Na Win 7 Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
(AdwCleaner při stažení chce nějaké přihlášení)
RSIT.exe log
========
HijackThis log
=========
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2015-06-09 02:52:53
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 63 GB (62%) free of 102 GB
Total RAM: 1012 MB (15% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:55:02, on 9.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal
Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\windows\system32\igfxsrvc.exe
C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost32.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost64.exe
C:\Users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
C:\windows\system32\conhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Install\SW\Viry\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [MSStp] C:\windows\inf\msstp.vbe
O4 - HKLM\..\Run: [mncyiiraSrv] C:\windows\system32\mncyiira.vbe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: conhost32.exe
O4 - Startup: conhost64.exe
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
O17 - HKLM\System\CCS\Services\Tcpip\..\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
O17 - HKLM\System\CCS\Services\Tcpip\..\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 8835 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\WinThruster_DEFAULT.job - C:\Program Files\WinThruster\WinThruster.exe -default
C:\windows\tasks\WinThruster_UPDATES.job - C:\Program Files\WinThruster\WinThruster.exe -updatecheck
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-09 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-09 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-07-14 417456]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-28 11004520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-06-30 2274600]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2012-05-16 3331312]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-06-30 83240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 981688]
"MSStp"=C:\windows\inf\msstp.vbe [2014-03-05 1584]
"mncyiiraSrv"=C:\windows\system32\mncyiira.vbe [2014-03-05 7670]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2012-02-27 131]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-10 143344]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-10 177136]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-10 169456]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
conhost32.exe
conhost64.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-04 224768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2015-06-09 02:52:57 ----D---- C:\Program Files\trend micro
2015-06-09 02:52:53 ----D---- C:\rsit
2015-06-09 02:21:48 ----D---- C:\ProgramData\IntelDLM
2015-06-09 01:54:05 ----D---- C:\Program Files\Intel Driver Update Utility
2015-06-09 01:53:19 ----D---- C:\ProgramData\Package Cache
2015-06-09 01:10:24 ----D---- C:\Install
2015-06-09 00:51:40 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files\Java
2015-06-08 22:39:02 ----D---- C:\Users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 22:36:08 ----D---- C:\Program Files\WinThruster
2015-06-05 12:33:36 ----AS---- C:\windows\system32\lcpmncyiira.exe
2015-06-05 12:33:35 ----AS---- C:\windows\system32\dcgmncyiira.exe
2015-06-05 12:33:31 ----AS---- C:\windows\system32\acumncyiira.exe
2015-06-05 12:33:30 ----D---- C:\windows\system32\bitstreams
2015-06-05 12:33:30 ----AS---- C:\windows\system32\zlib1.dll
2015-06-05 12:33:30 ----AS---- C:\windows\system32\ssleay32.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadVC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadGC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\libssh2.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\librtmp.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libidn-11.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libeay32.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libcurl-4.dll
2015-06-05 12:33:27 ----AS---- C:\windows\system32\cudart32_50_35.dll
2015-06-05 12:33:26 ----D---- C:\Program Files\Minecraft 1.4.7
2015-05-26 08:53:05 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\ieetwcollector.exe
2015-05-25 15:34:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-05-25 15:33:59 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-25 15:33:58 ----A---- C:\windows\system32\iernonce.dll
2015-05-25 15:33:57 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-05-25 15:33:56 ----A---- C:\windows\system32\urlmon.dll
2015-05-25 15:33:56 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-25 15:33:52 ----A---- C:\windows\system32\jsproxy.dll
2015-05-25 15:33:51 ----A---- C:\windows\system32\ieUnatt.exe
2015-05-25 15:33:50 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-25 15:33:49 ----A---- C:\windows\system32\msfeeds.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\msrating.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\iesetup.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\wininet.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-05-25 15:33:38 ----A---- C:\windows\system32\dxtrans.dll
2015-05-25 15:33:37 ----A---- C:\windows\system32\ieui.dll
2015-05-25 15:33:32 ----A---- C:\windows\system32\ieframe.dll
2015-05-25 15:33:26 ----A---- C:\windows\system32\mshtmled.dll
2015-05-25 15:33:24 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-05-25 15:33:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-25 15:33:19 ----A---- C:\windows\system32\iertutil.dll
2015-05-25 15:33:15 ----A---- C:\windows\system32\mshtml.dll
2015-05-25 15:33:10 ----A---- C:\windows\system32\jscript9.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\vbscript.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\jscript.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\shimeng.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\sdbinst.exe
2015-05-25 15:31:07 ----A---- C:\windows\system32\apphelp.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\aelupsvc.dll
2015-05-25 15:30:55 ----A---- C:\windows\system32\wpdshext.dll
2015-05-25 15:30:32 ----A---- C:\windows\system32\FntCache.dll
2015-05-25 15:30:31 ----A---- C:\windows\system32\DWrite.dll
2015-05-25 15:30:29 ----A---- C:\windows\system32\win32k.sys
2015-05-25 15:30:11 ----A---- C:\windows\system32\schannel.dll
2015-05-25 15:30:11 ----A---- C:\windows\system32\lsasrv.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\msv1_0.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\kerberos.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\certcli.dll
2015-05-25 15:30:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-05-25 15:30:08 ----A---- C:\windows\system32\wdigest.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\ncrypt.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-25 15:30:07 ----A---- C:\windows\system32\TSpkg.dll
2015-05-25 15:30:07 ----A---- C:\windows\system32\auditpol.exe
2015-05-25 15:30:06 ----A---- C:\windows\system32\sspicli.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\secur32.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\lsass.exe
2015-05-25 15:30:05 ----A---- C:\windows\system32\sspisrv.dll
2015-05-25 15:30:05 ----A---- C:\windows\system32\credssp.dll
2015-05-25 15:30:04 ----A---- C:\windows\system32\adtschema.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msobjs.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msaudite.dll
2015-05-25 15:29:34 ----A---- C:\windows\system32\services.exe
2015-05-25 15:27:56 ----A---- C:\windows\system32\InkEd.dll
2015-05-25 15:26:30 ----A---- C:\windows\system32\poqexec.exe
2015-05-05 00:26:12 ----D---- C:\windows\Minidump
2015-04-21 13:16:05 ----SD---- C:\windows\system32\GWX
2015-04-18 17:16:51 ----A---- C:\windows\system32\ntoskrnl.exe
2015-04-18 17:16:51 ----A---- C:\windows\system32\ntdll.dll
2015-04-18 17:16:42 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-04-18 17:16:37 ----A---- C:\windows\system32\srcore.dll
2015-04-18 17:16:34 ----A---- C:\windows\system32\rstrui.exe
2015-04-18 17:16:29 ----A---- C:\windows\system32\smss.exe
2015-04-18 17:16:24 ----A---- C:\windows\system32\srclient.dll
2015-04-18 17:16:22 ----A---- C:\windows\system32\csrsrv.dll
2015-04-18 17:16:08 ----A---- C:\windows\system32\apisetschema.dll
2015-04-18 16:47:37 ----A---- C:\windows\system32\appraiser.dll
2015-04-18 16:47:36 ----A---- C:\windows\system32\generaltel.dll
2015-04-18 16:47:36 ----A---- C:\windows\system32\acmigration.dll
2015-04-18 16:47:35 ----A---- C:\windows\system32\aeinv.dll
2015-04-18 16:47:34 ----A---- C:\windows\system32\invagent.dll
2015-04-18 16:47:32 ----A---- C:\windows\system32\devinv.dll
2015-04-18 16:47:16 ----A---- C:\windows\system32\aepdu.dll
2015-04-18 16:47:15 ----A---- C:\windows\system32\aepic.dll
2015-04-18 16:41:29 ----A---- C:\windows\system32\clfs.sys
2015-04-18 16:41:17 ----A---- C:\windows\system32\clfsw32.dll
2015-04-18 16:40:20 ----A---- C:\windows\system32\gdi32.dll
2015-04-18 16:39:48 ----A---- C:\windows\system32\wuapp.exe
2015-04-18 16:39:48 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-04-18 16:39:44 ----A---- C:\windows\system32\wuauclt.exe
2015-04-18 16:39:38 ----A---- C:\windows\system32\wucltux.dll
2015-04-18 16:39:36 ----A---- C:\windows\system32\wups2.dll
2015-04-18 16:39:34 ----A---- C:\windows\system32\wudriver.dll
2015-04-18 16:39:29 ----A---- C:\windows\system32\wups.dll
2015-04-18 16:39:24 ----A---- C:\windows\system32\wuwebv.dll
2015-04-18 16:39:10 ----A---- C:\windows\system32\wuapi.dll
2015-04-18 16:39:08 ----A---- C:\windows\system32\WinSetupUI.dll
2015-04-18 16:38:32 ----A---- C:\windows\system32\wuaueng.dll
2015-04-18 16:36:22 ----A---- C:\windows\system32\drivers\http.sys
2015-04-18 16:22:14 ----A---- C:\windows\system32\msxml3.dll
2015-04-18 16:22:13 ----A---- C:\windows\system32\msxml3r.dll
2015-03-20 00:03:12 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-03-20 00:02:57 ----A---- C:\windows\system32\atmfd.dll
2015-03-20 00:02:54 ----A---- C:\windows\system32\lpk.dll
2015-03-20 00:02:49 ----A---- C:\windows\system32\atmlib.dll
2015-03-20 00:02:48 ----A---- C:\windows\system32\dciman32.dll
2015-03-20 00:02:47 ----A---- C:\windows\system32\fontsub.dll
2015-03-14 17:43:54 ----A---- C:\windows\system32\ubpm.dll
2015-03-14 17:43:52 ----A---- C:\windows\system32\rdpcorets.dll
2015-03-14 17:43:51 ----A---- C:\windows\system32\rdpudd.dll
2015-03-14 17:43:51 ----A---- C:\windows\system32\RdpGroupPolicyExtension.dll
2015-03-14 17:43:49 ----A---- C:\windows\system32\msctf.dll
2015-03-14 17:43:46 ----A---- C:\windows\system32\shell32.dll
2015-03-14 17:34:37 ----A---- C:\windows\system32\blackbox.dll
2015-03-14 17:34:36 ----A---- C:\windows\system32\drmv2clt.dll
2015-03-14 17:34:34 ----A---- C:\windows\system32\wmdrmsdk.dll
2015-03-14 17:34:34 ----A---- C:\windows\system32\mf.dll
2015-03-14 17:34:33 ----A---- C:\windows\system32\wmp.dll
2015-03-14 17:34:27 ----A---- C:\windows\system32\drmmgrtn.dll
2015-03-14 17:34:23 ----A---- C:\windows\system32\drivers\PEAuth.sys
2015-03-14 17:34:23 ----A---- C:\windows\system32\crypt32.dll
2015-03-14 17:34:22 ----A---- C:\windows\system32\evr.dll
2015-03-14 17:34:21 ----A---- C:\windows\system32\quartz.dll
2015-03-14 17:34:20 ----A---- C:\windows\system32\drivers\cng.sys
2015-03-14 17:34:19 ----A---- C:\windows\system32\pcasvc.dll
2015-03-14 17:34:19 ----A---- C:\windows\system32\cryptui.dll
2015-03-14 17:34:18 ----A---- C:\windows\system32\winresume.exe
2015-03-14 17:34:18 ----A---- C:\windows\system32\mfplat.dll
2015-03-14 17:34:15 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-03-14 17:34:15 ----A---- C:\windows\system32\cryptsp.dll
2015-03-14 17:34:13 ----A---- C:\windows\system32\ci.dll
2015-03-14 17:34:10 ----A---- C:\windows\system32\winload.exe
2015-03-14 17:34:06 ----A---- C:\windows\system32\qdvd.dll
2015-03-14 17:34:05 ----A---- C:\windows\system32\wintrust.dll
2015-03-14 17:34:05 ----A---- C:\windows\system32\msscp.dll
2015-03-14 17:34:05 ----A---- C:\windows\system32\cryptnet.dll
2015-03-14 17:34:03 ----A---- C:\windows\system32\audiodg.exe
2015-03-14 17:34:02 ----A---- C:\windows\system32\cryptsvc.dll
2015-03-14 17:34:01 ----A---- C:\windows\system32\msnetobj.dll
2015-03-14 17:34:01 ----A---- C:\windows\system32\audiosrv.dll
2015-03-14 17:33:59 ----A---- C:\windows\system32\appidsvc.dll
2015-03-14 17:33:58 ----A---- C:\windows\system32\AudioEng.dll
2015-03-14 17:33:58 ----A---- C:\windows\system32\appidpolicyconverter.exe
2015-03-14 17:33:57 ----A---- C:\windows\system32\rrinstaller.exe
2015-03-14 17:33:57 ----A---- C:\windows\system32\pcadm.dll
2015-03-14 17:33:56 ----A---- C:\windows\system32\drivers\appid.sys
2015-03-14 17:33:56 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-03-14 17:33:54 ----A---- C:\windows\system32\mfps.dll
2015-03-14 17:33:54 ----A---- C:\windows\system32\appidapi.dll
2015-03-14 17:33:53 ----A---- C:\windows\system32\pcawrk.exe
2015-03-14 17:33:53 ----A---- C:\windows\system32\AudioSes.dll
2015-03-14 17:33:52 ----A---- C:\windows\system32\setbcdlocale.dll
2015-03-14 17:33:52 ----A---- C:\windows\system32\mfpmp.exe
2015-03-14 17:33:51 ----A---- C:\windows\system32\pcalua.exe
2015-03-14 17:33:51 ----A---- C:\windows\system32\msmmsp.dll
2015-03-14 17:33:51 ----A---- C:\windows\system32\EncDump.dll
2015-03-14 17:33:50 ----A---- C:\windows\system32\appidcertstorecheck.exe
2015-03-14 17:33:46 ----A---- C:\windows\system32\spwmp.dll
2015-03-14 17:33:46 ----A---- C:\windows\system32\dxmasf.dll
2015-03-14 17:33:44 ----A---- C:\windows\system32\pcaevts.dll
2015-03-14 17:33:41 ----A---- C:\windows\system32\wmploc.DLL
2015-03-14 17:33:36 ----A---- C:\windows\system32\mferror.dll
2015-03-14 17:32:10 ----A---- C:\windows\system32\WMPhoto.dll
======List of files/folders modified in the last 3 months======
2015-06-09 02:52:57 ----D---- C:\Program Files
2015-06-09 02:51:10 ----D---- C:\windows\Temp
2015-06-09 02:36:14 ----D---- C:\windows\system32\config
2015-06-09 02:31:35 ----D---- C:\Windows
2015-06-09 02:29:30 ----D---- C:\windows\System32
2015-06-09 02:28:56 ----D---- C:\windows\system32\catroot
2015-06-09 02:26:54 ----D---- C:\windows\system32\DriverStore
2015-06-09 02:26:54 ----D---- C:\windows\inf
2015-06-09 02:24:47 ----D---- C:\windows\system32\drivers
2015-06-09 02:24:22 ----D---- C:\windows\system32\catroot2
2015-06-09 02:21:48 ----HD---- C:\ProgramData
2015-06-09 01:54:12 ----SHD---- C:\windows\Installer
2015-06-09 01:53:10 ----SHD---- C:\System Volume Information
2015-06-09 01:30:33 ----D---- C:\windows\debug
2015-06-09 01:05:19 ----D---- C:\ProgramData\Oracle
2015-06-09 00:55:23 ----D---- C:\windows\ModemLogs
2015-06-09 00:52:10 ----D---- C:\Program Files\Java
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files
2015-06-09 00:33:06 ----D---- C:\windows\system32\Tasks
2015-06-08 22:41:11 ----D---- C:\windows\Tasks
2015-06-08 21:15:11 ----D---- C:\windows\Prefetch
2015-06-06 15:12:11 ----D---- C:\Users\Tomáš\AppData\Roaming\.minecraft
2015-06-04 14:06:01 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2015-05-28 17:33:08 ----RD---- C:\Program Files\Skype
2015-05-28 03:02:52 ----D---- C:\windows\winsxs
2015-05-27 14:07:41 ----D---- C:\windows\rescache
2015-05-27 13:38:20 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-27 11:21:18 ----D---- C:\windows\Microsoft.NET
2015-05-27 11:19:38 ----RSD---- C:\windows\assembly
2015-05-26 09:21:59 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 09:20:15 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-26 09:20:13 ----D---- C:\windows\system32\cs-CZ
2015-05-26 09:20:12 ----D---- C:\windows\system32\en-US
2015-05-26 09:20:11 ----D---- C:\Program Files\Internet Explorer
2015-05-26 09:20:09 ----D---- C:\windows\AppPatch
2015-05-26 08:55:59 ----D---- C:\Program Files\Microsoft Security Client
2015-05-26 08:49:54 ----D---- C:\windows\system32\MRT
2015-05-26 08:28:44 ----A---- C:\windows\system32\MRT.exe
2015-04-29 11:41:26 ----D---- C:\windows\AppCompat
2015-04-21 13:22:56 ----D---- C:\windows\Logs
2015-04-21 13:16:33 ----SD---- C:\windows\system32\CompatTel
2015-04-21 13:16:30 ----D---- C:\windows\system32\wbem
2015-04-21 13:16:30 ----D---- C:\windows\system32\appraiser
2015-04-21 13:15:47 ----D---- C:\windows\PolicyDefinitions
2015-04-21 12:59:24 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2015-04-20 13:30:47 ----D---- C:\ProgramData\Skype
2015-04-19 14:51:27 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-04-19 11:12:32 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2015-04-09 14:04:28 ----D---- C:\ProgramData\OnlineUpdate
2015-04-08 20:04:14 ----D---- C:\Program Files\Windows Sidebar
2015-04-08 20:04:14 ----D---- C:\Program Files\Windows Mail
2015-04-08 20:04:13 ----D---- C:\windows\servicing
2015-04-08 20:04:13 ----D---- C:\Program Files\Windows Photo Viewer
2015-04-08 20:04:13 ----D---- C:\Program Files\Windows Media Player
2015-04-08 20:04:13 ----D---- C:\Program Files\Windows Defender
2015-04-08 20:04:13 ----D---- C:\Program Files\DVD Maker
2015-04-08 20:04:13 ----D---- C:\Program Files\Common Files\System
2015-04-08 20:04:12 ----D---- C:\windows\system32\winrm
2015-04-08 20:04:12 ----D---- C:\windows\system32\sysprep
2015-04-08 20:04:12 ----D---- C:\windows\system32\slmgr
2015-04-08 20:04:12 ----D---- C:\windows\system32\sk-SK
2015-04-08 20:04:12 ----D---- C:\windows\system32\oobe
2015-04-08 20:04:12 ----D---- C:\windows\system32\migwiz
2015-04-08 20:04:12 ----D---- C:\windows\system32\en
2015-04-08 20:04:12 ----D---- C:\windows\system32\Boot
2015-04-08 20:04:12 ----D---- C:\windows\en-US
2015-04-08 20:04:05 ----D---- C:\windows\system32\drivers\en-US
2015-04-08 20:03:55 ----D---- C:\windows\system32\WCN
2015-04-08 20:03:55 ----D---- C:\windows\system32\Dism
2015-04-08 20:03:52 ----D---- C:\windows\system32\Printing_Admin_Scripts
2015-04-08 19:44:49 ----D---- C:\windows\IME
2015-04-08 19:44:47 ----D---- C:\windows\system32\migration
2015-04-08 19:44:46 ----D---- C:\windows\system32\XPSViewer
2015-04-08 19:44:45 ----D---- C:\windows\system32\MUI
2015-04-08 19:44:45 ----D---- C:\windows\system32\drivers\UMDF
2015-04-08 19:44:37 ----D---- C:\windows\system32\pl-PL
2015-04-08 19:43:22 ----D---- C:\windows\system32\com
2015-03-24 22:17:40 ----SHD---- C:\Boot
2015-03-24 22:12:39 ----D---- C:\windows\system32\CodeIntegrity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2015-03-04 245096]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 95408]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2012-01-10 2231808]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-10-04 3681000]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-06-30 1353008]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2011-05-14 39272]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2012-01-11 224680]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 22216]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 1713536]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 284504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-19 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-18 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-03-26 91464]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
info.txt
=====
info.txt logfile of random's system information tool 1.10 2015-06-09 02:55:20
======MBR======
0x33C08ED0BC007C8EC08ED8BE007CBF0006B90002FCF3A450681C06CBFBB90400BDBE07807E00007C0B0F850E0183C510E2F1CD1888560055C6461105C6461000B441BBAA55CD135D720F81FB55AA7509F7C101007403FE46106660807E1000742666680000000066FF760868000068007C680100681000B4428A56008BF4CD139F83C4109EEB14B80102BB007C8A56008A76018A4E028A6E03CD136661731CFE4E11750C807E00800F848A00B280EB845532E48A5600CD135DEB9E813EFE7D55AA756EFF7600E88D007517FAB0D1E664E88300B0DFE660E87C00B0FFE664E87500FBB800BBCD1A6623C0753B6681FB54435041753281F90201722C666807BB00006668000200006668080000006653665366556668000000006668007C0000666168000007CD1A5A32F6EA007C0000CD18A0B707EB08A0B607EB03A0B50732E40500078BF0AC3C007409BB0700B40ECD10EBF2F4EBFD2BC9E464EB002402E0F82402C3496E76616C696420706172746974696F6E207461626C65004572726F72206C6F6164696E67206F7065726174696E672073797374656D004D697373696E67206F7065726174696E672073797374656D000000637B9A73D4697F00008020210007FEFFFF000800000000800C00FEFFFF1BFEFFFF0008800C0000E00100FEFFFF07FEFFFF0008600E0060E21600FEFFFFEFFEFFFF006842250080000055AA
======Uninstall list======
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{FE23D063-934D-4829-A0D8-00634CE79B4A}
Adobe Flash Player 17 ActiveX-->C:\windows\system32\Macromed\Flash\FlashUtil32_17_0_0_169_ActiveX.exe -maintain activex
Adobe Reader XI (11.0.10) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
ASUS WebStorage-->C:\Program Files\ASUS\ASUS WebStorage\uninst.exe
AsusScreensaver-->"C:\Program Files\InstallShield Installation Information\{99E77016-BCF2-48C8-9119-43ECF5815F65}\setup.exe" -runfromtemp -l0x0409 -removeonly
ASUSUpdate for Eee PC-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\setup.exe" -l0x9
AsusVibe2.0-->C:\Program Files\Asus\AsusVibe\unins000.exe
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver-->"C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -removeonly
CapsHook-->"C:\Program Files\InstallShield Installation Information\{4B5092B6-F231-4D18-83BC-2618B729CA45}\setup.exe" -runfromtemp -l0x0409 -removeonly
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Eee Docking 3.10.6-->"C:\Program Files\ASUS\Eee Docking\unins000.exe"
Eee Photo-->MsiExec.exe /I{5B808253-331F-4A2E-88C1-DF70C802E5A2}
ExpressGateCloud-->"C:\Program Files\InstallShield Installation Information\{36B0DC39-3282-40EB-8587-B875CE46C3A7}\setup.exe" -runfromtemp -l0x0409 -removeonly
ExpressGateCloud-->MsiExec.exe /X{36B0DC39-3282-40EB-8587-B875CE46C3A7}
FontResizer-->"C:\Program Files\InstallShield Installation Information\{17780F99-A9DF-450B-81B3-6781B20A17A8}\setup.exe" -runfromtemp -l0x0409 -removeonly
FontResizer-->MsiExec.exe /X{17780F99-A9DF-450B-81B3-6781B20A17A8}
Galeria fotografii usługi Windows Live-->MsiExec.exe /X{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}
Google Chrome-->"C:\Program Files\Google\Chrome\Application\43.0.2357.81\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BA9226F4C70BECC2.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hotkey Service-->"C:\Program Files\InstallShield Installation Information\{71C0E38E-09F2-4386-9977-404D4F6640CD}\setup.exe" -runfromtemp -l0x0409 -removeonly
InstantOn for EPC-->MsiExec.exe /I{749F674B-2674-47E8-879C-5626A06B2A91}
Intel(R) Control Center-->C:\Program Files\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel(R) Driver Update Utility 2.0-->MsiExec.exe /X{59DB38EB-F864-4E10-841D-38CFBCF864B0}
Intel(R) Graphics Media Accelerator Driver-->C:\Program Files\Intel\Intel(R) Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel® Driver Update Utility-->"C:\ProgramData\Package Cache\{8409c4f7-2340-4933-a304-5d37db4fb48b}\Intel® Driver Update Utility Installer.exe" /uninstall
Java 8 Update 45-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218045F0}
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
LiveUpdate-->MsiExec.exe /I{38E5A3B1-ADF1-47E0-8024-76310A30EB36}
Mesh Runtime-->MsiExec.exe /I{8C6D6116-B724-4810-8F2D-D047E6B7D68E}
Microsoft .NET Framework 4.5.1 (CSY)-->MsiExec.exe /X{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}
Microsoft .NET Framework 4.5.1 (čeština)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\CSY\\Setup.exe /repair /x86 /lcid 1029
Microsoft .NET Framework 4.5.1 (PLK)-->MsiExec.exe /X{C83B8B35-C2C4-3302-9A6E-C2AF1A59E8D6}
Microsoft .NET Framework 4.5.1 (Polski)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\PLK\\Setup.exe /repair /x86 /lcid 1045
Microsoft .NET Framework 4.5.1-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\\Setup.exe /repair /x86
Microsoft .NET Framework 4.5.1-->MsiExec.exe /X{4903D172-DCCB-392F-93A3-34CA9D47FE3D}
Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{90850405-6000-11D3-8CFE-0150048383C9}
Microsoft PowerPoint Viewer-->MsiExec.exe /X{95140000-00AF-0405-0000-0000000FF1CE}
Microsoft Security Client-->MsiExec.exe /X{6E3939AE-9996-4D07-9A30-14C78AE93576}
Microsoft Security Essentials-->"C:\Program Files\Microsoft Security Client\Setup.exe" /x
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Minecraft 1.4.7 version for Windows-->"C:\Program Files\Minecraft 1.4.7\unins000.exe"
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O2 Internet-->C:\Program Files\O2 Internet\uninst.exe
Poczta usługi Windows Live-->MsiExec.exe /I{64376910-1860-4CEF-8B34-AA5D205FC5F1}
Podstawowe programy Windows Live-->MsiExec.exe /I{7A9D47BA-6D50-4087-866F-0800D8B89383}
Qualcomm Atheros WiFi Driver Installation-->"C:\Program Files\InstallShield Installation Information\{7D916FA5-DAE9-4A25-B089-655C70EAF607}\setup.exe" -runfromtemp -l0x0405 -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe -r -m -nrg2709
Sada Compatibility Pack pro systém Office 2007-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1531A92E-2552-384F-B942-06A5D18DFA13}
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {8086EDC0-3409-3560-B108-44FC46882443}
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {FED9B2BC-E6D7-3409-B4C9-99AF8AC65725}
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {054F96E9-E89B-3DDB-AA70-A65194B921B4}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {CBD8D84A-257A-3A60-9819-5DF166F9CD25}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {4DC3F78D-5CCF-37B9-9A05-EDDC456F4F20}
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {00BE0B8D-C610-34AA-ABD1-EE023DA39E5D}
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1863F765-CBE8-3EB3-B434-CA6B6DF2561E}
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DDE5FB2-7F31-38AB-9407-F5698AD72FE8}
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DFE50DE-BA81-369E-B149-CC3B8AB09405}
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {C7D8B9A9-9C79-3278-A33E-C621DA724830}
Skype Click to Call-->MsiExec.exe /X{6D1221A9-17BF-4EC0-81F2-27D30EC30701}
Skype™ 7.0-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
Super Hybrid Engine-->"C:\Program Files\InstallShield Installation Information\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}\setup.exe" -runfromtemp -l0x0409 -removeonly
Synaptics Pointing Device Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TeamViewer 8-->C:\Program Files\TeamViewer\Version8\uninstall.exe
VLC media player 2.1.3-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}
Windows Live Essentials-->MsiExec.exe /I{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}
Windows Live Essentials-->MsiExec.exe /I{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}
Windows Live Essentials-->MsiExec.exe /I{FEEF7F78-5876-438B-B554-C4CC426A4302}
Windows Live Family Safety-->MsiExec.exe /I{3B8F4A89-57F3-4450-BA1A-BBECFE22D0D0}
Windows Live Family Safety-->MsiExec.exe /I{759142E8-25B0-42AE-B408-4215065D3F4B}
Windows Live Family Safety-->MsiExec.exe /I{91D1305C-ECEB-4B43-9BC6-14D37C4AC695}
Windows Live Family Safety-->MsiExec.exe /I{E8FD15B2-281E-44D8-9FD4-A6D6BEE46702}
Windows Live Family Safety-->MsiExec.exe /I{F4678A65-9095-49E8-B5D9-31A9886C2840}
Windows Live Family Safety-->MsiExec.exe /X{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}
Windows Live Fotogaléria-->MsiExec.exe /X{97F77D62-5110-4FA3-A2D3-410B92D31199}
Windows Live Fotogalerie-->MsiExec.exe /X{FB79FDB7-4DE1-453D-99FE-9A880F57380E}
Windows Live Fotótár-->MsiExec.exe /X{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{C454280F-3C3E-4929-B60E-9E6CED5717E7}
Windows Live Mail-->MsiExec.exe /I{C66824E4-CBB3-4851-BB3F-E8CFD6350923}
Windows Live Mail-->MsiExec.exe /I{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}
Windows Live Mail-->MsiExec.exe /I{FA6CF94F-DACF-4FE7-959D-55C421B91B17}
Windows Live Mesh-->MsiExec.exe /I{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}
Windows Live Mesh-->MsiExec.exe /I{80E8C65A-8F70-4585-88A2-ABC54BABD576}
Windows Live Mesh-->MsiExec.exe /I{A0C91188-C88F-4E86-93E6-CD7C9A266649}
Windows Live Mesh-->MsiExec.exe /I{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}
Windows Live Mesh-->MsiExec.exe /I{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}
Windows Live Mesh-->MsiExec.exe /I{DECDCB7C-58CC-4865-91AF-627F9798FE48}
Windows Live Messenger-->MsiExec.exe /X{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}
Windows Live Messenger-->MsiExec.exe /X{A3389C72-1782-4BB4-BBAA-33345DE52E3F}
Windows Live Messenger-->MsiExec.exe /X{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}
Windows Live Messenger-->MsiExec.exe /X{E5B21F11-6933-4E0B-A25C-7963E3C07D11}
Windows Live Messenger-->MsiExec.exe /X{E9AD2143-26D5-4201-BED1-19DCC03B407D}
Windows Live Messenger-->MsiExec.exe /X{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}
Windows Live MIME IFilter-->MsiExec.exe /I{AF844339-2F8A-4593-81B3-9F4C54038C4E}
Windows Live Movie Maker-->MsiExec.exe /X{19BA08F7-C728-469C-8A35-BFBD3633BE08}
Windows Live Movie Maker-->MsiExec.exe /X{60C3C026-DB53-4DAB-8B97-7C1241F9A847}
Windows Live Movie Maker-->MsiExec.exe /X{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Movie Maker-->MsiExec.exe /X{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}
Windows Live Movie Maker-->MsiExec.exe /X{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}
Windows Live Photo Common-->MsiExec.exe /X{0654EA5D-308A-4196-882B-5C09744A5D81}
Windows Live Photo Common-->MsiExec.exe /X{6F37D92B-41AA-44B7-80D2-457ABDE11896}
Windows Live Photo Common-->MsiExec.exe /X{78906B56-0E81-42A7-AC25-F54C946E1538}
Windows Live Photo Common-->MsiExec.exe /X{84267681-BF16-40B6-9564-27BC57D7D71C}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{D436F577-1695-4D2F-8B44-AC76C99E0002}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live Photo Gallery-->MsiExec.exe /X{34F4D9A4-42C2-4348-BEF4-E553C84549E7}
Windows Live PIMT Platform-->MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}
Windows Live Remote Client Resources-->MsiExec.exe /I{454F5782-A4C3-480E-A629-D435795DEFD8}
Windows Live Remote Client Resources-->MsiExec.exe /I{464B3406-A4D0-4914-910F-7CA4380DCC13}
Windows Live Remote Client Resources-->MsiExec.exe /I{A4C16B19-10AA-4990-AA87-D14F653E3345}
Windows Live Remote Client Resources-->MsiExec.exe /I{C30628D8-D3A0-4F23-90F0-F145808087B6}
Windows Live Remote Client Resources-->MsiExec.exe /I{E1629C45-9CEF-498E-83CD-D6A09CADA176}
Windows Live Remote Client-->MsiExec.exe /I{19A4A990-5343-4FF7-B3B5-6F046C091EDF}
Windows Live Remote Service Resources-->MsiExec.exe /I{0891B708-EF3F-4D7E-9724-265245F46276}
Windows Live Remote Service Resources-->MsiExec.exe /I{17504ED4-DB08-40A8-81C2-27D8C01581DA}
Windows Live Remote Service Resources-->MsiExec.exe /I{201B5096-AF6E-423E-B987-023E040D9B42}
Windows Live Remote Service Resources-->MsiExec.exe /I{41E4FA4B-9376-4C32-AA46-65FCC0087CD5}
Windows Live Remote Service Resources-->MsiExec.exe /I{DEDF8BAB-98D7-4CFA-9C42-27431EC4BD1F}
Windows Live Remote Service-->MsiExec.exe /I{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{09922FFE-D153-44AE-8B60-EA3CB8088F93}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{0C1931EB-8339-4837-8BEC-75029BF42734}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{5E627606-53B9-42D1-97E1-D03F6229E248}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{26E3C07C-7FF7-4362-9E99-9E49E383CF16}
Windows Live Writer Resources-->MsiExec.exe /X{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}
Windows Live Writer Resources-->MsiExec.exe /X{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}
Windows Live Writer Resources-->MsiExec.exe /X{AB78C965-5C67-409B-8433-D7B5BDB12073}
Windows Live Writer Resources-->MsiExec.exe /X{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}
Windows Live Writer-->MsiExec.exe /X{11778DA1-0495-4ED9-972F-F9E0B0367CD5}
Windows Live Writer-->MsiExec.exe /X{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}
Windows Live Writer-->MsiExec.exe /X{4264C020-850B-4F08-ACBE-98205D9C336C}
Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live Writer-->MsiExec.exe /X{AAF454FC-82CA-4F29-AB31-6A109485E76E}
Windows Live Writer-->MsiExec.exe /X{E55E0C35-AC3C-4683-BA2F-834348577B80}
WinThruster-->"C:\Program Files\WinThruster\unins000.exe" /silent
======System event log======
Computer Name: Tomáš-PC
Event Code: 7036
Message: Stav služby Prohledávání počítačů byl změněn na: Spuštěno
Record Number: 37486
Source Name: Service Control Manager
Time Written: 20130815164239.382737-000
Event Type: Informace
User:
Computer Name: Tomáš-PC
Event Code: 7036
Message: Stav služby Prohledávání počítačů byl změněn na: Zastaveno
Record Number: 37485
Source Name: Service Control Manager
Time Written: 20130815164039.514881-000
Event Type: Informace
User:
Computer Name: Tomáš-PC
Event Code: 7036
Message: Stav služby Prohledávání počítačů byl změněn na: Spuštěno
Record Number: 37484
Source Name: Service Control Manager
Time Written: 20130815164033.383530-000
Event Type: Informace
User:
Computer Name: Tomáš-PC
Event Code: 7036
Message: Stav služby Prohledávání počítačů byl změněn na: Zastaveno
Record Number: 37483
Source Name: Service Control Manager
Time Written: 20130815164005.602941-000
Event Type: Informace
User:
Computer Name: Tomáš-PC
Event Code: 7036
Message: Stav služby Prohledávání počítačů byl změněn na: Spuštěno
Record Number: 37482
Source Name: Service Control Manager
Time Written: 20130815163959.391586-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 900
Message: Služba Ochrana softwaru se spouští.
Record Number: 1463
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20120517110700.000000-000
Event Type: Informace
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 903
Message: Služba Ochrana softwaru byla ukončena.
Record Number: 1462
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20120517110533.000000-000
Event Type: Informace
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 1003
Message: Služba Windows Search byla spuštěna.
Record Number: 1461
Source Name: Microsoft-Windows-Search
Time Written: 20120517110448.000000-000
Event Type: Informace
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 1013
Message: Služba Windows Search byla řádně zastavena.
Record Number: 1460
Source Name: Microsoft-Windows-Search
Time Written: 20120517110446.000000-000
Event Type: Informace
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 103
Message: Windows (3496) Windows: Databázový stroj zastavil instanci (0).
Record Number: 1459
Source Name: ESENT
Time Written: 20120517110446.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-GT6Q7QIMH5O$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Typ přihlášení: 5
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x254
Název procesu: C:\Windows\System32\services.exe
Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 5520
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120517110449.107300-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5519
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120517110448.701700-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-GT6Q7QIMH5O$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Typ přihlášení: 5
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x254
Název procesu: C:\Windows\System32\services.exe
Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 5518
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120517110448.701700-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 4738
Message: Byl změněn uživatelský účet.
Předmět:
ID zabezpečení: S-1-5-21-422062866-2153674397-2807220337-500
Název účtu: Administrator
Doména účtu: WIN-GT6Q7QIMH5O
ID přihlášení: 0x31b96
Cílový účet:
ID zabezpečení: S-1-5-21-422062866-2153674397-2807220337-500
Název účtu: Administrator
Doména účtu: WIN-GT6Q7QIMH5O
Změněné atributy:
Název účtu SAM: -
Zobrazovaný název: -
Zaregistrovaný název uživatele: -
Domovský adresář: -
Domovská jednotka: -
Cesta skriptu: -
Cesta profilu: -
Pracovní stanice uživatele: -
Poslední nastavení hesla: -
Vypršení platnosti účtu: -
ID primární skupiny: -
Povolené delegování: -
Původní hodnota UAC: 0x211
Nová hodnota UAC: 0x211
Řízení účtu uživatele: -
Parametry uživatele: -
Historie identifikátoru zabezpečení: -
Přihlašovací hodiny: -
Další informace:
Oprávnění: -
Record Number: 5517
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120517110435.316876-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-GT6Q7QIMH5O
Event Code: 1102
Message: Protokol auditu byl vymazán.
Předmět:
ID zabezpečení: S-1-5-21-422062866-2153674397-2807220337-500
Název účtu: Administrator
Název domény: WIN-GT6Q7QIMH5O
ID přihlášení: 0x31b96
Record Number: 5516
Source Name: Microsoft-Windows-Eventlog
Time Written: 20120517110435.114076-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 54 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=3601
"configsetroot"=%SystemRoot%\ConfigSetRoot
-----------------EOF-----------------
Rkill log
=====
Rkill 2.7.0 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 06/09/2015 03:45:11 AM in x86 mode.
Windows Version: Windows 7 Starter Service Pack 1
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost32.exe (PID: 2056) [UP-HEUR]
* C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost64.exe (PID: 4156) [UP-HEUR]
2 proccesses terminated!
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
* No issues found.
Checking Windows Service Integrity:
* SensrSvc [Missing Service]
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* No issues found.
Program finished at: 06/09/2015 03:50:51 AM
Execution time: 0 hours(s), 5 minute(s), and 39 seconds(s)
ComboFix
======
ComboFix 15-06-09.01 - Tomáš 09.06.2015 4:12.1.4 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1012.234 [GMT 2:00]
Spuštěný z: c:\users\Tomáš\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Disabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost32.exe
c:\users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost64.exe
c:\windows\system32\roboot.exe
c:\windows\system32\Thumbs.db
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-09 do 2015-06-09 )))))))))))))))))))))))))))))))
.
.
2015-06-09 02:26 . 2015-06-09 02:26 -------- d-----w- c:\users\Tomáš\AppData\Local\temp
2015-06-09 02:26 . 2015-06-09 02:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-06-09 01:57 . 2015-06-09 01:57 39464 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1AB1FC36-4BA1-4FB5-8555-EAE07FF0FDC6}\MpKsl2cbd88ee.sys
2015-06-09 00:52 . 2015-06-09 00:55 -------- d-----w- c:\program files\trend micro
2015-06-09 00:52 . 2015-06-09 00:55 -------- d-----w- C:\rsit
2015-06-09 00:32 . 2015-06-09 00:32 62576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1AB1FC36-4BA1-4FB5-8555-EAE07FF0FDC6}\offreg.904.dll
2015-06-09 00:21 . 2015-06-09 00:21 -------- d-----w- c:\programdata\IntelDLM
2015-06-08 23:55 . 2015-06-08 23:55 -------- d-----w- c:\users\Tomáš\AppData\Local\Intel
2015-06-08 23:54 . 2015-06-08 23:54 -------- d-----w- c:\program files\Intel Driver Update Utility
2015-06-08 23:53 . 2015-06-08 23:53 -------- d-----w- c:\programdata\Package Cache
2015-06-08 23:10 . 2015-06-09 00:50 -------- d-----w- C:\Install
2015-06-08 22:51 . 2015-06-08 22:42 96352 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-06-08 22:51 . 2015-05-03 03:42 9265072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1AB1FC36-4BA1-4FB5-8555-EAE07FF0FDC6}\mpengine.dll
2015-06-08 22:49 . 2015-06-08 22:49 -------- d-----w- c:\program files\Common Files\Java
2015-06-08 20:39 . 2015-06-08 20:39 -------- d-----w- c:\users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 20:36 . 2015-06-08 20:36 -------- d-----w- c:\program files\WinThruster
2015-06-07 17:06 . 2015-05-03 03:42 9265072 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-06-06 16:24 . 2015-04-08 09:42 908832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C1D1EDEC-A740-4D26-A30F-900C49C0459E}\gapaengine.dll
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-06-04 12:06 . 2015-06-04 12:06 494606 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
2015-05-26 06:53 . 2015-05-01 13:16 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 13:34 . 2015-04-21 16:16 37888 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub_is.dll
2015-05-25 13:34 . 2015-04-21 16:02 124416 ----a-w- c:\program files\Internet Explorer\Timeline_is.dll
2015-05-25 13:34 . 2015-04-21 15:58 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-05-25 13:34 . 2015-04-21 15:43 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 13:34 . 2015-04-21 16:10 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-05-25 13:34 . 2015-04-21 15:47 174592 ----a-w- c:\program files\Internet Explorer\DiagnosticsTap.dll
2015-05-25 13:34 . 2015-04-21 15:45 230400 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll
2015-05-25 13:34 . 2015-04-21 15:42 153600 ----a-w- c:\program files\Internet Explorer\Timeline.dll
2015-05-25 13:34 . 2015-04-22 01:48 235208 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2015-05-25 13:34 . 2015-04-21 16:14 489472 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2015-05-25 13:31 . 2015-03-04 04:11 5120 ----a-w- c:\windows\system32\shimeng.dll
2015-05-25 13:31 . 2015-03-04 04:10 295936 ----a-w- c:\windows\system32\apphelp.dll
2015-05-25 13:31 . 2015-03-04 04:10 62464 ----a-w- c:\windows\system32\aelupsvc.dll
2015-05-25 13:31 . 2015-03-04 04:10 20992 ----a-w- c:\windows\system32\sdbinst.exe
2015-05-25 13:29 . 2015-04-13 03:19 259072 ----a-w- c:\windows\system32\services.exe
2015-05-25 13:28 . 2015-04-08 03:14 938496 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-05-25 13:27 . 2015-04-08 03:14 1415168 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2015-05-25 13:27 . 2015-04-08 03:14 216064 ----a-w- c:\windows\system32\InkEd.dll
2015-05-25 13:27 . 2015-04-08 03:14 274944 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkDiv.dll
2015-05-25 13:27 . 2015-04-08 03:14 126464 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\rtscom.dll
2015-05-25 13:26 . 2015-02-18 07:06 123904 ----a-w- c:\windows\system32\poqexec.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-06-04 12:06 . 2015-06-04 12:06 494606 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
2015-06-04 12:06 . 2015-06-04 12:06 494606 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
2015-05-05 01:12 . 2015-05-25 13:30 248832 ----a-w- c:\windows\system32\schannel.dll
2015-04-19 12:51 . 2012-05-16 20:48 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-04-19 12:51 . 2012-05-16 20:48 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-04-08 09:42 . 2014-11-11 20:06 908832 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2015-03-25 03:00 . 2015-04-18 14:39 3088384 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:00 . 2015-04-18 14:39 35328 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:00 . 2015-04-18 14:39 92672 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:00 . 2015-04-18 14:39 29696 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:00 . 2015-04-18 14:39 173056 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:00 . 2015-04-18 14:39 566784 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:00 . 2015-04-18 14:38 2020864 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:00 . 2015-04-18 14:39 50176 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:00 . 2015-04-18 14:39 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:00 . 2015-04-18 14:39 33792 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:00 . 2015-04-18 14:39 131584 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-23 03:06 . 2015-04-18 14:47 576000 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:06 . 2015-04-18 14:47 630784 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:06 . 2015-04-18 14:47 331264 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:06 . 2015-04-18 14:47 860160 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:06 . 2015-04-18 14:47 26112 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:06 . 2015-04-18 14:47 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:06 . 2015-04-18 14:47 159744 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 02:59 . 2015-04-18 14:47 896000 ----a-w- c:\windows\system32\aeinv.dll
2015-03-17 05:01 . 2015-04-18 15:16 3920824 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-17 05:01 . 2015-04-18 15:16 3976632 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-03-17 04:59 . 2015-04-18 15:16 1306112 ----a-w- c:\windows\system32\ntdll.dll
2015-03-17 04:57 . 2015-04-18 15:16 400896 ----a-w- c:\windows\system32\srcore.dll
2015-03-17 04:57 . 2015-04-18 15:16 43008 ----a-w- c:\windows\system32\srclient.dll
2015-03-17 04:56 . 2015-04-18 15:16 38912 ----a-w- c:\windows\system32\csrsrv.dll
2015-03-17 04:56 . 2015-04-18 15:16 69632 ----a-w- c:\windows\system32\smss.exe
2015-03-17 04:56 . 2015-04-18 15:16 262656 ----a-w- c:\windows\system32\rstrui.exe
2015-03-17 04:50 . 2015-04-18 15:16 6656 ----a-w- c:\windows\system32\apisetschema.dll
2013-12-25 23:33 . 2013-12-25 23:33 49940480 ----a-w- c:\program files\GUT7DF6.tmp
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"="AsusSender.exe" [2012-01-05 34728]
"HotkeyService"="AsusSender.exe" [2012-01-05 34728]
"SuperHybridEngine"="AsusSender.exe" [2012-01-05 34728]
"LiveUpdate"="AsusSender.exe" [2012-01-05 34728]
"CapsHook"="AsusSender.exe" [2012-01-05 34728]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2011-07-14 417456]
"ASUSWebStorage"="c:\program files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-07-29 737104]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-09-28 11004520]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-06-30 2274600]
"ASUSPRP"="c:\program files\ASUS\APRP\APRP.EXE" [2012-05-16 3331312]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2011-06-30 83240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2015-04-29 981688]
"MSStp"="c:\windows\inf\msstp.vbe" [2014-03-05 1584]
"mncyiiraSrv"="c:\windows\system32\mncyiira.vbe" [2014-03-05 7670]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2015-04-30 334896]
"GfxServiceInstall"="c:\windows\system32\GfxCUIServiceInstall.vbs" [2012-02-27 131]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-12-10 143344]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-12-10 177136]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-12-10 169456]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files\Asus\AsusVibe\AsusVibeLauncher.exe /start [2012-5-16 549040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 O2 Internet. RunOuc;O2 Internet. OUC;c:\program files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2014-12-11 315496]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 95408]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2015-04-29 284504]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 MpKsl2cbd88ee;MpKsl2cbd88ee;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1AB1FC36-4BA1-4FB5-8555-EAE07FF0FDC6}\MpKsl2cbd88ee.sys [2015-06-09 39464]
S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2012-01-11 224680]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
S3 igddim32;igddim32;c:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
S3 igdkmd32;igdkmd32;c:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL2CBD88EE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-25 19:06 986440 ----a-w- c:\program files\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 12:51]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-08 c:\windows\Tasks\WinThruster_DEFAULT.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
2015-06-08 c:\windows\Tasks\WinThruster_UPDATES.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
TCP: DhcpNameServer = 10.0.0.138
TCP: Interfaces\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
TCP: Interfaces\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
TCP: Interfaces\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-06-09 04:31:59
ComboFix-quarantined-files.txt 2015-06-09 02:31
.
Před spuštěním: Volných bajtů: 67 413 217 280
Po spuštění: Volných bajtů: 67 124 596 736
.
- - End Of File - - 695927FDB1EB0238CDAF3D1760A447A0
A36C5E4F47E84449FF07ED3517B43A31
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
ahoj
odinstaluj tento nezmysel Microsoft Security Client
nainstaluj nejaky normalny AV, vycisti nim PC + zvysok docistime
odinstaluj tento nezmysel Microsoft Security Client
nainstaluj nejaky normalny AV, vycisti nim PC + zvysok docistime
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
Tento malý "Eee PC" s Win 7 má 1 GB RAM a po startu je zcela vytížena na 93 - 82 %
HijackThis log
=========
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2015-06-09 23:13:54
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 62 GB (61%) free of 102 GB
Total RAM: 1012 MB (10% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:53, on 9.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\igfxsrvc.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Tomáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
O17 - HKLM\System\CCS\Services\Tcpip\..\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
O17 - HKLM\System\CCS\Services\Tcpip\..\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 7608 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\WinThruster_DEFAULT.job - C:\Program Files\WinThruster\WinThruster.exe -default
C:\windows\tasks\WinThruster_UPDATES.job - C:\Program Files\WinThruster\WinThruster.exe -updatecheck
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-09 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-09 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-09 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-07-14 417456]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-28 11004520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-06-30 2274600]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2012-05-16 3331312]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-06-30 83240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2012-02-27 131]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-10 143344]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-10 177136]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-10 169456]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-09 5515496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-04 224768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-06-09 21:32:17 ----N---- C:\bootsqm.dat
2015-06-09 10:39:55 ----D---- C:\Users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswVmm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswStm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswSP.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswRvrt.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswRdr2.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswHwid.sys
2015-06-09 10:36:46 ----A---- C:\windows\system32\drivers\aswSnx.sys
2015-06-09 10:36:42 ----A---- C:\windows\system32\aswBoot.exe
2015-06-09 10:36:24 ----A---- C:\windows\avastSS.scr
2015-06-09 04:32:14 ----SHD---- C:\$RECYCLE.BIN
2015-06-09 04:32:00 ----A---- C:\ComboFix.txt
2015-06-09 04:09:20 ----A---- C:\windows\zip.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWSC.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWREG.exe
2015-06-09 04:09:20 ----A---- C:\windows\sed.exe
2015-06-09 04:09:20 ----A---- C:\windows\PEV.exe
2015-06-09 04:09:20 ----A---- C:\windows\NIRCMD.exe
2015-06-09 04:09:20 ----A---- C:\windows\MBR.exe
2015-06-09 04:09:20 ----A---- C:\windows\grep.exe
2015-06-09 03:57:53 ----D---- C:\Qoobox
2015-06-09 03:56:57 ----D---- C:\windows\erdnt
2015-06-09 02:52:57 ----D---- C:\Program Files\trend micro
2015-06-09 02:52:53 ----D---- C:\rsit
2015-06-09 02:21:48 ----D---- C:\ProgramData\IntelDLM
2015-06-09 01:54:05 ----D---- C:\Program Files\Intel Driver Update Utility
2015-06-09 01:53:19 ----D---- C:\ProgramData\Package Cache
2015-06-09 01:10:24 ----D---- C:\Install
2015-06-09 00:51:40 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files\Java
2015-06-08 22:39:02 ----D---- C:\Users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 22:36:08 ----D---- C:\Program Files\WinThruster
2015-06-05 12:33:36 ----AS---- C:\windows\system32\lcpmncyiira.exe
2015-06-05 12:33:30 ----D---- C:\windows\system32\bitstreams
2015-06-05 12:33:30 ----AS---- C:\windows\system32\zlib1.dll
2015-06-05 12:33:30 ----AS---- C:\windows\system32\ssleay32.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadVC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadGC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\libssh2.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\librtmp.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libidn-11.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libeay32.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libcurl-4.dll
2015-06-05 12:33:27 ----AS---- C:\windows\system32\cudart32_50_35.dll
2015-06-05 12:33:26 ----D---- C:\Program Files\Minecraft 1.4.7
2015-05-26 08:53:05 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\ieetwcollector.exe
2015-05-25 15:34:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-05-25 15:33:59 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-25 15:33:58 ----A---- C:\windows\system32\iernonce.dll
2015-05-25 15:33:57 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-05-25 15:33:56 ----A---- C:\windows\system32\urlmon.dll
2015-05-25 15:33:56 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-25 15:33:52 ----A---- C:\windows\system32\jsproxy.dll
2015-05-25 15:33:51 ----A---- C:\windows\system32\ieUnatt.exe
2015-05-25 15:33:50 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-25 15:33:49 ----A---- C:\windows\system32\msfeeds.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\msrating.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\iesetup.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\wininet.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-05-25 15:33:38 ----A---- C:\windows\system32\dxtrans.dll
2015-05-25 15:33:37 ----A---- C:\windows\system32\ieui.dll
2015-05-25 15:33:32 ----A---- C:\windows\system32\ieframe.dll
2015-05-25 15:33:26 ----A---- C:\windows\system32\mshtmled.dll
2015-05-25 15:33:24 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-05-25 15:33:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-25 15:33:19 ----A---- C:\windows\system32\iertutil.dll
2015-05-25 15:33:15 ----A---- C:\windows\system32\mshtml.dll
2015-05-25 15:33:10 ----A---- C:\windows\system32\jscript9.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\vbscript.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\jscript.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\shimeng.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\sdbinst.exe
2015-05-25 15:31:07 ----A---- C:\windows\system32\apphelp.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\aelupsvc.dll
2015-05-25 15:30:55 ----A---- C:\windows\system32\wpdshext.dll
2015-05-25 15:30:32 ----A---- C:\windows\system32\FntCache.dll
2015-05-25 15:30:31 ----A---- C:\windows\system32\DWrite.dll
2015-05-25 15:30:29 ----A---- C:\windows\system32\win32k.sys
2015-05-25 15:30:11 ----A---- C:\windows\system32\schannel.dll
2015-05-25 15:30:11 ----A---- C:\windows\system32\lsasrv.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\msv1_0.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\kerberos.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\certcli.dll
2015-05-25 15:30:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-05-25 15:30:08 ----A---- C:\windows\system32\wdigest.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\ncrypt.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-25 15:30:07 ----A---- C:\windows\system32\TSpkg.dll
2015-05-25 15:30:07 ----A---- C:\windows\system32\auditpol.exe
2015-05-25 15:30:06 ----A---- C:\windows\system32\sspicli.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\secur32.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\lsass.exe
2015-05-25 15:30:05 ----A---- C:\windows\system32\sspisrv.dll
2015-05-25 15:30:05 ----A---- C:\windows\system32\credssp.dll
2015-05-25 15:30:04 ----A---- C:\windows\system32\adtschema.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msobjs.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msaudite.dll
2015-05-25 15:29:34 ----A---- C:\windows\system32\services.exe
2015-05-25 15:27:56 ----A---- C:\windows\system32\InkEd.dll
2015-05-25 15:26:30 ----A---- C:\windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2015-06-09 23:14:05 ----D---- C:\windows\Temp
2015-06-09 22:25:10 ----D---- C:\windows\winsxs
2015-06-09 22:23:02 ----D---- C:\windows\system32\catroot2
2015-06-09 21:37:52 ----D---- C:\windows\system32\config
2015-06-09 21:18:45 ----D---- C:\windows\Prefetch
2015-06-09 20:56:11 ----D---- C:\Windows
2015-06-09 20:06:02 ----D---- C:\windows\System32
2015-06-09 11:01:52 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2015-06-09 10:56:27 ----SHD---- C:\windows\Installer
2015-06-09 10:56:27 ----D---- C:\ProgramData\Skype
2015-06-09 10:56:15 ----RD---- C:\Program Files\Skype
2015-06-09 10:51:46 ----D---- C:\windows\inf
2015-06-09 10:50:57 ----D---- C:\Program Files\Common Files\Adobe AIR
2015-06-09 10:49:49 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-06-09 10:49:42 ----SHD---- C:\System Volume Information
2015-06-09 10:37:09 ----D---- C:\windows\system32\Tasks
2015-06-09 10:36:48 ----D---- C:\windows\system32\drivers
2015-06-09 10:33:31 ----D---- C:\ProgramData\AVAST Software
2015-06-09 10:18:00 ----D---- C:\windows\SoftwareDistribution
2015-06-09 10:17:51 ----D---- C:\windows\debug
2015-06-09 09:54:52 ----D---- C:\Program Files
2015-06-09 04:26:51 ----A---- C:\windows\system.ini
2015-06-09 04:26:33 ----D---- C:\windows\system32\drivers\etc
2015-06-09 04:19:46 ----D---- C:\windows\AppPatch
2015-06-09 04:19:41 ----D---- C:\Program Files\Common Files
2015-06-09 02:28:56 ----D---- C:\windows\system32\catroot
2015-06-09 02:26:54 ----D---- C:\windows\system32\DriverStore
2015-06-09 02:21:48 ----D---- C:\ProgramData
2015-06-09 01:05:19 ----D---- C:\ProgramData\Oracle
2015-06-09 00:55:23 ----D---- C:\windows\ModemLogs
2015-06-09 00:54:52 ----D---- C:\windows\Minidump
2015-06-09 00:52:10 ----D---- C:\Program Files\Java
2015-06-08 22:41:11 ----D---- C:\windows\Tasks
2015-06-06 15:12:11 ----D---- C:\Users\Tomáš\AppData\Roaming\.minecraft
2015-06-04 14:06:01 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2015-05-27 14:07:41 ----D---- C:\windows\rescache
2015-05-27 13:38:20 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-27 11:21:18 ----D---- C:\windows\Microsoft.NET
2015-05-27 11:19:38 ----RSD---- C:\windows\assembly
2015-05-26 09:21:59 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 09:20:15 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-26 09:20:13 ----D---- C:\windows\system32\cs-CZ
2015-05-26 09:20:12 ----D---- C:\windows\system32\en-US
2015-05-26 09:20:11 ----D---- C:\Program Files\Internet Explorer
2015-05-26 08:49:54 ----D---- C:\windows\system32\MRT
2015-05-26 08:28:44 ----A---- C:\windows\system32\MRT.exe
2015-05-26 08:17:23 ----SD---- C:\windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-06-09 49904]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-06-09 209048]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-06-09 81728]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2012-01-10 2231808]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-10-04 3681000]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-06-30 1353008]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\TOM~1\AppData\Local\Temp\catchme.sys []
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2011-05-14 39272]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2012-01-11 224680]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-09 343336]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-09 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-18 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-03-26 91464]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
HijackThis log
=========
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2015-06-09 23:13:54
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 62 GB (61%) free of 102 GB
Total RAM: 1012 MB (10% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:15:53, on 9.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\igfxsrvc.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Tomáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
O17 - HKLM\System\CCS\Services\Tcpip\..\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
O17 - HKLM\System\CCS\Services\Tcpip\..\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 7608 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\WinThruster_DEFAULT.job - C:\Program Files\WinThruster\WinThruster.exe -default
C:\windows\tasks\WinThruster_UPDATES.job - C:\Program Files\WinThruster\WinThruster.exe -updatecheck
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-09 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-09 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-09 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-07-14 417456]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-28 11004520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-06-30 2274600]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2012-05-16 3331312]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-06-30 83240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2012-02-27 131]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-10 143344]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-10 177136]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-10 169456]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-09 5515496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-04 224768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-06-09 21:32:17 ----N---- C:\bootsqm.dat
2015-06-09 10:39:55 ----D---- C:\Users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswVmm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswStm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswSP.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswRvrt.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswRdr2.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswHwid.sys
2015-06-09 10:36:46 ----A---- C:\windows\system32\drivers\aswSnx.sys
2015-06-09 10:36:42 ----A---- C:\windows\system32\aswBoot.exe
2015-06-09 10:36:24 ----A---- C:\windows\avastSS.scr
2015-06-09 04:32:14 ----SHD---- C:\$RECYCLE.BIN
2015-06-09 04:32:00 ----A---- C:\ComboFix.txt
2015-06-09 04:09:20 ----A---- C:\windows\zip.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWSC.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWREG.exe
2015-06-09 04:09:20 ----A---- C:\windows\sed.exe
2015-06-09 04:09:20 ----A---- C:\windows\PEV.exe
2015-06-09 04:09:20 ----A---- C:\windows\NIRCMD.exe
2015-06-09 04:09:20 ----A---- C:\windows\MBR.exe
2015-06-09 04:09:20 ----A---- C:\windows\grep.exe
2015-06-09 03:57:53 ----D---- C:\Qoobox
2015-06-09 03:56:57 ----D---- C:\windows\erdnt
2015-06-09 02:52:57 ----D---- C:\Program Files\trend micro
2015-06-09 02:52:53 ----D---- C:\rsit
2015-06-09 02:21:48 ----D---- C:\ProgramData\IntelDLM
2015-06-09 01:54:05 ----D---- C:\Program Files\Intel Driver Update Utility
2015-06-09 01:53:19 ----D---- C:\ProgramData\Package Cache
2015-06-09 01:10:24 ----D---- C:\Install
2015-06-09 00:51:40 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files\Java
2015-06-08 22:39:02 ----D---- C:\Users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 22:36:08 ----D---- C:\Program Files\WinThruster
2015-06-05 12:33:36 ----AS---- C:\windows\system32\lcpmncyiira.exe
2015-06-05 12:33:30 ----D---- C:\windows\system32\bitstreams
2015-06-05 12:33:30 ----AS---- C:\windows\system32\zlib1.dll
2015-06-05 12:33:30 ----AS---- C:\windows\system32\ssleay32.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadVC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadGC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\libssh2.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\librtmp.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libidn-11.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libeay32.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libcurl-4.dll
2015-06-05 12:33:27 ----AS---- C:\windows\system32\cudart32_50_35.dll
2015-06-05 12:33:26 ----D---- C:\Program Files\Minecraft 1.4.7
2015-05-26 08:53:05 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\ieetwcollector.exe
2015-05-25 15:34:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-05-25 15:33:59 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-25 15:33:58 ----A---- C:\windows\system32\iernonce.dll
2015-05-25 15:33:57 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-05-25 15:33:56 ----A---- C:\windows\system32\urlmon.dll
2015-05-25 15:33:56 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-25 15:33:52 ----A---- C:\windows\system32\jsproxy.dll
2015-05-25 15:33:51 ----A---- C:\windows\system32\ieUnatt.exe
2015-05-25 15:33:50 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-25 15:33:49 ----A---- C:\windows\system32\msfeeds.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\msrating.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\iesetup.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\wininet.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-05-25 15:33:38 ----A---- C:\windows\system32\dxtrans.dll
2015-05-25 15:33:37 ----A---- C:\windows\system32\ieui.dll
2015-05-25 15:33:32 ----A---- C:\windows\system32\ieframe.dll
2015-05-25 15:33:26 ----A---- C:\windows\system32\mshtmled.dll
2015-05-25 15:33:24 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-05-25 15:33:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-25 15:33:19 ----A---- C:\windows\system32\iertutil.dll
2015-05-25 15:33:15 ----A---- C:\windows\system32\mshtml.dll
2015-05-25 15:33:10 ----A---- C:\windows\system32\jscript9.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\vbscript.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\jscript.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\shimeng.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\sdbinst.exe
2015-05-25 15:31:07 ----A---- C:\windows\system32\apphelp.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\aelupsvc.dll
2015-05-25 15:30:55 ----A---- C:\windows\system32\wpdshext.dll
2015-05-25 15:30:32 ----A---- C:\windows\system32\FntCache.dll
2015-05-25 15:30:31 ----A---- C:\windows\system32\DWrite.dll
2015-05-25 15:30:29 ----A---- C:\windows\system32\win32k.sys
2015-05-25 15:30:11 ----A---- C:\windows\system32\schannel.dll
2015-05-25 15:30:11 ----A---- C:\windows\system32\lsasrv.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\msv1_0.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\kerberos.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\certcli.dll
2015-05-25 15:30:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-05-25 15:30:08 ----A---- C:\windows\system32\wdigest.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\ncrypt.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-25 15:30:07 ----A---- C:\windows\system32\TSpkg.dll
2015-05-25 15:30:07 ----A---- C:\windows\system32\auditpol.exe
2015-05-25 15:30:06 ----A---- C:\windows\system32\sspicli.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\secur32.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\lsass.exe
2015-05-25 15:30:05 ----A---- C:\windows\system32\sspisrv.dll
2015-05-25 15:30:05 ----A---- C:\windows\system32\credssp.dll
2015-05-25 15:30:04 ----A---- C:\windows\system32\adtschema.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msobjs.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msaudite.dll
2015-05-25 15:29:34 ----A---- C:\windows\system32\services.exe
2015-05-25 15:27:56 ----A---- C:\windows\system32\InkEd.dll
2015-05-25 15:26:30 ----A---- C:\windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2015-06-09 23:14:05 ----D---- C:\windows\Temp
2015-06-09 22:25:10 ----D---- C:\windows\winsxs
2015-06-09 22:23:02 ----D---- C:\windows\system32\catroot2
2015-06-09 21:37:52 ----D---- C:\windows\system32\config
2015-06-09 21:18:45 ----D---- C:\windows\Prefetch
2015-06-09 20:56:11 ----D---- C:\Windows
2015-06-09 20:06:02 ----D---- C:\windows\System32
2015-06-09 11:01:52 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2015-06-09 10:56:27 ----SHD---- C:\windows\Installer
2015-06-09 10:56:27 ----D---- C:\ProgramData\Skype
2015-06-09 10:56:15 ----RD---- C:\Program Files\Skype
2015-06-09 10:51:46 ----D---- C:\windows\inf
2015-06-09 10:50:57 ----D---- C:\Program Files\Common Files\Adobe AIR
2015-06-09 10:49:49 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-06-09 10:49:42 ----SHD---- C:\System Volume Information
2015-06-09 10:37:09 ----D---- C:\windows\system32\Tasks
2015-06-09 10:36:48 ----D---- C:\windows\system32\drivers
2015-06-09 10:33:31 ----D---- C:\ProgramData\AVAST Software
2015-06-09 10:18:00 ----D---- C:\windows\SoftwareDistribution
2015-06-09 10:17:51 ----D---- C:\windows\debug
2015-06-09 09:54:52 ----D---- C:\Program Files
2015-06-09 04:26:51 ----A---- C:\windows\system.ini
2015-06-09 04:26:33 ----D---- C:\windows\system32\drivers\etc
2015-06-09 04:19:46 ----D---- C:\windows\AppPatch
2015-06-09 04:19:41 ----D---- C:\Program Files\Common Files
2015-06-09 02:28:56 ----D---- C:\windows\system32\catroot
2015-06-09 02:26:54 ----D---- C:\windows\system32\DriverStore
2015-06-09 02:21:48 ----D---- C:\ProgramData
2015-06-09 01:05:19 ----D---- C:\ProgramData\Oracle
2015-06-09 00:55:23 ----D---- C:\windows\ModemLogs
2015-06-09 00:54:52 ----D---- C:\windows\Minidump
2015-06-09 00:52:10 ----D---- C:\Program Files\Java
2015-06-08 22:41:11 ----D---- C:\windows\Tasks
2015-06-06 15:12:11 ----D---- C:\Users\Tomáš\AppData\Roaming\.minecraft
2015-06-04 14:06:01 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2015-05-27 14:07:41 ----D---- C:\windows\rescache
2015-05-27 13:38:20 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-27 11:21:18 ----D---- C:\windows\Microsoft.NET
2015-05-27 11:19:38 ----RSD---- C:\windows\assembly
2015-05-26 09:21:59 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 09:20:15 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-26 09:20:13 ----D---- C:\windows\system32\cs-CZ
2015-05-26 09:20:12 ----D---- C:\windows\system32\en-US
2015-05-26 09:20:11 ----D---- C:\Program Files\Internet Explorer
2015-05-26 08:49:54 ----D---- C:\windows\system32\MRT
2015-05-26 08:28:44 ----A---- C:\windows\system32\MRT.exe
2015-05-26 08:17:23 ----SD---- C:\windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-06-09 49904]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-06-09 209048]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-06-09 81728]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2012-01-10 2231808]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-10-04 3681000]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-06-30 1353008]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\TOM~1\AppData\Local\Temp\catchme.sys []
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2011-05-14 39272]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2012-01-11 224680]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-09 343336]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-09 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-18 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-03-26 91464]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
HijackThis log
===========
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2015-06-10 01:59:36
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 62 GB (61%) free of 102 GB
Total RAM: 1012 MB (8% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:02:27, on 10.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal
Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\igfxsrvc.exe
C:\windows\system32\NOTEPAD.EXE
C:\windows\system32\wbem\unsecapp.exe
C:\windows\System32\Notepad.exe
C:\Users\Tomáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe
C:\windows\system32\taskeng.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
O17 - HKLM\System\CCS\Services\Tcpip\..\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
O17 - HKLM\System\CCS\Services\Tcpip\..\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 7191 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-09 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-09 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-09 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-07-14 417456]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-28 11004520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-06-30 2274600]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2012-05-16 3331312]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-06-30 83240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2012-02-27 131]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-10 143344]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-10 177136]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-10 169456]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-09 5515496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-04 224768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-06-10 01:37:11 ----D---- C:\AdwCleaner
2015-06-10 01:33:41 ----SHD---- C:\$RECYCLE.BIN
2015-06-10 01:33:24 ----A---- C:\ComboFix.txt
2015-06-09 21:32:17 ----N---- C:\bootsqm.dat
2015-06-09 10:39:55 ----D---- C:\Users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswVmm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswStm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswSP.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswRvrt.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswRdr2.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswHwid.sys
2015-06-09 10:36:46 ----A---- C:\windows\system32\drivers\aswSnx.sys
2015-06-09 10:36:42 ----A---- C:\windows\system32\aswBoot.exe
2015-06-09 10:36:24 ----A---- C:\windows\avastSS.scr
2015-06-09 04:09:20 ----A---- C:\windows\zip.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWSC.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWREG.exe
2015-06-09 04:09:20 ----A---- C:\windows\sed.exe
2015-06-09 04:09:20 ----A---- C:\windows\PEV.exe
2015-06-09 04:09:20 ----A---- C:\windows\NIRCMD.exe
2015-06-09 04:09:20 ----A---- C:\windows\MBR.exe
2015-06-09 04:09:20 ----A---- C:\windows\grep.exe
2015-06-09 03:57:53 ----D---- C:\Qoobox
2015-06-09 03:56:57 ----D---- C:\windows\erdnt
2015-06-09 02:52:57 ----D---- C:\Program Files\trend micro
2015-06-09 02:52:53 ----D---- C:\rsit
2015-06-09 02:21:48 ----D---- C:\ProgramData\IntelDLM
2015-06-09 01:54:05 ----D---- C:\Program Files\Intel Driver Update Utility
2015-06-09 01:53:19 ----D---- C:\ProgramData\Package Cache
2015-06-09 01:10:24 ----D---- C:\Install
2015-06-09 00:51:40 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files\Java
2015-06-05 12:33:36 ----AS---- C:\windows\system32\lcpmncyiira.exe
2015-06-05 12:33:30 ----D---- C:\windows\system32\bitstreams
2015-06-05 12:33:30 ----AS---- C:\windows\system32\zlib1.dll
2015-06-05 12:33:30 ----AS---- C:\windows\system32\ssleay32.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadVC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadGC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\libssh2.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\librtmp.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libidn-11.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libeay32.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libcurl-4.dll
2015-06-05 12:33:27 ----AS---- C:\windows\system32\cudart32_50_35.dll
2015-06-05 12:33:26 ----D---- C:\Program Files\Minecraft 1.4.7
2015-05-26 08:53:05 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\ieetwcollector.exe
2015-05-25 15:34:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-05-25 15:33:59 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-25 15:33:58 ----A---- C:\windows\system32\iernonce.dll
2015-05-25 15:33:57 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-05-25 15:33:56 ----A---- C:\windows\system32\urlmon.dll
2015-05-25 15:33:56 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-25 15:33:52 ----A---- C:\windows\system32\jsproxy.dll
2015-05-25 15:33:51 ----A---- C:\windows\system32\ieUnatt.exe
2015-05-25 15:33:50 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-25 15:33:49 ----A---- C:\windows\system32\msfeeds.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\msrating.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\iesetup.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\wininet.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-05-25 15:33:38 ----A---- C:\windows\system32\dxtrans.dll
2015-05-25 15:33:37 ----A---- C:\windows\system32\ieui.dll
2015-05-25 15:33:32 ----A---- C:\windows\system32\ieframe.dll
2015-05-25 15:33:26 ----A---- C:\windows\system32\mshtmled.dll
2015-05-25 15:33:24 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-05-25 15:33:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-25 15:33:19 ----A---- C:\windows\system32\iertutil.dll
2015-05-25 15:33:15 ----A---- C:\windows\system32\mshtml.dll
2015-05-25 15:33:10 ----A---- C:\windows\system32\jscript9.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\vbscript.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\jscript.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\shimeng.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\sdbinst.exe
2015-05-25 15:31:07 ----A---- C:\windows\system32\apphelp.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\aelupsvc.dll
2015-05-25 15:30:55 ----A---- C:\windows\system32\wpdshext.dll
2015-05-25 15:30:32 ----A---- C:\windows\system32\FntCache.dll
2015-05-25 15:30:31 ----A---- C:\windows\system32\DWrite.dll
2015-05-25 15:30:29 ----A---- C:\windows\system32\win32k.sys
2015-05-25 15:30:11 ----A---- C:\windows\system32\schannel.dll
2015-05-25 15:30:11 ----A---- C:\windows\system32\lsasrv.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\msv1_0.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\kerberos.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\certcli.dll
2015-05-25 15:30:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-05-25 15:30:08 ----A---- C:\windows\system32\wdigest.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\ncrypt.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-25 15:30:07 ----A---- C:\windows\system32\TSpkg.dll
2015-05-25 15:30:07 ----A---- C:\windows\system32\auditpol.exe
2015-05-25 15:30:06 ----A---- C:\windows\system32\sspicli.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\secur32.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\lsass.exe
2015-05-25 15:30:05 ----A---- C:\windows\system32\sspisrv.dll
2015-05-25 15:30:05 ----A---- C:\windows\system32\credssp.dll
2015-05-25 15:30:04 ----A---- C:\windows\system32\adtschema.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msobjs.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msaudite.dll
2015-05-25 15:29:34 ----A---- C:\windows\system32\services.exe
2015-05-25 15:27:56 ----A---- C:\windows\system32\InkEd.dll
2015-05-25 15:26:30 ----A---- C:\windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2015-06-10 01:51:20 ----D---- C:\windows\Temp
2015-06-10 01:50:23 ----D---- C:\windows\system32\config
2015-06-10 01:45:27 ----D---- C:\Windows
2015-06-10 01:43:04 ----D---- C:\windows\Tasks
2015-06-10 01:43:04 ----D---- C:\windows\system32\Tasks
2015-06-10 01:43:01 ----D---- C:\Program Files
2015-06-10 01:43:00 ----D---- C:\ProgramData
2015-06-10 01:27:40 ----A---- C:\windows\system.ini
2015-06-10 01:17:23 ----D---- C:\windows\system32\drivers
2015-06-10 01:17:23 ----D---- C:\windows\System32
2015-06-10 01:17:23 ----D---- C:\windows\AppPatch
2015-06-10 01:17:15 ----D---- C:\Program Files\Common Files
2015-06-10 00:26:42 ----D---- C:\windows\inf
2015-06-09 22:25:10 ----D---- C:\windows\winsxs
2015-06-09 22:23:02 ----D---- C:\windows\system32\catroot2
2015-06-09 21:18:45 ----D---- C:\windows\Prefetch
2015-06-09 11:01:52 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2015-06-09 10:56:27 ----SHD---- C:\windows\Installer
2015-06-09 10:56:27 ----D---- C:\ProgramData\Skype
2015-06-09 10:56:15 ----RD---- C:\Program Files\Skype
2015-06-09 10:50:57 ----D---- C:\Program Files\Common Files\Adobe AIR
2015-06-09 10:49:49 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-06-09 10:49:42 ----SHD---- C:\System Volume Information
2015-06-09 10:33:31 ----D---- C:\ProgramData\AVAST Software
2015-06-09 10:18:00 ----D---- C:\windows\SoftwareDistribution
2015-06-09 10:17:51 ----D---- C:\windows\debug
2015-06-09 04:26:33 ----D---- C:\windows\system32\drivers\etc
2015-06-09 02:28:56 ----D---- C:\windows\system32\catroot
2015-06-09 02:26:54 ----D---- C:\windows\system32\DriverStore
2015-06-09 01:05:19 ----D---- C:\ProgramData\Oracle
2015-06-09 00:55:23 ----D---- C:\windows\ModemLogs
2015-06-09 00:54:52 ----D---- C:\windows\Minidump
2015-06-09 00:52:10 ----D---- C:\Program Files\Java
2015-06-06 15:12:11 ----D---- C:\Users\Tomáš\AppData\Roaming\.minecraft
2015-06-04 14:06:01 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2015-05-27 14:07:41 ----D---- C:\windows\rescache
2015-05-27 13:38:20 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-27 11:21:18 ----D---- C:\windows\Microsoft.NET
2015-05-27 11:19:38 ----RSD---- C:\windows\assembly
2015-05-26 09:21:59 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 09:20:15 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-26 09:20:13 ----D---- C:\windows\system32\cs-CZ
2015-05-26 09:20:12 ----D---- C:\windows\system32\en-US
2015-05-26 09:20:11 ----D---- C:\Program Files\Internet Explorer
2015-05-26 08:49:54 ----D---- C:\windows\system32\MRT
2015-05-26 08:28:44 ----A---- C:\windows\system32\MRT.exe
2015-05-26 08:17:23 ----SD---- C:\windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-06-09 49904]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-06-09 209048]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-06-09 81728]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2012-01-10 2231808]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-10-04 3681000]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-06-30 1353008]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\TOM~1\AppData\Local\Temp\catchme.sys []
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2011-05-14 39272]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2012-01-11 224680]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-09 343336]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-09 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-18 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-03-26 91464]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
===========
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2015-06-10 01:59:36
Microsoft Windows 7 Starter Service Pack 1
System drive C: has 62 GB (61%) free of 102 GB
Total RAM: 1012 MB (8% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:02:27, on 10.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal
Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\windows\system32\igfxsrvc.exe
C:\windows\system32\NOTEPAD.EXE
C:\windows\system32\wbem\unsecapp.exe
C:\windows\System32\Notepad.exe
C:\Users\Tomáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Tomáš.exe
C:\windows\system32\taskeng.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto
O4 - HKLM\..\Run: [CapsHook] AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] C:\Program Files\ASUS\Eee Docking\Eee Docking.exe autorun
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSPRP] C:\Program Files\ASUS\APRP\APRP.EXE
O4 - HKLM\..\Run: [SynAsusAcpi] %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GfxServiceInstall] C:\windows\system32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
O17 - HKLM\System\CCS\Services\Tcpip\..\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
O17 - HKLM\System\CCS\Services\Tcpip\..\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files\O2 Internet\UpdateDog\ouc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
--
End of file - 7191 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-09 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-09 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-09 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-08 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe []
"HotkeyService"=AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe []
"SuperHybridEngine"=AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe []
"LiveUpdate"=AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
"CapsHook"=AsusSender.exe C:\Program Files\ASUS\CapsHook\CapsHook.exe []
"Eee Docking"=C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [2011-07-14 417456]
"ASUSWebStorage"=C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-09-28 11004520]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-06-30 2274600]
"ASUSPRP"=C:\Program Files\ASUS\APRP\APRP.EXE [2012-05-16 3331312]
"SynAsusAcpi"=C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2011-06-30 83240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"GfxServiceInstall"=C:\windows\system32\GfxCUIServiceInstall.vbs [2012-02-27 131]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-12-10 143344]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-12-10 177136]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-12-10 169456]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-09 5515496]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AsusVibeLauncher.lnk - C:\Program Files\Asus\AsusVibe\AsusVibeLauncher.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-04 224768]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-06-10 01:37:11 ----D---- C:\AdwCleaner
2015-06-10 01:33:41 ----SHD---- C:\$RECYCLE.BIN
2015-06-10 01:33:24 ----A---- C:\ComboFix.txt
2015-06-09 21:32:17 ----N---- C:\bootsqm.dat
2015-06-09 10:39:55 ----D---- C:\Users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswVmm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswStm.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswSP.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswRvrt.sys
2015-06-09 10:36:48 ----A---- C:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswRdr2.sys
2015-06-09 10:36:47 ----A---- C:\windows\system32\drivers\aswHwid.sys
2015-06-09 10:36:46 ----A---- C:\windows\system32\drivers\aswSnx.sys
2015-06-09 10:36:42 ----A---- C:\windows\system32\aswBoot.exe
2015-06-09 10:36:24 ----A---- C:\windows\avastSS.scr
2015-06-09 04:09:20 ----A---- C:\windows\zip.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWSC.exe
2015-06-09 04:09:20 ----A---- C:\windows\SWREG.exe
2015-06-09 04:09:20 ----A---- C:\windows\sed.exe
2015-06-09 04:09:20 ----A---- C:\windows\PEV.exe
2015-06-09 04:09:20 ----A---- C:\windows\NIRCMD.exe
2015-06-09 04:09:20 ----A---- C:\windows\MBR.exe
2015-06-09 04:09:20 ----A---- C:\windows\grep.exe
2015-06-09 03:57:53 ----D---- C:\Qoobox
2015-06-09 03:56:57 ----D---- C:\windows\erdnt
2015-06-09 02:52:57 ----D---- C:\Program Files\trend micro
2015-06-09 02:52:53 ----D---- C:\rsit
2015-06-09 02:21:48 ----D---- C:\ProgramData\IntelDLM
2015-06-09 01:54:05 ----D---- C:\Program Files\Intel Driver Update Utility
2015-06-09 01:53:19 ----D---- C:\ProgramData\Package Cache
2015-06-09 01:10:24 ----D---- C:\Install
2015-06-09 00:51:40 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-06-09 00:49:05 ----D---- C:\Program Files\Common Files\Java
2015-06-05 12:33:36 ----AS---- C:\windows\system32\lcpmncyiira.exe
2015-06-05 12:33:30 ----D---- C:\windows\system32\bitstreams
2015-06-05 12:33:30 ----AS---- C:\windows\system32\zlib1.dll
2015-06-05 12:33:30 ----AS---- C:\windows\system32\ssleay32.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadVC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\pthreadGC2.dll
2015-06-05 12:33:29 ----AS---- C:\windows\system32\libssh2.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\librtmp.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libidn-11.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libeay32.dll
2015-06-05 12:33:28 ----AS---- C:\windows\system32\libcurl-4.dll
2015-06-05 12:33:27 ----AS---- C:\windows\system32\cudart32_50_35.dll
2015-06-05 12:33:26 ----D---- C:\Program Files\Minecraft 1.4.7
2015-05-26 08:53:05 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 15:34:03 ----A---- C:\windows\system32\ieetwcollector.exe
2015-05-25 15:34:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-05-25 15:33:59 ----A---- C:\windows\system32\ie4uinit.exe
2015-05-25 15:33:58 ----A---- C:\windows\system32\iernonce.dll
2015-05-25 15:33:57 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-05-25 15:33:56 ----A---- C:\windows\system32\urlmon.dll
2015-05-25 15:33:56 ----A---- C:\windows\system32\iedkcs32.dll
2015-05-25 15:33:52 ----A---- C:\windows\system32\jsproxy.dll
2015-05-25 15:33:51 ----A---- C:\windows\system32\ieUnatt.exe
2015-05-25 15:33:50 ----A---- C:\windows\system32\jscript9diag.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\ieapfltr.dll
2015-05-25 15:33:50 ----A---- C:\windows\system32\dxtmsft.dll
2015-05-25 15:33:49 ----A---- C:\windows\system32\msfeeds.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\msrating.dll
2015-05-25 15:33:44 ----A---- C:\windows\system32\iesetup.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\wininet.dll
2015-05-25 15:33:42 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-05-25 15:33:38 ----A---- C:\windows\system32\dxtrans.dll
2015-05-25 15:33:37 ----A---- C:\windows\system32\ieui.dll
2015-05-25 15:33:32 ----A---- C:\windows\system32\ieframe.dll
2015-05-25 15:33:26 ----A---- C:\windows\system32\mshtmled.dll
2015-05-25 15:33:24 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-05-25 15:33:22 ----A---- C:\windows\system32\MshtmlDac.dll
2015-05-25 15:33:19 ----A---- C:\windows\system32\iertutil.dll
2015-05-25 15:33:15 ----A---- C:\windows\system32\mshtml.dll
2015-05-25 15:33:10 ----A---- C:\windows\system32\jscript9.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\vbscript.dll
2015-05-25 15:33:09 ----A---- C:\windows\system32\jscript.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\shimeng.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\sdbinst.exe
2015-05-25 15:31:07 ----A---- C:\windows\system32\apphelp.dll
2015-05-25 15:31:07 ----A---- C:\windows\system32\aelupsvc.dll
2015-05-25 15:30:55 ----A---- C:\windows\system32\wpdshext.dll
2015-05-25 15:30:32 ----A---- C:\windows\system32\FntCache.dll
2015-05-25 15:30:31 ----A---- C:\windows\system32\DWrite.dll
2015-05-25 15:30:29 ----A---- C:\windows\system32\win32k.sys
2015-05-25 15:30:11 ----A---- C:\windows\system32\schannel.dll
2015-05-25 15:30:11 ----A---- C:\windows\system32\lsasrv.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\msv1_0.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\kerberos.dll
2015-05-25 15:30:10 ----A---- C:\windows\system32\certcli.dll
2015-05-25 15:30:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-05-25 15:30:08 ----A---- C:\windows\system32\wdigest.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\ncrypt.dll
2015-05-25 15:30:08 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-05-25 15:30:07 ----A---- C:\windows\system32\TSpkg.dll
2015-05-25 15:30:07 ----A---- C:\windows\system32\auditpol.exe
2015-05-25 15:30:06 ----A---- C:\windows\system32\sspicli.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\secur32.dll
2015-05-25 15:30:06 ----A---- C:\windows\system32\lsass.exe
2015-05-25 15:30:05 ----A---- C:\windows\system32\sspisrv.dll
2015-05-25 15:30:05 ----A---- C:\windows\system32\credssp.dll
2015-05-25 15:30:04 ----A---- C:\windows\system32\adtschema.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msobjs.dll
2015-05-25 15:30:03 ----A---- C:\windows\system32\msaudite.dll
2015-05-25 15:29:34 ----A---- C:\windows\system32\services.exe
2015-05-25 15:27:56 ----A---- C:\windows\system32\InkEd.dll
2015-05-25 15:26:30 ----A---- C:\windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2015-06-10 01:51:20 ----D---- C:\windows\Temp
2015-06-10 01:50:23 ----D---- C:\windows\system32\config
2015-06-10 01:45:27 ----D---- C:\Windows
2015-06-10 01:43:04 ----D---- C:\windows\Tasks
2015-06-10 01:43:04 ----D---- C:\windows\system32\Tasks
2015-06-10 01:43:01 ----D---- C:\Program Files
2015-06-10 01:43:00 ----D---- C:\ProgramData
2015-06-10 01:27:40 ----A---- C:\windows\system.ini
2015-06-10 01:17:23 ----D---- C:\windows\system32\drivers
2015-06-10 01:17:23 ----D---- C:\windows\System32
2015-06-10 01:17:23 ----D---- C:\windows\AppPatch
2015-06-10 01:17:15 ----D---- C:\Program Files\Common Files
2015-06-10 00:26:42 ----D---- C:\windows\inf
2015-06-09 22:25:10 ----D---- C:\windows\winsxs
2015-06-09 22:23:02 ----D---- C:\windows\system32\catroot2
2015-06-09 21:18:45 ----D---- C:\windows\Prefetch
2015-06-09 11:01:52 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2015-06-09 10:56:27 ----SHD---- C:\windows\Installer
2015-06-09 10:56:27 ----D---- C:\ProgramData\Skype
2015-06-09 10:56:15 ----RD---- C:\Program Files\Skype
2015-06-09 10:50:57 ----D---- C:\Program Files\Common Files\Adobe AIR
2015-06-09 10:49:49 ----A---- C:\windows\system32\FlashPlayerApp.exe
2015-06-09 10:49:42 ----SHD---- C:\System Volume Information
2015-06-09 10:33:31 ----D---- C:\ProgramData\AVAST Software
2015-06-09 10:18:00 ----D---- C:\windows\SoftwareDistribution
2015-06-09 10:17:51 ----D---- C:\windows\debug
2015-06-09 04:26:33 ----D---- C:\windows\system32\drivers\etc
2015-06-09 02:28:56 ----D---- C:\windows\system32\catroot
2015-06-09 02:26:54 ----D---- C:\windows\system32\DriverStore
2015-06-09 01:05:19 ----D---- C:\ProgramData\Oracle
2015-06-09 00:55:23 ----D---- C:\windows\ModemLogs
2015-06-09 00:54:52 ----D---- C:\windows\Minidump
2015-06-09 00:52:10 ----D---- C:\Program Files\Java
2015-06-06 15:12:11 ----D---- C:\Users\Tomáš\AppData\Roaming\.minecraft
2015-06-04 14:06:01 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2015-05-27 14:07:41 ----D---- C:\windows\rescache
2015-05-27 13:38:20 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-05-27 11:21:18 ----D---- C:\windows\Microsoft.NET
2015-05-27 11:19:38 ----RSD---- C:\windows\assembly
2015-05-26 09:21:59 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 09:20:15 ----D---- C:\windows\system32\AdvancedInstallers
2015-05-26 09:20:13 ----D---- C:\windows\system32\cs-CZ
2015-05-26 09:20:12 ----D---- C:\windows\system32\en-US
2015-05-26 09:20:11 ----D---- C:\Program Files\Internet Explorer
2015-05-26 08:49:54 ----D---- C:\windows\system32\MRT
2015-05-26 08:28:44 ----A---- C:\windows\system32\MRT.exe
2015-05-26 08:17:23 ----SD---- C:\windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-06-09 49904]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-06-09 209048]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsIO;AsIO; C:\windows\system32\drivers\AsIO.sys [2010-06-28 11456]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-06-09 81728]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2012-01-10 2231808]
R3 huawei_enumerator;huawei_enumerator; C:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
R3 igddim32;igddim32; C:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
R3 igdkmd32;igdkmd32; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2011-10-04 3681000]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-06-30 1353008]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 catchme;catchme; \??\C:\Users\TOM~1\AppData\Local\Temp\catchme.sys []
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2011-05-14 39272]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\drivers\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
R2 AsusService;Asus Launcher Service; C:\windows\system32\AsusService.exe [2012-01-11 224680]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-09 343336]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 HWDeviceService.exe;HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-09 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2011-05-14 1492840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-20 107912]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-02-18 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2011-03-26 91464]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 51040]
-----------------EOF-----------------
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
ide stale o ten isty pocitac ?
preco si pouzil ComboFix ? kde je jeho log ?
preco si pouzil ComboFix ? kde je jeho log ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
Stejný PC
Avast našel cosi
C:\Windows\System32\acumncyiira.exe
Win32:BitCoinMiner-GM [PUP]
C:\Qoobox\Quarantine\C\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost32.exe
Win32:PUP-gen [PUP]
C:\Qoobox\Quarantine\C\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost64.exe
Win32:PUP-gen [PUP]
C:\Windows\System32\dcgmncyiira.exe
Win32:PUP-gen [PUP]
C:\Users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
Win32:PUP-gen [PUP]
C:\Users\Tomáš\Music\Minecraft-1.4.7.zip\Minecraft 1.4.7.exe
Inno:BitCCoinMiner-D [Drp]
c:\windows\system32\mncyiira.vbe
VBS:BitCCoinMiner-L [Trj]
c:\windows\inf\msstp.vbe
VBS:Agent-BDB [Trj]
ComboFix
======
ComboFix 15-06-09.01 - Tomáš 10.06.2015 1:06.2.4 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1012.183 [GMT 2:00]
Spuštěný z: c:\users\TomßÜ\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-09 do 2015-06-09 )))))))))))))))))))))))))))))))
.
.
2015-06-09 23:27 . 2015-06-09 23:27 -------- d-----w- c:\users\Tomáš\AppData\Local\temp
2015-06-09 23:27 . 2015-06-09 23:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-06-09 22:48 . 2015-06-09 22:48 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\offreg.3364.dll
2015-06-09 08:57 . 2015-06-09 08:57 -------- d-----w- c:\users\Tomáš\Tracing
2015-06-09 08:39 . 2015-06-09 08:39 -------- d-----w- c:\users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 08:36 . 2015-06-09 08:36 74976 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 08:36 . 2015-06-09 08:36 49904 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-06-09 08:36 . 2015-06-09 08:36 427992 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-06-09 08:36 . 2015-06-09 08:36 209048 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-06-09 08:36 . 2015-06-09 08:36 106912 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-06-09 08:36 . 2015-06-09 08:36 81728 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-06-09 08:36 . 2015-06-09 08:36 24144 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-06-09 08:36 . 2015-06-09 08:36 787760 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-06-09 08:36 . 2015-06-09 08:36 291312 ----a-w- c:\windows\system32\aswBoot.exe
2015-06-09 08:36 . 2015-06-09 08:36 43112 ----a-w- c:\windows\avastSS.scr
2015-06-09 08:07 . 2015-06-09 08:07 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\offreg.15700.dll
2015-06-09 07:56 . 2015-05-18 02:57 9265072 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\mpengine.dll
2015-06-09 00:52 . 2015-06-09 21:14 -------- d-----w- c:\program files\trend micro
2015-06-09 00:52 . 2015-06-09 00:55 -------- d-----w- C:\rsit
2015-06-09 00:21 . 2015-06-09 00:21 -------- d-----w- c:\programdata\IntelDLM
2015-06-08 23:55 . 2015-06-08 23:55 -------- d-----w- c:\users\Tomáš\AppData\Local\Intel
2015-06-08 23:54 . 2015-06-08 23:54 -------- d-----w- c:\program files\Intel Driver Update Utility
2015-06-08 23:53 . 2015-06-08 23:53 -------- d-----w- c:\programdata\Package Cache
2015-06-08 23:10 . 2015-06-09 08:33 -------- d-----w- C:\Install
2015-06-08 22:51 . 2015-06-08 22:42 96352 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-06-08 22:49 . 2015-06-08 22:49 -------- d-----w- c:\program files\Common Files\Java
2015-06-08 20:39 . 2015-06-08 20:39 -------- d-----w- c:\users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 20:36 . 2015-06-08 20:36 -------- d-----w- c:\program files\WinThruster
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-05-26 06:53 . 2015-05-01 13:16 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 13:34 . 2015-04-21 16:16 37888 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub_is.dll
2015-05-25 13:34 . 2015-04-21 16:02 124416 ----a-w- c:\program files\Internet Explorer\Timeline_is.dll
2015-05-25 13:34 . 2015-04-21 15:58 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-05-25 13:34 . 2015-04-21 15:43 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 13:34 . 2015-04-21 16:10 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-05-25 13:34 . 2015-04-21 15:47 174592 ----a-w- c:\program files\Internet Explorer\DiagnosticsTap.dll
2015-05-25 13:34 . 2015-04-21 15:45 230400 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll
2015-05-25 13:34 . 2015-04-21 15:42 153600 ----a-w- c:\program files\Internet Explorer\Timeline.dll
2015-05-25 13:34 . 2015-04-22 01:48 235208 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2015-05-25 13:34 . 2015-04-21 16:14 489472 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2015-05-25 13:31 . 2015-03-04 04:11 5120 ----a-w- c:\windows\system32\shimeng.dll
2015-05-25 13:31 . 2015-03-04 04:10 295936 ----a-w- c:\windows\system32\apphelp.dll
2015-05-25 13:31 . 2015-03-04 04:10 62464 ----a-w- c:\windows\system32\aelupsvc.dll
2015-05-25 13:31 . 2015-03-04 04:10 20992 ----a-w- c:\windows\system32\sdbinst.exe
2015-05-25 13:29 . 2015-04-13 03:19 259072 ----a-w- c:\windows\system32\services.exe
2015-05-25 13:28 . 2015-04-08 03:14 938496 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-05-25 13:27 . 2015-04-08 03:14 1415168 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2015-05-25 13:27 . 2015-04-08 03:14 216064 ----a-w- c:\windows\system32\InkEd.dll
2015-05-25 13:27 . 2015-04-08 03:14 274944 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkDiv.dll
2015-05-25 13:27 . 2015-04-08 03:14 126464 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\rtscom.dll
2015-05-25 13:26 . 2015-02-18 07:06 123904 ----a-w- c:\windows\system32\poqexec.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-09 08:49 . 2012-05-16 20:48 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-06-09 08:49 . 2012-05-16 20:48 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-05-05 01:12 . 2015-05-25 13:30 248832 ----a-w- c:\windows\system32\schannel.dll
2015-03-25 03:00 . 2015-04-18 14:39 3088384 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:00 . 2015-04-18 14:39 35328 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:00 . 2015-04-18 14:39 92672 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:00 . 2015-04-18 14:39 29696 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:00 . 2015-04-18 14:39 173056 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:00 . 2015-04-18 14:39 566784 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:00 . 2015-04-18 14:38 2020864 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:00 . 2015-04-18 14:39 50176 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:00 . 2015-04-18 14:39 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:00 . 2015-04-18 14:39 33792 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:00 . 2015-04-18 14:39 131584 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-23 03:06 . 2015-04-18 14:47 576000 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:06 . 2015-04-18 14:47 630784 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:06 . 2015-04-18 14:47 331264 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:06 . 2015-04-18 14:47 860160 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:06 . 2015-04-18 14:47 26112 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:06 . 2015-04-18 14:47 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:06 . 2015-04-18 14:47 159744 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 02:59 . 2015-04-18 14:47 896000 ----a-w- c:\windows\system32\aeinv.dll
2015-03-17 05:01 . 2015-04-18 15:16 3920824 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-17 05:01 . 2015-04-18 15:16 3976632 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-03-17 04:59 . 2015-04-18 15:16 1306112 ----a-w- c:\windows\system32\ntdll.dll
2015-03-17 04:57 . 2015-04-18 15:16 400896 ----a-w- c:\windows\system32\srcore.dll
2015-03-17 04:57 . 2015-04-18 15:16 43008 ----a-w- c:\windows\system32\srclient.dll
2015-03-17 04:56 . 2015-04-18 15:16 38912 ----a-w- c:\windows\system32\csrsrv.dll
2015-03-17 04:56 . 2015-04-18 15:16 69632 ----a-w- c:\windows\system32\smss.exe
2015-03-17 04:56 . 2015-04-18 15:16 262656 ----a-w- c:\windows\system32\rstrui.exe
2015-03-17 04:50 . 2015-04-18 15:16 6656 ----a-w- c:\windows\system32\apisetschema.dll
2013-12-25 23:33 . 2013-12-25 23:33 49940480 ----a-w- c:\program files\GUT7DF6.tmp
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-06-09 08:36 645144 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"="AsusSender.exe" [2012-01-05 34728]
"HotkeyService"="AsusSender.exe" [2012-01-05 34728]
"SuperHybridEngine"="AsusSender.exe" [2012-01-05 34728]
"LiveUpdate"="AsusSender.exe" [2012-01-05 34728]
"CapsHook"="AsusSender.exe" [2012-01-05 34728]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2011-07-14 417456]
"ASUSWebStorage"="c:\program files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-07-29 737104]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-09-28 11004520]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-06-30 2274600]
"ASUSPRP"="c:\program files\ASUS\APRP\APRP.EXE" [2012-05-16 3331312]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2011-06-30 83240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2015-04-30 334896]
"GfxServiceInstall"="c:\windows\system32\GfxCUIServiceInstall.vbs" [2012-02-27 131]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-12-10 143344]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-12-10 177136]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-12-10 169456]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-06-09 5515496]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files\Asus\AsusVibe\AsusVibeLauncher.exe /start [2012-5-16 549040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 O2 Internet. RunOuc;O2 Internet. OUC;c:\program files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2015-02-18 315488]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2012-01-11 224680]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
S3 igddim32;igddim32;c:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
S3 igdkmd32;igdkmd32;c:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-25 19:06 986440 ----a-w- c:\program files\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 08:49]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-08 c:\windows\Tasks\WinThruster_DEFAULT.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
2015-06-08 c:\windows\Tasks\WinThruster_UPDATES.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
TCP: DhcpNameServer = 10.0.0.138
TCP: Interfaces\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
TCP: Interfaces\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
TCP: Interfaces\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-06-10 01:33:23
ComboFix-quarantined-files.txt 2015-06-09 23:33
ComboFix2.txt 2015-06-09 02:32
.
Před spuštěním: Volných bajtů: 64 603 541 504
Po spuštění: Volných bajtů: 64 507 871 232
.
- - End Of File - - 2C800DAFC3E457221188484F6F4D0E91
A36C5E4F47E84449FF07ED3517B43A31
Avast našel cosi
C:\Windows\System32\acumncyiira.exe
Win32:BitCoinMiner-GM [PUP]
C:\Qoobox\Quarantine\C\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost32.exe
Win32:PUP-gen [PUP]
C:\Qoobox\Quarantine\C\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\conhost64.exe
Win32:PUP-gen [PUP]
C:\Windows\System32\dcgmncyiira.exe
Win32:PUP-gen [PUP]
C:\Users\Tomáš\AppData\Roaming\Microsoft\Networking\inet32upd.exe
Win32:PUP-gen [PUP]
C:\Users\Tomáš\Music\Minecraft-1.4.7.zip\Minecraft 1.4.7.exe
Inno:BitCCoinMiner-D [Drp]
c:\windows\system32\mncyiira.vbe
VBS:BitCCoinMiner-L [Trj]
c:\windows\inf\msstp.vbe
VBS:Agent-BDB [Trj]
ComboFix
======
ComboFix 15-06-09.01 - Tomáš 10.06.2015 1:06.2.4 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1250.420.1029.18.1012.183 [GMT 2:00]
Spuštěný z: c:\users\TomßÜ\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-09 do 2015-06-09 )))))))))))))))))))))))))))))))
.
.
2015-06-09 23:27 . 2015-06-09 23:27 -------- d-----w- c:\users\Tomáš\AppData\Local\temp
2015-06-09 23:27 . 2015-06-09 23:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-06-09 22:48 . 2015-06-09 22:48 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\offreg.3364.dll
2015-06-09 08:57 . 2015-06-09 08:57 -------- d-----w- c:\users\Tomáš\Tracing
2015-06-09 08:39 . 2015-06-09 08:39 -------- d-----w- c:\users\Tomáš\AppData\Roaming\AVAST Software
2015-06-09 08:36 . 2015-06-09 08:36 74976 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-06-09 08:36 . 2015-06-09 08:36 49904 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-06-09 08:36 . 2015-06-09 08:36 427992 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-06-09 08:36 . 2015-06-09 08:36 209048 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-06-09 08:36 . 2015-06-09 08:36 106912 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-06-09 08:36 . 2015-06-09 08:36 81728 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-06-09 08:36 . 2015-06-09 08:36 24144 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-06-09 08:36 . 2015-06-09 08:36 787760 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-06-09 08:36 . 2015-06-09 08:36 291312 ----a-w- c:\windows\system32\aswBoot.exe
2015-06-09 08:36 . 2015-06-09 08:36 43112 ----a-w- c:\windows\avastSS.scr
2015-06-09 08:07 . 2015-06-09 08:07 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\offreg.15700.dll
2015-06-09 07:56 . 2015-05-18 02:57 9265072 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D7AC2055-A465-4821-A3A2-DA7C79CCA026}\mpengine.dll
2015-06-09 00:52 . 2015-06-09 21:14 -------- d-----w- c:\program files\trend micro
2015-06-09 00:52 . 2015-06-09 00:55 -------- d-----w- C:\rsit
2015-06-09 00:21 . 2015-06-09 00:21 -------- d-----w- c:\programdata\IntelDLM
2015-06-08 23:55 . 2015-06-08 23:55 -------- d-----w- c:\users\Tomáš\AppData\Local\Intel
2015-06-08 23:54 . 2015-06-08 23:54 -------- d-----w- c:\program files\Intel Driver Update Utility
2015-06-08 23:53 . 2015-06-08 23:53 -------- d-----w- c:\programdata\Package Cache
2015-06-08 23:10 . 2015-06-09 08:33 -------- d-----w- C:\Install
2015-06-08 22:51 . 2015-06-08 22:42 96352 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-06-08 22:49 . 2015-06-08 22:49 -------- d-----w- c:\program files\Common Files\Java
2015-06-08 20:39 . 2015-06-08 20:39 -------- d-----w- c:\users\Tomáš\AppData\Roaming\Solvusoft
2015-06-08 20:36 . 2015-06-08 20:36 -------- d-----w- c:\program files\WinThruster
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-05-26 06:53 . 2015-05-01 13:16 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-25 13:34 . 2015-04-21 16:16 37888 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub_is.dll
2015-05-25 13:34 . 2015-04-21 16:02 124416 ----a-w- c:\program files\Internet Explorer\Timeline_is.dll
2015-05-25 13:34 . 2015-04-21 15:58 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-05-25 13:34 . 2015-04-21 15:43 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-25 13:34 . 2015-04-21 16:10 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-05-25 13:34 . 2015-04-21 15:47 174592 ----a-w- c:\program files\Internet Explorer\DiagnosticsTap.dll
2015-05-25 13:34 . 2015-04-21 15:45 230400 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.ScriptedSandboxPlugin.dll
2015-05-25 13:34 . 2015-04-21 15:42 153600 ----a-w- c:\program files\Internet Explorer\Timeline.dll
2015-05-25 13:34 . 2015-04-22 01:48 235208 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2015-05-25 13:34 . 2015-04-21 16:14 489472 ----a-w- c:\program files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2015-05-25 13:31 . 2015-03-04 04:11 5120 ----a-w- c:\windows\system32\shimeng.dll
2015-05-25 13:31 . 2015-03-04 04:10 295936 ----a-w- c:\windows\system32\apphelp.dll
2015-05-25 13:31 . 2015-03-04 04:10 62464 ----a-w- c:\windows\system32\aelupsvc.dll
2015-05-25 13:31 . 2015-03-04 04:10 20992 ----a-w- c:\windows\system32\sdbinst.exe
2015-05-25 13:29 . 2015-04-13 03:19 259072 ----a-w- c:\windows\system32\services.exe
2015-05-25 13:28 . 2015-04-08 03:14 938496 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-05-25 13:27 . 2015-04-08 03:14 1415168 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2015-05-25 13:27 . 2015-04-08 03:14 216064 ----a-w- c:\windows\system32\InkEd.dll
2015-05-25 13:27 . 2015-04-08 03:14 274944 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkDiv.dll
2015-05-25 13:27 . 2015-04-08 03:14 126464 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\rtscom.dll
2015-05-25 13:26 . 2015-02-18 07:06 123904 ----a-w- c:\windows\system32\poqexec.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-09 08:49 . 2012-05-16 20:48 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-06-09 08:49 . 2012-05-16 20:48 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 279955 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libidn-11.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 148760 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libpdcurses.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 112142 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libgcc_s_dw2-1.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 1704448 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libeay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 626176 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\libcurl.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 364544 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\ssleay32.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 131598 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\zlib1.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 119704 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\pthreadGC2.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 963232 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\msvcr120.dll
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-06-04 12:06 . 2015-06-04 12:06 2418688 ----a-w- c:\users\Tomáš\AppData\Roaming\Microsoft\Networking\winnet32b.exe
2015-05-05 01:12 . 2015-05-25 13:30 248832 ----a-w- c:\windows\system32\schannel.dll
2015-03-25 03:00 . 2015-04-18 14:39 3088384 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:00 . 2015-04-18 14:39 35328 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:00 . 2015-04-18 14:39 92672 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:00 . 2015-04-18 14:39 29696 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:00 . 2015-04-18 14:39 173056 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:00 . 2015-04-18 14:39 566784 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:00 . 2015-04-18 14:38 2020864 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:00 . 2015-04-18 14:39 50176 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:00 . 2015-04-18 14:39 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:00 . 2015-04-18 14:39 33792 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:00 . 2015-04-18 14:39 131584 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-23 03:06 . 2015-04-18 14:47 576000 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:06 . 2015-04-18 14:47 630784 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:06 . 2015-04-18 14:47 331264 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:06 . 2015-04-18 14:47 860160 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:06 . 2015-04-18 14:47 26112 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:06 . 2015-04-18 14:47 202752 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:06 . 2015-04-18 14:47 159744 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 02:59 . 2015-04-18 14:47 896000 ----a-w- c:\windows\system32\aeinv.dll
2015-03-17 05:01 . 2015-04-18 15:16 3920824 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-17 05:01 . 2015-04-18 15:16 3976632 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-03-17 04:59 . 2015-04-18 15:16 1306112 ----a-w- c:\windows\system32\ntdll.dll
2015-03-17 04:57 . 2015-04-18 15:16 400896 ----a-w- c:\windows\system32\srcore.dll
2015-03-17 04:57 . 2015-04-18 15:16 43008 ----a-w- c:\windows\system32\srclient.dll
2015-03-17 04:56 . 2015-04-18 15:16 38912 ----a-w- c:\windows\system32\csrsrv.dll
2015-03-17 04:56 . 2015-04-18 15:16 69632 ----a-w- c:\windows\system32\smss.exe
2015-03-17 04:56 . 2015-04-18 15:16 262656 ----a-w- c:\windows\system32\rstrui.exe
2015-03-17 04:50 . 2015-04-18 15:16 6656 ----a-w- c:\windows\system32\apisetschema.dll
2013-12-25 23:33 . 2013-12-25 23:33 49940480 ----a-w- c:\program files\GUT7DF6.tmp
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-06-09 08:36 645144 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HotkeyMon"="AsusSender.exe" [2012-01-05 34728]
"HotkeyService"="AsusSender.exe" [2012-01-05 34728]
"SuperHybridEngine"="AsusSender.exe" [2012-01-05 34728]
"LiveUpdate"="AsusSender.exe" [2012-01-05 34728]
"CapsHook"="AsusSender.exe" [2012-01-05 34728]
"Eee Docking"="c:\program files\ASUS\Eee Docking\Eee Docking.exe" [2011-07-14 417456]
"ASUSWebStorage"="c:\program files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-07-29 737104]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-09-28 11004520]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-06-30 2274600]
"ASUSPRP"="c:\program files\ASUS\APRP\APRP.EXE" [2012-05-16 3331312]
"SynAsusAcpi"="c:\program files\Synaptics\SynTP\SynAsusAcpi.exe" [2011-06-30 83240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2015-04-30 334896]
"GfxServiceInstall"="c:\windows\system32\GfxCUIServiceInstall.vbs" [2012-02-27 131]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-12-10 143344]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-12-10 177136]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-12-10 169456]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-06-09 5515496]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files\Asus\AsusVibe\AsusVibeLauncher.exe /start [2012-5-16 549040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-06-09 106912]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2011-03-14 271712]
R2 O2 Internet. RunOuc;O2 Internet. OUC;c:\program files\O2 Internet\UpdateDog\ouc.exe [2012-11-12 657504]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2015-02-18 315488]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-01-25 97408]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-01-23 27776]
R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys [2013-02-17 207360]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-04-21 102912]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-06-09 787760]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-06-09 427992]
S2 ASUS InstantOn;ASUS InstantOn Service;c:\program files\ASUS\InstantOn for EPC\InsOnSrv.exe [2011-12-01 92800]
S2 AsusService;Asus Launcher Service;c:\windows\system32\AsusService.exe [2012-01-11 224680]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-06-09 24144]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-06-09 74976]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2014-08-04 5095264]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-01-23 77696]
S3 igddim32;igddim32;c:\windows\system32\DRIVERS\igddim32.sys [2013-11-04 1349632]
S3 igdkmd32;igdkmd32;c:\windows\system32\DRIVERS\igdkmd32.sys [2013-11-04 435200]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-06-09 278528]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-11-01 91760]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-25 19:06 986440 ----a-w- c:\program files\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 08:49]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-18 17:23]
.
2015-06-08 c:\windows\Tasks\WinThruster_DEFAULT.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
2015-06-08 c:\windows\Tasks\WinThruster_UPDATES.job
- c:\program files\WinThruster\WinThruster.exe [2015-06-08 15:02]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com/
TCP: DhcpNameServer = 10.0.0.138
TCP: Interfaces\{31A02E23-DEF0-4A81-9B6A-4F771730B187}: NameServer = 10.168.38.30 10.168.38.30
TCP: Interfaces\{45D67643-C622-4915-A6C5-C2AA6F75875E}: NameServer = 10.168.38.53 10.168.38.53
TCP: Interfaces\{86CAAAE7-F060-4569-890A-E803FD09C39E}: NameServer = 10.168.38.30 10.168.38.30
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-06-10 01:33:23
ComboFix-quarantined-files.txt 2015-06-09 23:33
ComboFix2.txt 2015-06-09 02:32
.
Před spuštěním: Volných bajtů: 64 603 541 504
Po spuštění: Volných bajtů: 64 507 871 232
.
- - End Of File - - 2C800DAFC3E457221188484F6F4D0E91
A36C5E4F47E84449FF07ED3517B43A31
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
dufam, ze dal vsetko co nasiel AVAST zmazat
+
vykonaj uplnu kontrolu s MBAM
+
vykonaj uplnu kontrolu s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
AVAST to dal při bootu při testu do truhly a smazat to lze.
MBAM našel a smazal
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 10.6.2015
Čas skenování: 20:30:30
Protokol: MBAM.TXT
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.06.10.05
Databáze rootkitů: v2015.06.02.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: TomA!A!
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 324574
Uplynulý čas: 55 min, 40 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
PUP.BitCoinMiner, C:\Windows\System32\lcpmncyiira.exe, , [c84540792763f5414d1c5aebc33e7c84],
PUP.Optional.RegCleanerPro, C:\Users\TomA!A!\Downloads\rcpsetup_softonic_englobal.exe, , [7c91437615754fe72f2e043e659ce11f],
PUP.Optional.BitCoinMiner.A, C:\Users\TomA!A!\AppData\Roaming\Microsoft\Networking\winnet32b.exe, , [49c41d9c602a16201d91dda9f015b34d],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
MBAM našel a smazal
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 10.6.2015
Čas skenování: 20:30:30
Protokol: MBAM.TXT
Správce: Ano
Verze: 2.01.6.1022
Databáze malwaru: v2015.06.10.05
Databáze rootkitů: v2015.06.02.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: TomA!A!
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 324574
Uplynulý čas: 55 min, 40 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 3
PUP.BitCoinMiner, C:\Windows\System32\lcpmncyiira.exe, , [c84540792763f5414d1c5aebc33e7c84],
PUP.Optional.RegCleanerPro, C:\Users\TomA!A!\Downloads\rcpsetup_softonic_englobal.exe, , [7c91437615754fe72f2e043e659ce11f],
PUP.Optional.BitCoinMiner.A, C:\Users\TomA!A!\AppData\Roaming\Microsoft\Networking\winnet32b.exe, , [49c41d9c602a16201d91dda9f015b34d],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
vyyyborne, MBAM mozes odinstalovat a mame hotovo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
jaromir.zavrel
- Návštěvník
- Příspěvky: 6
- Registrován: 09 čer 2015 07:35
Re: Při startu Inet32upd.exe hlásí chybějící OpenCL.dll
za malo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?