Dobrý den,
neteř mi přinesla notebook že se ji seká a je pomalí. Prosím můžete mi pomoci to odvirovat? Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by andreac at 2014-11-17 11:57:45
Microsoft Windows 8.1
System drive C: has 633 GB (91%) free of 698 GB
Total RAM: 3911 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:57:47, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\andreac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9901 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
dashost.exe {5b5b0049-efdb-4720-89486555f87bc56d}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
taskhostex.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /loaddll
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3560.0.150344501\2024388375" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,16 --gpu-vendor-id=0x8086 --gpu-device-id=0x0156 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3412 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_54/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_04/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="3560.3.886072921\1430163476" /prefetch:673131151
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-01-28 15460648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-07-15 111216]
"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2012-08-15 2994880]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"midi3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-11-17 11:53:59 ----D---- C:\Program Files\trend micro
2014-11-17 11:53:58 ----D---- C:\rsit
2014-11-17 11:52:49 ----A---- C:\RSITx64.exe
2014-11-12 13:26:52 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 13:26:52 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 13:26:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 13:24:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 13:24:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 13:23:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 13:23:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 13:23:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 13:23:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 13:23:15 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 13:23:09 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 13:23:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 13:23:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 13:23:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 13:22:56 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 13:22:56 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 13:22:51 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 13:22:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 13:21:53 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 13:21:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 13:21:51 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 13:21:51 ----A---- C:\WINDOWS\system32\packager.dll
======List of files/folders modified in the last 1 month======
2014-11-17 11:54:06 ----D---- C:\WINDOWS\Prefetch
2014-11-17 11:53:59 ----D---- C:\Program Files
2014-11-17 11:50:57 ----D---- C:\WINDOWS\Temp
2014-11-17 11:50:37 ----D---- C:\Users\andreac\AppData\Roaming\eM Client
2014-11-17 11:48:01 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-17 11:47:32 ----D---- C:\Windows
2014-11-17 11:29:09 ----D---- C:\WINDOWS\system32\sru
2014-11-17 09:23:25 ----D---- C:\WINDOWS\system32\config
2014-11-17 09:20:34 ----RD---- C:\WINDOWS\System32
2014-11-17 09:20:34 ----D---- C:\WINDOWS\Inf
2014-11-17 09:20:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 16:52:19 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-16 16:52:11 ----D---- C:\WINDOWS\system32\catroot2
2014-11-16 16:52:01 ----RSD---- C:\WINDOWS\assembly
2014-11-16 10:21:25 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 17:58:26 ----D---- C:\WINDOWS\rescache
2014-11-14 17:53:46 ----SHD---- C:\System Volume Information
2014-11-14 14:30:15 ----D---- C:\WINDOWS\system32\NDF
2014-11-14 10:57:23 ----HD---- C:\Program Files\WindowsApps
2014-11-13 12:50:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-13 12:50:21 ----D---- C:\WINDOWS\WinSxS
2014-11-13 11:20:04 ----SHD---- C:\WINDOWS\Installer
2014-11-13 11:15:35 ----RD---- C:\Program Files (x86)
2014-11-13 11:15:30 ----D---- C:\WINDOWS\Tasks
2014-11-12 19:10:39 ----D---- C:\WINDOWS\SysWOW64
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\drivers
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 14:36:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:36:00 ----D---- C:\WINDOWS\system32\migration
2014-11-12 14:36:00 ----D---- C:\Program Files\Internet Explorer
2014-11-12 13:47:50 ----D---- C:\ProgramData\Microsoft Help
2014-11-05 13:33:05 ----SD---- C:\Users\andreac\AppData\Roaming\Microsoft
2014-11-03 05:34:43 ----D---- C:\WINDOWS\system32\catroot
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-26 18:09:45 ----RD---- C:\WINDOWS\ToastData
2014-10-26 18:09:42 ----D---- C:\WINDOWS\WinStore
2014-10-26 18:09:37 ----D---- C:\WINDOWS\system32\DriverStore
2014-10-21 13:26:23 ----D---- C:\Users\andreac\AppData\Roaming\vlc
2014-10-20 16:11:00 ----D---- C:\WINDOWS\system32\wdi
2014-10-20 15:31:46 ----D---- C:\WINDOWS\MediaViewer
2014-10-20 15:31:46 ----D---- C:\WINDOWS\FileManager
2014-10-20 15:31:46 ----D---- C:\WINDOWS\Camera
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 ccSet_NARA;NARA Settings Manager; C:\WINDOWS\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [2012-05-26 168608]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-17 92008]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem21.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem21.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-07-15 26736]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudobex;@oem39.inf,%ssud.Service.Name%;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudobex.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-18 227904]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2012-08-15 3943104]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-07-15 96880]
R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-15 662088]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-07 1431888]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Log rsit
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Zdravím!
Spuisťte nejprve tuto utilitu:
Spuisťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve >Scan< a potom na >Clean< (smazat)
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Log rsit
# AdwCleaner v4.101 - Report created 17/11/2014 at 12:31:09
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : andreac - ANDREA
# Running from : C:\Users\andreac\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R0].txt - [812 octets] - [17/11/2014 12:29:07]
AdwCleaner[S0].txt - [736 octets] - [17/11/2014 12:31:09]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [795 octets] ##########
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : andreac - ANDREA
# Running from : C:\Users\andreac\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R0].txt - [812 octets] - [17/11/2014 12:29:07]
AdwCleaner[S0].txt - [736 octets] - [17/11/2014 12:31:09]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [795 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Log rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by andreac at 2014-11-17 15:42:39
Microsoft Windows 8.1
System drive C: has 632 GB (91%) free of 698 GB
Total RAM: 3911 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:42:44, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\andreac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9472 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
dashost.exe {018fd501-0bea-434f-a3a90269fd0aa5ec}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /loaddll
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-01-28 15460648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-07-15 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-11-17 12:28:57 ----D---- C:\AdwCleaner
2014-11-17 11:53:59 ----D---- C:\Program Files\trend micro
2014-11-17 11:53:58 ----D---- C:\rsit
2014-11-17 11:52:49 ----A---- C:\RSITx64.exe
2014-11-12 13:26:52 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 13:26:52 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 13:26:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 13:24:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 13:24:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 13:23:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 13:23:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 13:23:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 13:23:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 13:23:15 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 13:23:09 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 13:23:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 13:23:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 13:23:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 13:22:56 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 13:22:56 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 13:22:51 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 13:22:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 13:21:53 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 13:21:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 13:21:51 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 13:21:51 ----A---- C:\WINDOWS\system32\packager.dll
======List of files/folders modified in the last 1 month======
2014-11-17 15:42:11 ----D---- C:\WINDOWS\Prefetch
2014-11-17 15:29:26 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 15:29:01 ----D---- C:\WINDOWS\system32\config
2014-11-17 15:00:01 ----D---- C:\WINDOWS\system32\sru
2014-11-17 13:46:43 ----D---- C:\WINDOWS\Temp
2014-11-17 13:33:02 ----D---- C:\WINDOWS\WinSxS
2014-11-17 13:11:15 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-17 12:59:00 ----D---- C:\Users\andreac\AppData\Roaming\eM Client
2014-11-17 12:47:25 ----RSD---- C:\WINDOWS\assembly
2014-11-17 12:36:08 ----D---- C:\Windows
2014-11-17 12:36:01 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-17 12:31:53 ----D---- C:\ProgramData\Norton
2014-11-17 12:05:38 ----SHD---- C:\WINDOWS\Installer
2014-11-17 12:05:38 ----RD---- C:\Program Files (x86)
2014-11-17 12:05:36 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 12:05:36 ----D---- C:\ProgramData\NortonInstaller
2014-11-17 12:04:56 ----SHD---- C:\System Volume Information
2014-11-17 11:53:59 ----D---- C:\Program Files
2014-11-17 09:20:34 ----RD---- C:\WINDOWS\System32
2014-11-17 09:20:34 ----D---- C:\WINDOWS\Inf
2014-11-17 09:20:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 16:52:11 ----D---- C:\WINDOWS\system32\catroot2
2014-11-16 10:21:25 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 17:58:26 ----D---- C:\WINDOWS\rescache
2014-11-14 14:30:15 ----D---- C:\WINDOWS\system32\NDF
2014-11-14 10:57:23 ----HD---- C:\Program Files\WindowsApps
2014-11-13 12:50:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-13 11:15:30 ----D---- C:\WINDOWS\Tasks
2014-11-12 19:10:39 ----D---- C:\WINDOWS\SysWOW64
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 14:36:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:36:00 ----D---- C:\WINDOWS\system32\migration
2014-11-12 14:36:00 ----D---- C:\Program Files\Internet Explorer
2014-11-12 13:47:50 ----D---- C:\ProgramData\Microsoft Help
2014-11-05 13:33:05 ----SD---- C:\Users\andreac\AppData\Roaming\Microsoft
2014-11-03 05:34:43 ----D---- C:\WINDOWS\system32\catroot
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-26 18:09:45 ----RD---- C:\WINDOWS\ToastData
2014-10-26 18:09:42 ----D---- C:\WINDOWS\WinStore
2014-10-21 13:26:23 ----D---- C:\Users\andreac\AppData\Roaming\vlc
2014-10-20 16:11:00 ----D---- C:\WINDOWS\system32\wdi
2014-10-20 15:31:46 ----D---- C:\WINDOWS\MediaViewer
2014-10-20 15:31:46 ----D---- C:\WINDOWS\FileManager
2014-10-20 15:31:46 ----D---- C:\WINDOWS\Camera
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-17 92008]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem21.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem21.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-07-15 26736]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudobex;@oem39.inf,%ssud.Service.Name%;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudobex.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-18 227904]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-07-15 96880]
R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-15 662088]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-07 1431888]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
-----------------EOF-----------------
Run by andreac at 2014-11-17 15:42:39
Microsoft Windows 8.1
System drive C: has 632 GB (91%) free of 698 GB
Total RAM: 3911 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:42:44, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\andreac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9472 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
dashost.exe {018fd501-0bea-434f-a3a90269fd0aa5ec}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /loaddll
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-01-28 15460648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-07-15 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-11-17 12:28:57 ----D---- C:\AdwCleaner
2014-11-17 11:53:59 ----D---- C:\Program Files\trend micro
2014-11-17 11:53:58 ----D---- C:\rsit
2014-11-17 11:52:49 ----A---- C:\RSITx64.exe
2014-11-12 13:26:52 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 13:26:52 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 13:26:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 13:24:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 13:24:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 13:23:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 13:23:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 13:23:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 13:23:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 13:23:15 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 13:23:09 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 13:23:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 13:23:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 13:23:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 13:22:56 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 13:22:56 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 13:22:51 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 13:22:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 13:21:53 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 13:21:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 13:21:51 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 13:21:51 ----A---- C:\WINDOWS\system32\packager.dll
======List of files/folders modified in the last 1 month======
2014-11-17 15:42:11 ----D---- C:\WINDOWS\Prefetch
2014-11-17 15:29:26 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 15:29:01 ----D---- C:\WINDOWS\system32\config
2014-11-17 15:00:01 ----D---- C:\WINDOWS\system32\sru
2014-11-17 13:46:43 ----D---- C:\WINDOWS\Temp
2014-11-17 13:33:02 ----D---- C:\WINDOWS\WinSxS
2014-11-17 13:11:15 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-17 12:59:00 ----D---- C:\Users\andreac\AppData\Roaming\eM Client
2014-11-17 12:47:25 ----RSD---- C:\WINDOWS\assembly
2014-11-17 12:36:08 ----D---- C:\Windows
2014-11-17 12:36:01 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-17 12:31:53 ----D---- C:\ProgramData\Norton
2014-11-17 12:05:38 ----SHD---- C:\WINDOWS\Installer
2014-11-17 12:05:38 ----RD---- C:\Program Files (x86)
2014-11-17 12:05:36 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 12:05:36 ----D---- C:\ProgramData\NortonInstaller
2014-11-17 12:04:56 ----SHD---- C:\System Volume Information
2014-11-17 11:53:59 ----D---- C:\Program Files
2014-11-17 09:20:34 ----RD---- C:\WINDOWS\System32
2014-11-17 09:20:34 ----D---- C:\WINDOWS\Inf
2014-11-17 09:20:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 16:52:11 ----D---- C:\WINDOWS\system32\catroot2
2014-11-16 10:21:25 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 17:58:26 ----D---- C:\WINDOWS\rescache
2014-11-14 14:30:15 ----D---- C:\WINDOWS\system32\NDF
2014-11-14 10:57:23 ----HD---- C:\Program Files\WindowsApps
2014-11-13 12:50:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-13 11:15:30 ----D---- C:\WINDOWS\Tasks
2014-11-12 19:10:39 ----D---- C:\WINDOWS\SysWOW64
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 14:36:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:36:00 ----D---- C:\WINDOWS\system32\migration
2014-11-12 14:36:00 ----D---- C:\Program Files\Internet Explorer
2014-11-12 13:47:50 ----D---- C:\ProgramData\Microsoft Help
2014-11-05 13:33:05 ----SD---- C:\Users\andreac\AppData\Roaming\Microsoft
2014-11-03 05:34:43 ----D---- C:\WINDOWS\system32\catroot
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-26 18:09:45 ----RD---- C:\WINDOWS\ToastData
2014-10-26 18:09:42 ----D---- C:\WINDOWS\WinStore
2014-10-21 13:26:23 ----D---- C:\Users\andreac\AppData\Roaming\vlc
2014-10-20 16:11:00 ----D---- C:\WINDOWS\system32\wdi
2014-10-20 15:31:46 ----D---- C:\WINDOWS\MediaViewer
2014-10-20 15:31:46 ----D---- C:\WINDOWS\FileManager
2014-10-20 15:31:46 ----D---- C:\WINDOWS\Camera
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-17 92008]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem21.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem21.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-07-15 26736]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudobex;@oem39.inf,%ssud.Service.Name%;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudobex.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-18 227904]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-07-15 96880]
R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-15 662088]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-07 1431888]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Log rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by andreac at 2014-11-17 16:11:49
Microsoft Windows 8.1
System drive C: has 633 GB (91%) free of 698 GB
Total RAM: 3911 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:11:53, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\trend micro\andreac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9521 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\nvvsvc.exe -session
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe"
dashost.exe {6c51cffa-1ae9-4504-a381fe8f7fc3bdeb}
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\WINDOWS\Explorer.EXE
taskeng.exe {1D7C73F7-E3A8-4756-A66D-350B870A065F}
taskhostex.exe
taskhost.exe USER
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe"
"C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /loaddll
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\eM Client\MailClient.exe" /startup
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-01-28 15460648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-07-15 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-11-17 16:07:27 ----D---- C:\_OTM
2014-11-17 12:28:57 ----D---- C:\AdwCleaner
2014-11-17 11:53:59 ----D---- C:\Program Files\trend micro
2014-11-17 11:53:58 ----D---- C:\rsit
2014-11-17 11:52:49 ----A---- C:\RSITx64.exe
2014-11-12 13:26:52 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 13:26:52 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 13:26:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 13:24:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 13:24:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 13:23:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 13:23:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 13:23:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 13:23:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 13:23:15 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 13:23:09 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 13:23:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 13:23:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 13:23:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 13:22:56 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 13:22:56 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 13:22:51 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 13:22:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 13:21:53 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 13:21:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 13:21:51 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 13:21:51 ----A---- C:\WINDOWS\system32\packager.dll
======List of files/folders modified in the last 1 month======
2014-11-17 16:11:47 ----D---- C:\Users\andreac\AppData\Roaming\eM Client
2014-11-17 16:11:18 ----D---- C:\WINDOWS\Prefetch
2014-11-17 16:10:40 ----D---- C:\WINDOWS\Temp
2014-11-17 16:09:25 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-17 16:07:28 ----D---- C:\WINDOWS\Tasks
2014-11-17 16:02:04 ----D---- C:\WINDOWS\system32\sru
2014-11-17 15:43:49 ----D---- C:\WINDOWS\system32\config
2014-11-17 15:29:26 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 13:33:02 ----D---- C:\WINDOWS\WinSxS
2014-11-17 13:11:15 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-17 12:47:25 ----RSD---- C:\WINDOWS\assembly
2014-11-17 12:36:08 ----D---- C:\Windows
2014-11-17 12:31:53 ----D---- C:\ProgramData\Norton
2014-11-17 12:05:38 ----SHD---- C:\WINDOWS\Installer
2014-11-17 12:05:38 ----RD---- C:\Program Files (x86)
2014-11-17 12:05:36 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 12:05:36 ----D---- C:\ProgramData\NortonInstaller
2014-11-17 12:04:56 ----SHD---- C:\System Volume Information
2014-11-17 11:53:59 ----D---- C:\Program Files
2014-11-17 09:20:34 ----RD---- C:\WINDOWS\System32
2014-11-17 09:20:34 ----D---- C:\WINDOWS\Inf
2014-11-17 09:20:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 16:52:11 ----D---- C:\WINDOWS\system32\catroot2
2014-11-16 10:21:25 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 17:58:26 ----D---- C:\WINDOWS\rescache
2014-11-14 14:30:15 ----D---- C:\WINDOWS\system32\NDF
2014-11-14 10:57:23 ----HD---- C:\Program Files\WindowsApps
2014-11-13 12:50:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-12 19:10:39 ----D---- C:\WINDOWS\SysWOW64
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 14:36:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:36:00 ----D---- C:\WINDOWS\system32\migration
2014-11-12 14:36:00 ----D---- C:\Program Files\Internet Explorer
2014-11-12 13:47:50 ----D---- C:\ProgramData\Microsoft Help
2014-11-05 13:33:05 ----SD---- C:\Users\andreac\AppData\Roaming\Microsoft
2014-11-03 05:34:43 ----D---- C:\WINDOWS\system32\catroot
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-26 18:09:45 ----RD---- C:\WINDOWS\ToastData
2014-10-26 18:09:42 ----D---- C:\WINDOWS\WinStore
2014-10-21 13:26:23 ----D---- C:\Users\andreac\AppData\Roaming\vlc
2014-10-20 16:11:00 ----D---- C:\WINDOWS\system32\wdi
2014-10-20 15:31:46 ----D---- C:\WINDOWS\MediaViewer
2014-10-20 15:31:46 ----D---- C:\WINDOWS\FileManager
2014-10-20 15:31:46 ----D---- C:\WINDOWS\Camera
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-17 92008]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem21.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem21.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-07-15 26736]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudobex;@oem39.inf,%ssud.Service.Name%;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudobex.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-07-15 96880]
R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-15 662088]
S2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-18 227904]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
S2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-07 1431888]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
-----------------EOF-----------------
Run by andreac at 2014-11-17 16:11:49
Microsoft Windows 8.1
System drive C: has 633 GB (91%) free of 698 GB
Total RAM: 3911 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:11:53, on 17. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\trend micro\andreac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9521 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\nvvsvc.exe -session
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\RfBtnSvc64.exe
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe"
dashost.exe {6c51cffa-1ae9-4504-a381fe8f7fc3bdeb}
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\WINDOWS\Explorer.EXE
taskeng.exe {1D7C73F7-E3A8-4756-A66D-350B870A065F}
taskhostex.exe
taskhost.exe USER
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe"
"C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe" /loaddll
"C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\eM Client\MailClient.exe" /startup
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25 66688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-01-28 15460648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-07-15 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-17 4085896]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-11-17 16:07:27 ----D---- C:\_OTM
2014-11-17 12:28:57 ----D---- C:\AdwCleaner
2014-11-17 11:53:59 ----D---- C:\Program Files\trend micro
2014-11-17 11:53:58 ----D---- C:\rsit
2014-11-17 11:52:49 ----A---- C:\RSITx64.exe
2014-11-12 13:26:52 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 13:26:52 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 13:26:51 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 13:26:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 13:26:22 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 13:26:21 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 13:26:20 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 13:25:27 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 13:24:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 13:24:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 13:23:35 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 13:23:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 13:23:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 13:23:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 13:23:15 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 13:23:14 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 13:23:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 13:23:12 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 13:23:11 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 13:23:10 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 13:23:09 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 13:23:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 13:23:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 13:23:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 13:23:05 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 13:23:04 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 13:23:03 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 13:23:02 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 13:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 13:23:00 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 13:22:59 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 13:22:58 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 13:22:57 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 13:22:56 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 13:22:56 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 13:22:55 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 13:22:54 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 13:22:53 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 13:22:53 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 13:22:52 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 13:22:51 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 13:22:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 13:22:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 13:22:48 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 13:21:53 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 13:21:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 13:21:52 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 13:21:51 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 13:21:51 ----A---- C:\WINDOWS\system32\packager.dll
======List of files/folders modified in the last 1 month======
2014-11-17 16:11:47 ----D---- C:\Users\andreac\AppData\Roaming\eM Client
2014-11-17 16:11:18 ----D---- C:\WINDOWS\Prefetch
2014-11-17 16:10:40 ----D---- C:\WINDOWS\Temp
2014-11-17 16:09:25 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-17 16:07:28 ----D---- C:\WINDOWS\Tasks
2014-11-17 16:02:04 ----D---- C:\WINDOWS\system32\sru
2014-11-17 15:43:49 ----D---- C:\WINDOWS\system32\config
2014-11-17 15:29:26 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 13:33:02 ----D---- C:\WINDOWS\WinSxS
2014-11-17 13:11:15 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-17 12:47:25 ----RSD---- C:\WINDOWS\assembly
2014-11-17 12:36:08 ----D---- C:\Windows
2014-11-17 12:31:53 ----D---- C:\ProgramData\Norton
2014-11-17 12:05:38 ----SHD---- C:\WINDOWS\Installer
2014-11-17 12:05:38 ----RD---- C:\Program Files (x86)
2014-11-17 12:05:36 ----D---- C:\WINDOWS\system32\drivers
2014-11-17 12:05:36 ----D---- C:\ProgramData\NortonInstaller
2014-11-17 12:04:56 ----SHD---- C:\System Volume Information
2014-11-17 11:53:59 ----D---- C:\Program Files
2014-11-17 09:20:34 ----RD---- C:\WINDOWS\System32
2014-11-17 09:20:34 ----D---- C:\WINDOWS\Inf
2014-11-17 09:20:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 16:52:11 ----D---- C:\WINDOWS\system32\catroot2
2014-11-16 10:21:25 ----D---- C:\WINDOWS\AppReadiness
2014-11-14 17:58:26 ----D---- C:\WINDOWS\rescache
2014-11-14 14:30:15 ----D---- C:\WINDOWS\system32\NDF
2014-11-14 10:57:23 ----HD---- C:\Program Files\WindowsApps
2014-11-13 12:50:25 ----D---- C:\WINDOWS\CbsTemp
2014-11-12 19:10:39 ----D---- C:\WINDOWS\SysWOW64
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-12 14:36:01 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-12 14:36:01 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-12 14:36:01 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 14:36:00 ----D---- C:\WINDOWS\system32\migration
2014-11-12 14:36:00 ----D---- C:\Program Files\Internet Explorer
2014-11-12 13:47:50 ----D---- C:\ProgramData\Microsoft Help
2014-11-05 13:33:05 ----SD---- C:\Users\andreac\AppData\Roaming\Microsoft
2014-11-03 05:34:43 ----D---- C:\WINDOWS\system32\catroot
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-26 18:09:45 ----RD---- C:\WINDOWS\ToastData
2014-10-26 18:09:42 ----D---- C:\WINDOWS\WinStore
2014-10-21 13:26:23 ----D---- C:\Users\andreac\AppData\Roaming\vlc
2014-10-20 16:11:00 ----D---- C:\WINDOWS\system32\wdi
2014-10-20 15:31:46 ----D---- C:\WINDOWS\MediaViewer
2014-10-20 15:31:46 ----D---- C:\WINDOWS\FileManager
2014-10-20 15:31:46 ----D---- C:\WINDOWS\Camera
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-08-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-08-17 224896]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-09-05 30496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-08-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-08-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-08-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-08-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-08-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-08-17 92008]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem21.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem21.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 iwdbus;@oem29.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem22.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-09-05 11273504]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-07-15 26736]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem10.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
S3 BTATH_A2DP;@oem9.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
S3 btath_avdt;@oem9.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
S3 BTATH_RCP;@oem15.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem1.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 intaud_WaveExtensible;@oem28.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 ssudmdm;@oem37.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudobex;@oem39.inf,%ssud.Service.Name%;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudobex.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2011-02-02 18656]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-08-17 50344]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2013-02-20 2615368]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-08-29 920864]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-07-15 96880]
R2 StartMenuService;StartMenu8 Service; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2013-03-15 662088]
S2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-18 227904]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
S2 NAUpdate;Nero Update; c:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-01-07 1431888]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Log rsit
ano je to lepší, pc startuje svižněji i internet se otvírá lépe. Pc je celkově lepší.
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Tak to jsem rád. Žádný jiný problém?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Log rsit
Nezdá se mi že by tomu ještě něco bránilo.
Děkuji vám za pomoc. Děkuji
Děkuji vám za pomoc. Děkuji
-
Rudy
- Site Admin
- Příspěvky: 119548
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Log rsit
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?