AppReadiness
2014-09-18 16:01:16 ----D---- C:\WINDOWS\rescache
2014-09-18 15:47:48 ----RSD---- C:\WINDOWS\assembly
2014-09-18 09:04:47 ----HD---- C:\Program Files\WindowsApps
2014-09-16 14:05:09 ----D---- C:\WINDOWS\WinSxS
2014-09-16 13:59:55 ----RD---- C:\WINDOWS\ToastData
2014-09-16 13:59:55 ----D---- C:\WINDOWS\SysWOW64
2014-09-16 13:59:48 ----D---- C:\WINDOWS\WinStore
2014-09-16 13:59:48 ----D---- C:\Program Files\Windows Journal
2014-09-16 13:59:44 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-09-16 13:59:44 ----D---- C:\WINDOWS\SYSWOW64\setup
2014-09-16 13:59:44 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-09-16 13:59:41 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-09-16 13:59:41 ----D---- C:\WINDOWS\system32\wbem
2014-09-16 13:59:41 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-09-16 13:59:41 ----D---- C:\WINDOWS\system32\cs-CZ
2014-09-16 13:59:41 ----D---- C:\WINDOWS\system32\Boot
2014-09-16 13:59:40 ----D---- C:\WINDOWS\system32\setup
2014-09-16 13:59:40 ----D---- C:\WINDOWS\system32\oobe
2014-09-16 13:59:37 ----RSD---- C:\WINDOWS\Fonts
2014-09-16 13:59:36 ----D---- C:\WINDOWS\apppatch
2014-09-16 13:59:35 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-09-16 13:59:35 ----D---- C:\WINDOWS\SYSWOW64\InputMethod
2014-09-16 13:59:35 ----D---- C:\WINDOWS\system32\migration
2014-09-16 13:50:59 ----D---- C:\WINDOWS\CbsTemp
2014-09-14 13:35:11 ----D---- C:\WINDOWS\system32\catroot2
2014-09-11 09:56:59 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-09-11 09:56:58 ----D---- C:\WINDOWS\system32\Tasks
2014-09-11 00:00:14 ----D---- C:\WINDOWS\system32\catroot
2014-09-10 20:33:56 ----SD---- C:\WINDOWS\system32\CompatTel
2014-09-10 20:33:54 ----D---- C:\Program Files\Internet Explorer
2014-09-10 20:33:54 ----D---- C:\Program Files (x86)\Internet Explorer
2014-09-10 10:21:35 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-09-10 10:21:34 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-09-10 10:21:22 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-10 10:21:21 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-09-10 10:21:21 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-10 10:21:21 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-09-10 10:21:20 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-09-10 10:21:19 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-09-10 10:21:18 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-09-10 10:21:18 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-09-10 10:21:17 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-09-10 10:21:16 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-09-10 10:21:11 ----A---- C:\WINDOWS\system32\msrating.dll
2014-09-10 10:21:08 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-09-10 10:20:18 ----D---- C:\WINDOWS\system32\MRT
2014-09-10 10:16:24 ----A---- C:\WINDOWS\system32\MRT.exe
2014-09-10 08:55:21 ----D---- C:\The KMPlayer
2014-09-09 08:34:37 ----D---- C:\Users\Libuše\AppData\Roaming\Dropbox
2014-09-02 22:06:15 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-08-30 08:08:07 ----D---- C:\WINDOWS\SYSWOW64\config

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdisFlt;@oem42.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2014-09-24 448400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-09-24 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-09-24 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-24 645952]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-09-24 28184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-09-24 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-09-24 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-09-24 427360]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2014-09-23 248488]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2014-09-23 99496]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2014-09-23 65704]
R1 iSafeNetFilter;YAC NDIS Driver; C:\WINDOWS\system32\DRIVERS\iSafeNetFilter.sys [2014-09-22 49320]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-09-24 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-09-24 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-09-24 92008]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-07-24 17152]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 ATP;@oem29.inf,%PS2.DeviceDesc%;ASUS PS/2 Port Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2012-10-31 61824]
R3 HIDSwitch;@oem15.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2012-05-31 21152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-10-01 4177920]
R3 IntcDAud;@oem26.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem33.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-23 26008]
R3 kbfiltr;@oem14.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem27.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 VIAHdAudAddService;@oem28.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2012-08-14 2206352]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AmUStor;@oem10.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-07-13 101504]
S3 BTATH_LWFLT;@oem16.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys []
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-01-28 593000]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem32.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-23 39320]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\WINDOWS\system32\DRIVERS\iSafeKrnlBoot.sys [2014-09-23 45224]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2012-07-23 105120]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-04-13 277120]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-10 211584]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-09-24 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-09-24 106488]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2014-09-23 118048]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 VIAKaraokeService;@oem28.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\WINDOWS\system32\viakaraokesrv.exe [2012-08-14 27792]
R3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-10-01 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-13 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-13 136176]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-09 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#4 Příspěvek od haulinka »

ještě se omlouvám, jsem nějak zapomněla připsat, že jsem odinstalovala NOD 32 a zkusila avast a ještě nainstalovala nějakej čistič? YAC... takhle dlouho v kuse neběžel ani nepamatuju a dokonce jsem se připojila i na internet.. ale avast nic neobjevil a ten YAC nevím, jestli na to mohl mít vliv... každopádně ještě napíšu, jestli se to objevilo znovu, nebo ne... děkuju moc :)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: připojení na internet

#5 Příspěvek od Márty84 »

Ohledne YAC - http://forum.viry.cz/viewtopic.php?f=14&t=136170


Avast je fajn, ale pokud byl NOD radne zakoupeny, nechal bych jej, svou kvalitu ma :)


:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.


Pokud by byl nejaky problem se stazenim, stahnete to na jinem pc a preneste treba na flashce.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#6 Příspěvek od haulinka »

Děkuju moc za upozornění, yac odinstalován :) snad mě neukamenujete (i když bych to zasloužila), ale nod má zdarma zkušební jednoměsíční verzi, tak jsem ho vždycky přeinstalovala, když zkušební verze vypršela :D

ten adwcleaner vypadá dobře, dokonce koukám, že mi asi vymazal ask.com ve firefoxu :D toho už jsem se zbavovala asi 4x :D

# AdwCleaner v3.310 - Report created 29/09/2014 at 10:07:40
# Updated 12/09/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Libuše - LIBU
# Running from : C:\Users\Libuše\Desktop\adwcleaner_3.310.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer
Folder Deleted : C:\Users\Libuše\AppData\Roaming\ARecEngine
File Deleted : C:\WINDOWS\System32\log\iSafeKrnlCall.log

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lgnbhdnimikkoodkogjlcllngimhlapp
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0035574.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311551174}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555574}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556674}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554474}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311551174}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555574}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556674}
Key Deleted : HKCU\Software\SweetIM
Key Deleted : HKLM\SOFTWARE\SweetIM

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17278


-\\ Mozilla Firefox v31.0 (x86 cs)

[ File : C:\Users\Libuše\AppData\Roaming\Mozilla\Firefox\Profiles\m6eyo3ga.default\prefs.js ]

Line Deleted : user_pref("browser.search.order.1", "Ask.com");

-\\ Google Chrome v37.0.2062.120

[ File : C:\Users\Libuše\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Libuše_2\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2287 octets] - [29/09/2014 10:00:50]
AdwCleaner[R1].txt - [2347 octets] - [29/09/2014 10:03:55]
AdwCleaner[S0].txt - [2253 octets] - [29/09/2014 10:07:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2313 octets] ##########
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: připojení na internet

#7 Příspěvek od Márty84 »

Kamenovat vas nebudu, ale chvalit taky ne :) Je dobre, ze jste to vyresila Avastem.

Jojo, ADWCleaner to odstranil a ja pak jeste skriptem odpalim pripadne zbytky. Ale musime postupne.


:arrow: Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)


:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#8 Příspěvek od haulinka »

crystal disk info:

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2014/09/29 11:02:59

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series Chipset Family SATA AHCI Controller [ATA]
- WDC WD7500BPVT-80HXZT3
- MATSHITADVD-RAM
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD7500BPVT-80HXZT3 : 750,1 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD7500BPVT-80HXZT3
----------------------------------------------------------------------------
Model : WDC WD7500BPVT-80HXZT3
Firmware : 01.01A01
Serial Number : WD-WXM1C5274509
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 2201 hod.
Power On Count : 2224 krát
Temparature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0060h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 176 174 _21 00000000086E Čas na roztočení ploten
04 _95 _95 __0 0000000013D6 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _97 _97 __0 000000000899 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 0000000008B0 Počet cyklů zapnutí zařízení
BF __1 __1 __0 000000001CDD Počet udalostí zaznamenaných otřesovým senzorem
C0 200 200 __0 00000000006D Počet vypnutí disku
C1 174 174 __0 00000001339A Počet cyklů načítání/vymazání
C2 115 103 __0 000000000020 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 4335 4335 3237 3435 3039
020: 0000 4000 0032 3031 2E30 3031 3031 5744 4320 5744
030: 3735 3030 4250 5654 2D38 585A 585A 5433 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1F06 1F06 0000 004C 0048
080: 01FE 0000 746B 7D09 6123 BC09 BC09 6123 207F 0052
090: 0052 0060 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 0000 5001 4EE2
110: 5C74 F7BA 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 012D 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 7035 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D2A5


Ten MBAM přifdám za chvilku :D

vážně děkuju moc :)
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#9 Příspěvek od haulinka »

myslím, že to nějak upgreadovali a maže to už v průběhu...
pořád to skenuje a našlo to jeden problém -
detected item: PUP.RiskwareTool.OK,
Type: file,
Location: C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll

a photoshop už nejde otevřít... ale nedivila bych se, kdyby i to dělalo problémy :) takže se holt obejdu bez photoshopu :)
Nahoru
haulinka
Návštěvník
Návštěvník
Příspěvky: 10
Registrován: 24 zář 2014 09:07

Re: připojení na internet

#10 Příspěvek od haulinka »

Teda, FT downloader jsem už taky měla za odinstalovanej :(

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 29. 9. 2014
Scan Time: 11:11:35
Logfile: scan.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.29.02
Rootkit Database: v2014.09.19.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: LibuA!e

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 644452
Time Elapsed: 2 hr, 44 min, 46 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.DataMngr.A, HKU\S-1-5-21-1995021418-3236438981-3334452641-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Datamngr, , [075f0fe42f4c2016477ff1660ff55ea2],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 13
PUP.RiskwareTool.CK, C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll, , [1650a251e5960d296e8469d1d32f60a0],
PUP.RiskwareTool.CK, D:\Moje_slozka\Programy\photoshop\Adobe photoshop CS6 13.0 [Extended x86+x64] PC\Patch\Crack\x64\amtlib.dll, , [650170835e1d340206ec97a3d82aca36],
PUP.RiskwareTool.CK, D:\Moje_slozka\Programy\photoshop\Adobe photoshop CS6 13.0 [Extended x86+x64] PC\Patch\Crack\x86\amtlib.dll, , [c6a030c3354678be826fd96115ed867a],
RiskWare.Tool.CK, D:\Software\EVROPA~1\GARMIN~1\KEYGEN~1.5\GARMIN~1.EXE, , [fe6842b1c2b9a0968cd5e93d768ceb15],
PUP.Optional.Unizeto, D:\Software\USB_Programy\grafika\GIMPPortable.exe, , [e38349aa0a7153e3709387711aea2bd5],
Adware.WhenU, D:\Software\zdvd\cdrw\daemontool408.exe, , [2b3b6390fa81e74f0f8c4cccfd08ac54],
RiskWare.Tool.CK, D:\Software\zdvd\kancl\articulate presenter pps2swf_demo\Articulate.Presenter.Pro.v5.05.Incl.Keymaker-ZWTonly\Keygen.exe, , [7cea53a0d9a263d30fb7a7d2768ad32d],
PUP.Optional.FTDownloader.A, C:\Windows\System32\Tasks\FTdownloader V4.0-codedownloader, , [abbbcf2486f5a09690d7908cc43f4eb2],
PUP.Optional.FTDownloader.A, C:\Windows\System32\Tasks\FTdownloader V4.0-enabler, , [87dff5feaecd62d4fe690814c0438f71],
PUP.Optional.FTDownloader.A, C:\Windows\System32\Tasks\FTdownloader V4.0-updater, , [91d5ad46fd7edb5bdf8836e656ad43bd],
PUP.Optional.FTdownloader.A, C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job, , [90d6aa49e09b72c40928cc708182d030],
PUP.Optional.FTdownloader.A, C:\Windows\Tasks\FTdownloader V4.0-enabler.job, , [8fd79e55780395a1c66bba827d8641bf],
PUP.Optional.FTdownloader.A, C:\Windows\Tasks\FTdownloader V4.0-updater.job, , [5b0b678c5625b086f33e45f754af629e],

Physical Sectors: 0
(No malicious items detected)


(end)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: připojení na internet

#11 Příspěvek od Márty84 »

haulinka píše:myslím, že to nějak upgreadovali a maže to už v průběhu...
Nemaze to v prubehu, jen je to docasne zachycene :)

Vsecny nalezy doporucuji odstranit (do karanteny), ale zalezi na vas, nutit vas nebudu. Po odstraneni a restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.




10.11. pro neaktivitu :lock: http://forum.viry.cz/viewtopic.php?f=12&t=123975
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“