Dobrý den, pokud někdo bude tak hodnej a mohl by mě mrknout na tenhle log. Před pár dny chytl nějakou potvoru (klasika menici uvodni stranku v prohlizeci) ta se snad povedla odstranit, nicmene od te doby je pocitac zpomalenej. Díky : )
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lucka at 2015-08-22 10:29:40
Microsoft Windows 8.1
System drive C: has 323 GB (85%) free of 382 GB
Total RAM: 8078 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:29:53, on 22. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Lucka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\mcieplg.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 9948 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
dashost.exe {9cc900bc-1b78-4fb8-8012257dbaa96faf}
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
"C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe"
"C:\Windows\system32\mfevtps.exe"
"C:\Windows\system32\mfevtps.exe" -mms
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" -mms
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
taskhostex.exe
KBFiltr.exe
C:\Windows\Explorer.EXE
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="376.0.733290068\153055936" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,22,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3925 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_22/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="376.2.1376928664\928030407" --font-cache-shared-handle=2376 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_22/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="376.3.1448524444\2016044562" --font-cache-shared-handle=2316 /prefetch:673131151
C:\Windows\system32\cmd.exe /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ < \\.\pipe\chrome.nativeMessaging.in.58ce31413062f6c8 > \\.\pipe\chrome.nativeMessaging.out.58ce31413062f6c8
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/
/S
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_22/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="376.7.408610836\780583263" --font-cache-shared-handle=3552 /prefetch:673131151
taskeng.exe {CBBE7C05-974A-48C4-9F39-E75E8EA22D29}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_22/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_19/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="376.9.1008330449\1887247712" --font-cache-shared-handle=6004 /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Lucka.Erin\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2014-09-29 134784]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe [2014-08-20 63296]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2014-09-29 134784]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-22 10:29:40 ----D---- C:\rsit
2015-08-22 10:29:40 ----D---- C:\Program Files\trend micro
2015-08-22 10:13:30 ----D---- C:\Program Files (x86)\OpenOffice 4
2015-08-21 21:18:40 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\Mozilla
2015-08-21 21:18:37 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\Thunderbird
2015-08-21 21:15:52 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-21 21:15:41 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2015-08-20 21:46:39 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-20 21:37:54 ----SD---- C:\Windows\system32\CompatTel
2015-08-20 21:37:54 ----D---- C:\Windows\system32\appraiser
2015-08-20 21:37:47 ----SD---- C:\Windows\SYSWOW64\GWX
2015-08-20 21:37:47 ----D---- C:\Windows\Migration
2015-08-20 21:37:46 ----SD---- C:\Windows\system32\GWX
2015-08-20 21:28:00 ----A---- C:\Windows\system32\MRT.exe
2015-08-20 03:29:46 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-08-20 03:29:46 ----A---- C:\Windows\system32\scesrv.dll
2015-08-20 03:29:43 ----A---- C:\Windows\system32\ncryptsslp.dll
2015-08-20 03:29:42 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2015-08-20 03:29:23 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-08-20 03:29:23 ----A---- C:\Windows\system32\msctf.dll
2015-08-20 03:29:22 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-08-20 03:29:22 ----A---- C:\Windows\system32\dwmcore.dll
2015-08-20 03:29:21 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-08-20 03:29:21 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-08-20 03:29:17 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2015-08-20 03:29:17 ----A---- C:\Windows\system32\photowiz.dll
2015-08-20 03:29:13 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-20 03:29:13 ----A---- C:\Windows\system32\schannel.dll
2015-08-20 03:29:12 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2015-08-20 03:29:12 ----A---- C:\Windows\system32\win32spl.dll
2015-08-20 03:29:12 ----A---- C:\Windows\system32\localspl.dll
2015-08-20 03:29:12 ----A---- C:\Windows\system32\DafPrintProvider.dll
2015-08-20 03:29:11 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2015-08-20 03:29:11 ----A---- C:\Windows\SYSWOW64\puiapi.dll
2015-08-20 03:29:11 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2015-08-20 03:29:11 ----A---- C:\Windows\SYSWOW64\findnetprinters.dll
2015-08-20 03:29:11 ----A---- C:\Windows\SYSWOW64\compstui.dll
2015-08-20 03:29:11 ----A---- C:\Windows\system32\puiobj.dll
2015-08-20 03:29:11 ----A---- C:\Windows\system32\puiapi.dll
2015-08-20 03:29:11 ----A---- C:\Windows\system32\prnntfy.dll
2015-08-20 03:29:11 ----A---- C:\Windows\system32\findnetprinters.dll
2015-08-20 03:29:11 ----A---- C:\Windows\system32\compstui.dll
2015-08-20 03:29:10 ----A---- C:\Windows\SYSWOW64\printui.exe
2015-08-20 03:29:10 ----A---- C:\Windows\system32\printui.exe
2015-08-20 03:29:09 ----A---- C:\Windows\system32\SystemSettingsDatabase.dll
2015-08-20 03:29:09 ----A---- C:\Windows\system32\SettingsHandlers.dll
2015-08-20 03:29:08 ----A---- C:\Windows\system32\drivers\ahcache.sys
2015-08-20 03:29:07 ----A---- C:\Windows\SYSWOW64\Windows.UI.Input.Inking.dll
2015-08-20 03:29:07 ----A---- C:\Windows\SYSWOW64\uniplat.dll
2015-08-20 03:29:07 ----A---- C:\Windows\SYSWOW64\unimdmat.dll
2015-08-20 03:29:07 ----A---- C:\Windows\SYSWOW64\rastapi.dll
2015-08-20 03:29:07 ----A---- C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-08-20 03:29:07 ----A---- C:\Windows\system32\uniplat.dll
2015-08-20 03:29:07 ----A---- C:\Windows\system32\unimdmat.dll
2015-08-20 03:29:07 ----A---- C:\Windows\system32\rastapi.dll
2015-08-20 03:29:07 ----A---- C:\Windows\system32\drivers\rootmdm.sys
2015-08-20 03:29:06 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-20 03:29:05 ----A---- C:\Windows\system32\shell32.dll
2015-08-20 03:29:04 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-08-20 03:29:03 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-08-20 03:28:48 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-08-20 03:28:48 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-08-20 03:28:47 ----A---- C:\Windows\SYSWOW64\GlobCollationHost.dll
2015-08-20 03:28:47 ----A---- C:\Windows\system32\GlobCollationHost.dll
2015-08-20 03:28:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-20 03:28:37 ----A---- C:\Windows\system32\iertutil.dll
2015-08-20 03:28:37 ----A---- C:\Windows\system32\actxprxy.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-20 03:28:36 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-08-20 03:28:36 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-20 03:28:36 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-20 03:28:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-20 03:28:35 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-20 03:28:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-20 03:28:34 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-20 03:28:34 ----A---- C:\Windows\system32\urlmon.dll
2015-08-20 03:28:34 ----A---- C:\Windows\system32\occache.dll
2015-08-20 03:28:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-20 03:28:34 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-20 03:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-20 03:28:33 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-20 03:28:32 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-20 03:28:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-20 03:28:31 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-20 03:28:31 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-20 03:28:31 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-20 03:28:31 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-20 03:28:30 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-20 03:28:30 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-20 03:28:30 ----A---- C:\Windows\system32\jscript9.dll
2015-08-20 03:28:30 ----A---- C:\Windows\system32\ieframe.dll
2015-08-20 03:28:29 ----A---- C:\Windows\system32\wininet.dll
2015-08-20 03:28:29 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-20 03:28:29 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-20 03:28:28 ----A---- C:\Windows\system32\mshtml.dll
2015-08-20 03:28:26 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-20 03:28:26 ----A---- C:\Windows\system32\inetcomm.dll
2015-08-20 03:28:26 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-20 03:28:25 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-20 03:28:25 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-20 03:28:25 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-08-20 03:28:25 ----A---- C:\Windows\system32\vbscript.dll
2015-08-20 03:28:25 ----A---- C:\Windows\system32\jscript.dll
2015-08-20 03:28:24 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-20 03:28:24 ----A---- C:\Windows\system32\ieui.dll
2015-08-20 03:28:22 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-08-20 03:28:22 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-08-20 03:28:22 ----A---- C:\Windows\SYSWOW64\hlink.dll
2015-08-20 03:28:22 ----A---- C:\Windows\system32\webcheck.dll
2015-08-20 03:28:22 ----A---- C:\Windows\system32\inseng.dll
2015-08-20 03:28:22 ----A---- C:\Windows\system32\iesysprep.dll
2015-08-20 03:28:22 ----A---- C:\Windows\system32\hlink.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-08-20 03:28:21 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-08-20 03:28:21 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-08-20 03:28:21 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-20 03:28:21 ----A---- C:\Windows\system32\iepeers.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\url.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-20 03:28:20 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\wextract.exe
2015-08-20 03:28:20 ----A---- C:\Windows\system32\url.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\pngfilt.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\msrating.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\licmgr10.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\imgutil.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\iexpress.exe
2015-08-20 03:28:20 ----A---- C:\Windows\system32\iernonce.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-20 03:28:20 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-08-20 03:28:19 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-08-20 03:28:19 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-08-20 03:28:19 ----A---- C:\Windows\system32\mshta.exe
2015-08-20 03:28:19 ----A---- C:\Windows\system32\msfeedssync.exe
2015-08-20 03:28:19 ----A---- C:\Windows\system32\iesetup.dll
2015-08-20 03:28:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-20 03:27:57 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-20 03:27:57 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-20 03:27:57 ----A---- C:\Windows\system32\ntdll.dll
2015-08-20 03:27:56 ----A---- C:\Windows\system32\sysmain.dll
2015-08-20 03:27:56 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-20 03:27:51 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2015-08-20 03:27:51 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2015-08-20 03:27:51 ----A---- C:\Windows\system32\dbghelp.dll
2015-08-20 03:27:51 ----A---- C:\Windows\system32\dbgeng.dll
2015-08-20 03:27:50 ----A---- C:\Windows\system32\fsquirt.exe
2015-08-20 03:27:50 ----A---- C:\Windows\system32\drivers\rfcomm.sys
2015-08-20 03:27:50 ----A---- C:\Windows\system32\drivers\hidbth.sys
2015-08-20 03:27:50 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2015-08-20 03:27:50 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-08-20 03:27:50 ----A---- C:\Windows\system32\drivers\bthenum.sys
2015-08-20 03:27:28 ----A---- C:\Windows\system32\drivers\kbdclass.sys
2015-08-20 03:27:27 ----A---- C:\Windows\system32\drivers\sermouse.sys
2015-08-20 03:27:27 ----A---- C:\Windows\system32\drivers\mouhid.sys
2015-08-20 03:27:27 ----A---- C:\Windows\system32\drivers\mouclass.sys
2015-08-20 03:27:27 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2015-08-20 03:27:27 ----A---- C:\Windows\system32\drivers\i8042prt.sys
2015-08-20 03:27:26 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-08-20 03:27:26 ----A---- C:\Windows\system32\SRH.dll
2015-08-20 03:27:16 ----A---- C:\Windows\system32\schedsvc.dll
2015-08-20 03:27:15 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-08-20 03:04:10 ----A---- C:\Windows\SYSWOW64\rgb9rast.dll
2015-08-20 03:04:10 ----A---- C:\Windows\system32\rgb9rast.dll
2015-08-20 03:04:09 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2015-08-20 03:04:08 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2015-08-20 02:28:51 ----A---- C:\Windows\system32\drivers\udfs.sys
2015-08-20 01:52:15 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-08-20 01:51:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-08-20 01:51:52 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-08-20 01:51:07 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-08-20 01:51:07 ----A---- C:\Windows\system32\rastls.dll
2015-08-20 01:49:56 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-08-20 01:49:56 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-08-20 01:49:56 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-08-20 01:49:56 ----A---- C:\Windows\system32\tracerpt.exe
2015-08-20 01:49:56 ----A---- C:\Windows\system32\tdh.dll
2015-08-20 01:49:56 ----A---- C:\Windows\system32\sechost.dll
2015-08-20 01:49:55 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-08-20 01:49:55 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-08-20 01:49:55 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-08-20 01:49:55 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-08-20 01:49:55 ----A---- C:\Windows\system32\typeperf.exe
2015-08-20 01:49:55 ----A---- C:\Windows\system32\relog.exe
2015-08-20 01:49:55 ----A---- C:\Windows\system32\logman.exe
2015-08-20 01:49:54 ----A---- C:\Windows\system32\diskperf.exe
2015-08-20 01:49:44 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-20 01:49:44 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-20 01:49:44 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-20 01:49:44 ----A---- C:\Windows\system32\davclnt.dll
2015-08-20 01:49:43 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-08-20 01:49:43 ----A---- C:\Windows\system32\oleaut32.dll
2015-08-20 01:49:41 ----A---- C:\Windows\system32\wevtsvc.dll
2015-08-20 01:49:40 ----A---- C:\Windows\system32\lsm.dll
2015-08-20 01:49:39 ----A---- C:\Windows\system32\workerdd.dll
2015-08-20 01:49:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-08-20 01:49:36 ----A---- C:\Windows\system32\services.exe
2015-08-20 01:49:33 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-08-20 01:49:33 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-20 01:49:33 ----A---- C:\Windows\system32\WSShared.dll
2015-08-20 01:49:33 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-20 01:49:17 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2015-08-20 01:49:17 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-08-20 01:49:16 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-08-20 01:49:09 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2015-08-20 01:49:09 ----A---- C:\Windows\system32\winshfhc.dll
2015-08-20 01:48:43 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-08-20 01:48:43 ----A---- C:\Windows\system32\pku2u.dll
2015-08-20 01:48:42 ----A---- C:\Windows\system32\drivers\pdc.sys
2015-08-20 01:48:42 ----A---- C:\Windows\system32\drivers\intelpep.sys
2015-08-20 01:48:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2015-08-20 01:48:41 ----A---- C:\Windows\SYSWOW64\atlthunk.dll
2015-08-20 01:48:41 ----A---- C:\Windows\system32\mfc42u.dll
2015-08-20 01:48:41 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2015-08-20 01:48:41 ----A---- C:\Windows\system32\atlthunk.dll
2015-08-20 01:48:40 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2015-08-20 01:48:40 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2015-08-20 01:48:40 ----A---- C:\Windows\system32\mfc42.dll
2015-08-20 01:48:39 ----A---- C:\Windows\system32\sppobjs.dll
2015-08-20 01:48:38 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-08-20 01:48:38 ----A---- C:\Windows\system32\packager.dll
2015-08-20 01:48:35 ----A---- C:\Windows\system32\generaltel.dll
2015-08-20 01:48:35 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-20 01:48:34 ----A---- C:\Windows\system32\invagent.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\devinv.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\appraiser.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\aepic.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\aepdu.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\aeinv.dll
2015-08-20 01:48:34 ----A---- C:\Windows\system32\acmigration.dll
2015-08-20 01:48:31 ----A---- C:\Windows\SYSWOW64\authz.dll
2015-08-20 01:48:31 ----A---- C:\Windows\system32\authz.dll
2015-08-20 01:48:28 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-08-20 01:48:28 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-20 01:48:28 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-20 01:48:28 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-20 01:48:28 ----A---- C:\Windows\system32\drivers\cng.sys
2015-08-20 01:48:28 ----A---- C:\Windows\system32\dpapisrv.dll
2015-08-20 01:48:28 ----A---- C:\Windows\system32\certcli.dll
2015-08-20 01:48:28 ----A---- C:\Windows\system32\adtschema.dll
2015-08-20 01:48:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-20 01:48:27 ----A---- C:\Windows\system32\msaudite.dll
2015-08-20 01:48:20 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2015-08-20 01:48:20 ----A---- C:\Windows\system32\StorageContextHandler.dll
2015-08-20 01:48:18 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-20 01:48:18 ----A---- C:\Windows\system32\WSReset.exe
2015-08-20 01:48:18 ----A---- C:\Windows\system32\WSCollect.exe
2015-08-20 01:48:18 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-08-20 01:40:39 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-20 01:40:39 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-20 01:40:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-20 01:40:39 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-20 01:40:39 ----A---- C:\Windows\system32\wow64.dll
2015-08-20 01:40:39 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-20 01:40:39 ----A---- C:\Windows\system32\microsoft-windows-system-events.dll
2015-08-20 01:40:39 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-20 01:40:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-20 01:40:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-20 01:40:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-20 01:40:28 ----A---- C:\Windows\system32\rfxvmt.dll
2015-08-20 01:40:28 ----A---- C:\Windows\system32\rdpudd.dll
2015-08-20 01:40:28 ----A---- C:\Windows\system32\rdpcorets.dll
2015-08-20 01:40:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-08-20 01:40:26 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-08-20 01:40:26 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-08-20 01:40:25 ----A---- C:\Windows\system32\ubpm.dll
2015-08-20 01:40:22 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-08-20 01:40:22 ----A---- C:\Windows\system32\comctl32.dll
2015-08-20 01:39:42 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2015-08-20 01:39:42 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2015-08-20 01:37:01 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2015-08-20 01:37:01 ----A---- C:\Windows\system32\netcfgx.dll
2015-08-20 01:37:01 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-08-20 01:36:57 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-20 01:36:57 ----A---- C:\Windows\system32\notepad.exe
2015-08-20 01:36:57 ----A---- C:\Windows\notepad.exe
2015-08-20 01:36:51 ----A---- C:\Windows\system32\fhcpl.dll
2015-08-20 01:36:24 ----A---- C:\Windows\system32\drivers\http.sys
2015-08-20 01:36:22 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-20 01:36:22 ----A---- C:\Windows\system32\msxml6.dll
2015-08-20 01:36:22 ----A---- C:\Windows\system32\msxml3.dll
2015-08-20 01:36:21 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-20 01:36:18 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-20 01:36:18 ----A---- C:\Windows\system32\mstscax.dll
2015-08-20 01:36:17 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-20 01:36:17 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-20 01:36:17 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-20 01:36:17 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-20 01:36:14 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-20 01:36:14 ----A---- C:\Windows\system32\gdi32.dll
2015-08-20 01:36:10 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-08-20 01:36:10 ----A---- C:\Windows\system32\drivers\clfs.sys
2015-08-20 01:36:09 ----A---- C:\Windows\system32\clfsw32.dll
2015-08-20 01:36:07 ----A---- C:\Windows\system32\tquery.dll
2015-08-20 01:36:06 ----A---- C:\Windows\system32\mssrch.dll
2015-08-20 01:36:05 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-08-20 01:36:04 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-08-20 01:36:03 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2015-08-20 01:36:03 ----A---- C:\Windows\SYSWOW64\mssph.dll
2015-08-20 01:36:03 ----A---- C:\Windows\system32\SearchIndexer.exe
2015-08-20 01:36:03 ----A---- C:\Windows\system32\mssph.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2015-08-20 01:36:02 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-08-20 01:36:02 ----A---- C:\Windows\system32\SearchFilterHost.exe
2015-08-20 01:36:02 ----A---- C:\Windows\system32\mssvp.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\mssprxy.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\mssphtb.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\mssitlb.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\msshooks.dll
2015-08-20 01:36:02 ----A---- C:\Windows\system32\msscntrs.dll
2015-08-20 01:36:01 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-08-20 01:36:01 ----A---- C:\Windows\system32\WMPhoto.dll
2015-08-20 01:36:01 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-08-20 01:36:01 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-08-20 01:36:00 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-20 01:36:00 ----A---- C:\Windows\system32\ole32.dll
2015-08-20 01:35:59 ----A---- C:\Windows\system32\drivers\sdbus.sys
2015-08-20 01:35:59 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2015-08-20 01:35:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-08-20 01:35:58 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-20 01:35:58 ----A---- C:\Windows\system32\win32k.sys
2015-08-20 01:35:58 ----A---- C:\Windows\system32\fontsub.dll
2015-08-20 01:35:58 ----A---- C:\Windows\system32\FntCache.dll
2015-08-20 01:35:58 ----A---- C:\Windows\system32\DWrite.dll
2015-08-20 01:35:57 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-08-20 01:35:57 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-08-20 01:35:57 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-08-20 01:35:57 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-08-20 01:35:57 ----A---- C:\Windows\system32\lpk.dll
2015-08-20 01:35:57 ----A---- C:\Windows\system32\dciman32.dll
2015-08-20 01:35:57 ----A---- C:\Windows\system32\atmlib.dll
2015-08-20 01:35:57 ----A---- C:\Windows\system32\atmfd.dll
2015-08-20 01:35:56 ----A---- C:\Windows\SYSWOW64\WPDShServiceObj.dll
2015-08-20 01:35:56 ----A---- C:\Windows\SYSWOW64\WPDShextAutoplay.exe
2015-08-20 01:35:56 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-08-20 01:35:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2015-08-20 01:35:56 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2015-08-20 01:35:56 ----A---- C:\Windows\system32\wpdshext.dll
2015-08-20 01:35:54 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-08-20 01:35:54 ----A---- C:\Windows\system32\msftedit.dll
2015-08-20 01:35:53 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-08-20 01:35:53 ----A---- C:\Windows\system32\nlasvc.dll
2015-08-20 01:35:53 ----A---- C:\Windows\system32\nlaapi.dll
2015-08-20 01:35:53 ----A---- C:\Windows\system32\ncsi.dll
2015-08-20 01:35:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-08-20 01:35:52 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-08-20 01:35:49 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-08-20 01:35:49 ----A---- C:\Windows\explorer.exe
2015-08-20 01:35:48 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2015-08-20 01:35:48 ----A---- C:\Windows\system32\MrmCoreR.dll
2015-08-20 01:35:47 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2015-08-20 01:35:47 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2015-08-20 01:35:47 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2015-08-20 01:35:47 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2015-08-20 01:35:47 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2015-08-20 01:35:47 ----A---- C:\Windows\system32\eappprxy.dll
2015-08-20 01:35:47 ----A---- C:\Windows\system32\eapphost.dll
2015-08-20 01:35:47 ----A---- C:\Windows\system32\eappgnui.dll
2015-08-20 01:35:47 ----A---- C:\Windows\system32\eappcfg.dll
2015-08-20 01:35:47 ----A---- C:\Windows\system32\eapp3hst.dll
2015-08-20 01:35:46 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2015-08-20 01:35:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-20 01:35:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-20 01:35:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-20 01:35:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-20 01:35:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-20 01:35:41 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-20 01:35:41 ----A---- C:\Windows\system32\wups2.dll
2015-08-20 01:35:41 ----A---- C:\Windows\system32\wups.dll
2015-08-20 01:35:41 ----A---- C:\Windows\system32\wudriver.dll
2015-08-20 01:35:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wucltux.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wuapp.exe
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wuapi.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\wuaext.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-20 01:35:40 ----A---- C:\Windows\system32\storewuauth.dll
2015-08-20 01:35:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-20 01:35:28 ----A---- C:\Windows\system32\kerberos.dll
2015-08-20 01:35:09 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2015-08-20 01:35:09 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2015-08-20 01:34:24 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-08-20 01:34:24 ----A---- C:\Windows\system32\InkEd.dll
2015-08-20 01:34:23 ----A---- C:\Windows\system32\jnwmon.dll
2015-08-20 01:34:21 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-08-20 01:34:21 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-08-20 01:34:21 ----A---- C:\Windows\system32\shimeng.dll
2015-08-20 01:34:21 ----A---- C:\Windows\system32\apphelp.dll
2015-08-20 01:34:20 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-08-20 01:34:20 ----A---- C:\Windows\system32\sdbinst.exe
2015-08-20 01:33:50 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-08-20 01:33:50 ----A---- C:\Windows\system32\EventAggregation.dll
2015-08-20 01:33:50 ----A---- C:\Windows\system32\CSystemEventsBrokerClient.dll
2015-08-20 01:33:50 ----A---- C:\Windows\system32\bisrv.dll
2015-08-20 01:33:49 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-08-20 01:33:48 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-08-19 21:17:55 ----D---- C:\ProgramData\Microsoft Help
2015-08-19 21:12:34 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\WinRAR
2015-08-19 21:11:54 ----D---- C:\Program Files\WinRAR
2015-08-19 20:37:05 ----D---- C:\KMPlayer
2015-08-19 18:02:12 ----A---- C:\Windows\twain.dll
2015-08-19 18:02:08 ----D---- C:\Program Files (x86)\Adobe
2015-08-19 18:00:29 ----A---- C:\Windows\IsUn0405.exe
2015-08-18 21:21:37 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\WebStorage
2015-08-18 21:18:51 ----A---- C:\Users\Lucka.Erin\AppData\Roaming\sp_data.sys
2015-08-18 21:17:30 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\Macromedia
2015-08-18 21:16:37 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\Atheros
2015-08-18 21:15:25 ----D---- C:\Users\Lucka.Erin\AppData\Roaming\Adobe
2015-08-18 21:15:07 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-18 21:14:51 ----SD---- C:\Users\Lucka.Erin\AppData\Roaming\Microsoft
2015-08-18 20:56:10 ----SHD---- C:\ProgramData\Šablony
2015-08-18 20:56:10 ----SHD---- C:\ProgramData\Plocha
2015-08-18 20:56:10 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-18 20:56:10 ----SHD---- C:\ProgramData\Dokumenty
2015-08-18 20:56:10 ----SHD---- C:\ProgramData\Data aplikací
2015-08-18 19:34:23 ----D---- C:\ProgramData\{d080afb0-4e9e-787d-d080-0afb04e9bec1}
2015-08-18 19:34:18 ----D---- C:\ProgramData\QWinManProQ
2015-08-18 19:04:31 ----D---- C:\Program Files (x86)\Opera
2015-08-18 19:03:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-18 18:08:13 ----D---- C:\Program Files\Microsoft Office 15
2015-08-17 21:40:31 ----D---- C:\Windows\system32\MRT
2015-08-17 19:04:08 ----D---- C:\ProgramData\Avira
2015-08-17 18:05:07 ----D---- C:\Program Files\Common Files\AV
2015-08-17 18:01:24 ----D---- C:\Program Files (x86)\Google
2015-08-17 17:34:21 ----D---- C:\ProgramData\USBChargerPlus
======List of files/folders modified in the last 1 month======
2015-08-22 10:29:42 ----AD---- C:\Windows\Temp
2015-08-22 10:29:41 ----D---- C:\Windows\Prefetch
2015-08-22 10:29:40 ----RD---- C:\Program Files
2015-08-22 10:17:24 ----D---- C:\Windows\CbsTemp
2015-08-22 10:15:19 ----D---- C:\ProgramData\McAfee
2015-08-22 10:15:01 ----SHD---- C:\Windows\Installer
2015-08-22 10:14:59 ----RD---- C:\Windows\assembly
2015-08-22 10:14:07 ----RSD---- C:\Windows\Fonts
2015-08-22 10:13:30 ----RD---- C:\Program Files (x86)
2015-08-22 10:12:30 ----D---- C:\Windows\WinSxS
2015-08-22 10:11:47 ----SHD---- C:\System Volume Information
2015-08-22 10:11:10 ----RD---- C:\Windows\System32
2015-08-22 10:11:10 ----D---- C:\Windows\Inf
2015-08-22 10:11:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-22 10:10:38 ----D---- C:\Windows\system32\config
2015-08-22 10:10:29 ----D---- C:\Program Files\Common Files\microsoft shared
2015-08-22 10:03:23 ----HD---- C:\ProgramData
2015-08-22 10:02:43 ----D---- C:\Windows\AppReadiness
2015-08-22 09:00:02 ----D---- C:\Windows\system32\sru
2015-08-22 03:11:44 ----D---- C:\Windows\Microsoft.NET
2015-08-21 22:02:22 ----D---- C:\Windows\Logs
2015-08-21 21:23:28 ----D---- C:\Windows\AppCompat
2015-08-21 21:14:02 ----HD---- C:\Program Files\WindowsApps
2015-08-20 21:46:39 ----D---- C:\Windows\SysWOW64
2015-08-20 21:45:56 ----D---- C:\Program Files (x86)\McAfee
2015-08-20 21:43:38 ----D---- C:\Windows\system32\catroot
2015-08-20 21:38:50 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-08-20 21:38:50 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-08-20 21:38:50 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-08-20 21:38:50 ----D---- C:\Windows\SYSWOW64\en-GB
2015-08-20 21:38:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-20 21:38:50 ----D---- C:\Windows\system32\sk-SK
2015-08-20 21:38:50 ----D---- C:\Windows\system32\pl-PL
2015-08-20 21:38:50 ----D---- C:\Windows\system32\hu-HU
2015-08-20 21:38:50 ----D---- C:\Windows\system32\en-GB
2015-08-20 21:38:50 ----D---- C:\Windows\system32\cs-CZ
2015-08-20 21:38:48 ----RD---- C:\Windows\ToastData
2015-08-20 21:38:44 ----D---- C:\Windows\system32\drivers
2015-08-20 21:38:43 ----RD---- C:\Windows\ImmersiveControlPanel
2015-08-20 21:38:42 ----D---- C:\Windows\system32\AdvancedInstallers
2015-08-20 21:38:41 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-20 21:38:40 ----D---- C:\Program Files\Internet Explorer
2015-08-20 21:38:39 ----D---- C:\Windows\SYSWOW64\migration
2015-08-20 21:38:38 ----D---- C:\Windows\system32\migration
2015-08-20 21:38:38 ----D---- C:\Windows\PolicyDefinitions
2015-08-20 21:38:35 ----D---- C:\Windows\system32\drivers\pl-PL
2015-08-20 21:38:35 ----D---- C:\Windows\system32\drivers\hu-HU
2015-08-20 21:38:35 ----D---- C:\Windows\system32\drivers\en-US
2015-08-20 21:38:35 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-20 21:38:18 ----D---- C:\Program Files\Windows Defender
2015-08-20 21:38:17 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-20 21:38:16 ----D---- C:\Windows\WinStore
2015-08-20 21:38:14 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-20 21:38:12 ----D---- C:\Windows\system32\en-US
2015-08-20 21:38:08 ----AD---- C:\Windows
2015-08-20 21:38:03 ----D---- C:\Windows\apppatch
2015-08-20 21:38:02 ----D---- C:\Program Files\Windows Journal
2015-08-20 21:37:54 ----D---- C:\Windows\system32\wbem
2015-08-20 21:37:18 ----D---- C:\Windows\system32\DriverStore
2015-08-20 06:06:45 ----D---- C:\Windows\system32\catroot2
2015-08-20 03:15:36 ----D---- C:\Windows\system32\Tasks
2015-08-19 22:14:33 ----D---- C:\Program Files (x86)\Microsoft Office
2015-08-19 22:14:26 ----D---- C:\Windows\ShellNew
2015-08-19 22:14:12 ----A---- C:\Windows\win.ini
2015-08-19 21:23:47 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-19 21:23:42 ----D---- C:\Program Files (x86)\Common Files
2015-08-19 20:23:16 ----D---- C:\Windows\Tasks
2015-08-19 18:12:01 ----D---- C:\Windows\system32\drivers\UMDF
2015-08-19 00:33:58 ----D---- C:\Windows\system32\wdi
2015-08-18 21:29:12 ----SHD---- C:\$Recycle.Bin
2015-08-18 21:29:06 ----D---- C:\Program Files\Common Files\McAfee
2015-08-18 21:28:02 ----HD---- C:\Windows\ELAMBKUP
2015-08-18 21:15:58 ----D---- C:\Windows\rescache
2015-08-18 21:14:50 ----RD---- C:\Users
2015-08-18 20:53:01 ----D---- C:\Windows\SYSWOW64\WinMetadata
2015-08-18 20:53:00 ----D---- C:\Windows\SYSWOW64\wbem
2015-08-18 20:53:00 ----D---- C:\Windows\SYSWOW64\ras
2015-08-18 20:53:00 ----D---- C:\Windows\SYSWOW64\MSDRM
2015-08-18 20:52:59 ----D---- C:\Windows\SYSWOW64\icsxml
2015-08-18 20:52:59 ----D---- C:\Windows\SYSWOW64\drivers
2015-08-18 20:52:59 ----D---- C:\Windows\SYSWOW64\Com
2015-08-18 20:52:59 ----D---- C:\Windows\SYSWOW64\Bthprops
2015-08-18 20:52:59 ----D---- C:\Windows\system32\zh-TW
2015-08-18 20:52:59 ----D---- C:\Windows\system32\zh-HK
2015-08-18 20:52:59 ----D---- C:\Windows\system32\zh-CN
2015-08-18 20:52:59 ----D---- C:\Windows\system32\WinMetadata
2015-08-18 20:52:58 ----D---- C:\Windows\system32\uk-UA
2015-08-18 20:52:58 ----D---- C:\Windows\system32\tr-TR
2015-08-18 20:52:58 ----D---- C:\Windows\system32\th-TH
2015-08-18 20:52:58 ----D---- C:\Windows\system32\SystemResetPlatform
2015-08-18 20:52:58 ----D---- C:\Windows\system32\sv-SE
2015-08-18 20:52:58 ----D---- C:\Windows\system32\sr-Latn-RS
2015-08-18 20:52:58 ----D---- C:\Windows\system32\sr-Latn-CS
2015-08-18 20:52:58 ----D---- C:\Windows\system32\sl-SI
2015-08-18 20:52:58 ----D---- C:\Windows\system32\ru-RU
2015-08-18 20:52:58 ----D---- C:\Windows\system32\ro-RO
2015-08-18 20:52:58 ----D---- C:\Windows\system32\ras
2015-08-18 20:52:58 ----D---- C:\Windows\system32\pt-PT
2015-08-18 20:52:58 ----D---- C:\Windows\system32\pt-BR
2015-08-18 20:52:58 ----D---- C:\Windows\system32\oobe
2015-08-18 20:52:58 ----D---- C:\Windows\system32\nl-NL
2015-08-18 20:52:58 ----D---- C:\Windows\system32\nb-NO
2015-08-18 20:52:58 ----D---- C:\Windows\system32\MSDRM
2015-08-18 20:52:58 ----D---- C:\Windows\system32\migwiz
2015-08-18 20:52:58 ----D---- C:\Windows\system32\lv-LV
2015-08-18 20:52:58 ----D---- C:\Windows\system32\lt-LT
2015-08-18 20:52:58 ----D---- C:\Windows\system32\ko-KR
2015-08-18 20:52:58 ----D---- C:\Windows\system32\ja-JP
2015-08-18 20:52:58 ----D---- C:\Windows\system32\it-IT
2015-08-18 20:52:58 ----D---- C:\Windows\system32\icsxml
2015-08-18 20:52:57 ----D---- C:\Windows\system32\ias
2015-08-18 20:52:57 ----D---- C:\Windows\system32\hr-HR
2015-08-18 20:52:57 ----D---- C:\Windows\system32\he-IL
2015-08-18 20:52:57 ----D---- C:\Windows\system32\fr-FR
2015-08-18 20:52:57 ----D---- C:\Windows\system32\fi-FI
2015-08-18 20:52:57 ----D---- C:\Windows\system32\et-EE
2015-08-18 20:52:57 ----D---- C:\Windows\system32\es-ES
2015-08-18 20:52:57 ----D---- C:\Windows\system32\el-GR
2015-08-18 20:52:56 ----D---- C:\Windows\system32\de-DE
2015-08-18 20:52:56 ----D---- C:\Windows\system32\da-DK
2015-08-18 20:52:56 ----D---- C:\Windows\system32\Com
2015-08-18 20:52:56 ----D---- C:\Windows\system32\Bthprops
2015-08-18 20:52:56 ----D---- C:\Windows\system32\bg-BG
2015-08-18 20:52:56 ----D---- C:\Windows\system32\ar-SA
2015-08-18 20:52:55 ----RSD---- C:\Windows\Media
2015-08-18 20:52:55 ----D---- C:\Windows\MediaViewer
2015-08-18 20:52:55 ----D---- C:\Windows\L2Schemas
2015-08-18 20:52:55 ----D---- C:\Windows\FileManager
2015-08-18 20:52:55 ----D---- C:\Windows\Camera
2015-08-18 20:52:55 ----D---- C:\Windows\addins
2015-08-18 20:52:52 ----D---- C:\Program Files\Windows Mail
2015-08-18 20:52:52 ----D---- C:\Program Files\Common Files\System
2015-08-18 20:52:52 ----D---- C:\Program Files\Common Files\Services
2015-08-18 20:52:51 ----RD---- C:\Program Files (x86)\Skype
2015-08-18 20:52:51 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-18 20:52:51 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-18 20:52:02 ----D---- C:\Windows\SYSWOW64\Macromed
2015-08-18 20:52:02 ----D---- C:\Windows\system32\Sysprep
2015-08-18 20:52:01 ----D---- C:\Windows\system32\Macromed
2015-08-18 20:52:01 ----D---- C:\Windows\system32\CodeIntegrity
2015-08-18 20:52:01 ----D---- C:\Windows\servicing
2015-08-18 20:51:56 ----D---- C:\ProgramData\WildTangent
2015-08-18 20:51:55 ----SD---- C:\ProgramData\Microsoft
2015-08-18 20:51:53 ----D---- C:\Program Files\mcafee
2015-08-18 20:51:46 ----D---- C:\Program Files (x86)\WildTangent Games
2015-08-18 20:51:45 ----D---- C:\Program Files (x86)\mcafee.com
2015-08-18 20:51:44 ----D---- C:\Program Files (x86)\Bluetooth Suite
2015-08-18 20:32:21 ----D---- C:\Windows\registration
2015-08-18 20:26:14 ----D---- C:\Program Files\Common Files
2015-08-18 20:25:31 ----D---- C:\Program Files (x86)\ASUS
2015-08-18 00:31:34 ----D---- C:\Windows\debug
2015-08-17 19:09:38 ----D---- C:\ProgramData\Package Cache
2015-08-17 17:39:22 ----D---- C:\Windows\SoftwareDistribution
2015-08-17 17:34:51 ----D---- C:\Windows\system32\LogFiles
2015-08-17 17:32:41 ----D---- C:\Windows\Panther
2015-08-17 17:25:32 ----D---- C:\Windows\system32\restore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BTATH_BUS;@oem18.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-09-28 35016]
R0 MBI;@oem8.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\Windows\System32\drivers\MBI.sys [2013-10-28 29464]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2015-07-02 875928]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2015-07-02 344704]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2013-07-02 19768]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-10-21 71680]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2014-09-11 17152]
R3 AthBTPort;@oem21.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-09-28 89800]
R3 athr;@oem4.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-10-17 4226560]
R3 ATP;@oem26.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\Windows\System32\drivers\AsusTP.sys [2014-12-16 73512]
R3 BTATH_A2DP;@oem20.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-09-28 338120]
R3 btath_avdt;@oem20.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-09-28 118984]
R3 BTATH_HCRP;@oem23.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-09-28 179432]
R3 BTATH_LWFLT;@oem25.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-09-28 77464]
R3 BTATH_RCP;@oem27.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-09-28 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-09-28 600776]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2014-10-21 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2015-07-02 77536]
R3 HIDSwitch;@oem22.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\Windows\System32\drivers\AsHIDSwitch64.sys [2013-10-08 20280]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-10-29 3826320]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-12-26 4363864]
R3 IntcDAud;@oem10.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-10-29 453872]
R3 iwdbus;@oem13.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-08-01 27032]
R3 kbfiltr;@oem24.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\Windows\System32\drivers\kbfiltr.sys [2012-08-06 17280]
R3 mfeaack;McAfee Inc. mfeaack; C:\Windows\system32\drivers\mfeaack.sys [2015-07-02 412440]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2015-07-02 347800]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2015-07-02 496888]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2015-06-28 529080]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2015-08-04 37960]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-12-24 13036232]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem16.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-06-17 873688]
R3 RTSPER;@oem17.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-05-08 502488]
R3 TXEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\Windows\System32\drivers\TXEIx64.sys [2014-01-15 88592]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-10-21 38912]
S0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-06-26 670056]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\Windows\system32\drivers\mfeelamk.sys [2015-07-02 80920]
S3 AgereSoftModem;@mdmags64.inf,%FullProductName%;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2013-06-18 1146880]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\Windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2015-05-19 207208]
S3 intaud_WaveExtensible;@oem12.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-08-01 38296]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-04-03 177544]
S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2015-06-28 109728]
S3 NETwNs64;@netwsw00.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-06-18 11518976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [2014-03-26 115512]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [2014-08-20 71168]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2014-09-29 322176]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-10-29 318568]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-01 733696]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2015-08-04 155368]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2015-07-21 782608]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe [2015-07-23 1694152]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2015-07-15 373704]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2015-06-29 254792]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-12-24 934032]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2015-06-29 232656]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-10-29 280680]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-04-24 203344]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-01 822232]
S3 McAWFwk;McAfee Activation Service; c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe [2014-03-12 332528]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2015-07-17 639456]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-13 149672]
S4 McOobeSv2;McAfee OOBE Service2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2015-07-21 368048]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosim o kontrolu logu
Zdravim 
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
# AdwCleaner v5.003 - Logfile created 22/08/2015 at 20:43:31
# Updated 20/08/2015 by Xplode
# Database : 2015-08-20.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Lucka - ERIN
# Running from : C:\Users\Lucka.Erin\Desktop\adwcleaner_5.003.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\ProgramData\{d080afb0-4e9e-787d-d080-0afb04e9bec1}
[-] Folder Deleted : C:\Users\Lucka.Erin\AppData\Roaming\tencent
***** [ Files ] *****
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://search.babylon.com/?affID=112555&babsrc=HP_ss&mntrId=ecb464430000000000000021850f8dfc
*************************
:: Proxy settings cleared
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1585 bytes] ##########
# Updated 20/08/2015 by Xplode
# Database : 2015-08-20.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Lucka - ERIN
# Running from : C:\Users\Lucka.Erin\Desktop\adwcleaner_5.003.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\ProgramData\{d080afb0-4e9e-787d-d080-0afb04e9bec1}
[-] Folder Deleted : C:\Users\Lucka.Erin\AppData\Roaming\tencent
***** [ Files ] *****
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
[-] File Deleted : C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Lucka.Erin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://search.babylon.com/?affID=112555&babsrc=HP_ss&mntrId=ecb464430000000000000021850f8dfc
*************************
:: Proxy settings cleared
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1585 bytes] ##########
Re: Prosim o kontrolu logu
a konecne na treti pokus se dokoncil mbam scan : ( sorry ze to tak trvalo, ale nechtelo se mu ...
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 23. 8. 2015
Čas skenování: 4:49
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.22.04
Databáze rootkitů: v2015.08.16.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Lucka
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 380094
Uplynulý čas: 23 min, 15 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 6
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.GlobalUpdate.A, C:\Users\Lucka\AppData\Local\Temp\comh.128082, , [d20a010a90fbc1751b6d20daed154cb4],
PUP.Optional.IQIYI.A, C:\Users\Lucka\AppData\Roaming\IQIYI Video, , [607c35d6a4e7f640253dcb4d748ff50b],
PUP.Optional.IQIYI.A, C:\Users\Lucka\AppData\Roaming\IQIYI Video\LStyle, , [607c35d6a4e7f640253dcb4d748ff50b],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ, , [0ece13f81b7058de9c07ee2bb251f20e],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ\update, , [0ece13f81b7058de9c07ee2bb251f20e],
Soubory: 11
PUP.Optional.Crossbrowse.C, C:\Users\Lucka\AppData\Local\Temp\nstDD58.tmp, , [7e5e5ab11e6d092d0931eab118e9c040],
PUP.Optional.CheckOffer, C:\Users\Lucka\AppData\Local\Temp\nsv5EA7.tmp, , [607cca41315a0333ab536f3553ae55ab],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\Lucka\AppData\Local\Temp\nsgBD02.tmp, , [35a77794d6b57fb71c771673e223a45c],
Trojan.Agent, C:\Users\Lucka\AppData\Local\Temp\nsl9F47.tmp, , [15c77b90bdce072f3de50b3964a107f9],
Adware.ConvertAd, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\onsmE1B8.tmp, , [805c8e7dd4b740f6c9fd8e3823de718f],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\onsmE1B8.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\9939.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\B06B.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.Winsock.HijackBoot, C:\Users\Lucka\AppData\Local\Temp\adblocker_installer__1439917613.txt, , [b02c9c6f375488ae5b6afab3848029d7],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ\updateconf, , [0ece13f81b7058de9c07ee2bb251f20e],
PUP.Optional.IStartSurf, C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Dobré: ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Špatné: ("session":{"restore_on_startup":4,"startup_urls":["http://www.google.cz/","http://www.ista ... GVPG3DGVPX"]},"sync":{"remaining_rollback_tries":0}}), ,[a83403080586b87eab7faee6c441ba46]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 23. 8. 2015
Čas skenování: 4:49
Protokol: mbam.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.22.04
Databáze rootkitů: v2015.08.16.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Lucka
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 380094
Uplynulý čas: 23 min, 15 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 6
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.GlobalUpdate.A, C:\Users\Lucka\AppData\Local\Temp\comh.128082, , [d20a010a90fbc1751b6d20daed154cb4],
PUP.Optional.IQIYI.A, C:\Users\Lucka\AppData\Roaming\IQIYI Video, , [607c35d6a4e7f640253dcb4d748ff50b],
PUP.Optional.IQIYI.A, C:\Users\Lucka\AppData\Roaming\IQIYI Video\LStyle, , [607c35d6a4e7f640253dcb4d748ff50b],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ, , [0ece13f81b7058de9c07ee2bb251f20e],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ\update, , [0ece13f81b7058de9c07ee2bb251f20e],
Soubory: 11
PUP.Optional.Crossbrowse.C, C:\Users\Lucka\AppData\Local\Temp\nstDD58.tmp, , [7e5e5ab11e6d092d0931eab118e9c040],
PUP.Optional.CheckOffer, C:\Users\Lucka\AppData\Local\Temp\nsv5EA7.tmp, , [607cca41315a0333ab536f3553ae55ab],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\Lucka\AppData\Local\Temp\nsgBD02.tmp, , [35a77794d6b57fb71c771673e223a45c],
Trojan.Agent, C:\Users\Lucka\AppData\Local\Temp\nsl9F47.tmp, , [15c77b90bdce072f3de50b3964a107f9],
Adware.ConvertAd, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\onsmE1B8.tmp, , [805c8e7dd4b740f6c9fd8e3823de718f],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\onsmE1B8.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\9939.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.MultiPlug.A, C:\Users\Lucka\AppData\Local\C0EC7DE3-1439924644-534B-82F5-E0C30E38CE1A\B06B.tmp, , [03d93ecdcac1c96d5a42871b2ed6de22],
PUP.Optional.Winsock.HijackBoot, C:\Users\Lucka\AppData\Local\Temp\adblocker_installer__1439917613.txt, , [b02c9c6f375488ae5b6afab3848029d7],
PUP.Optional.ProtectWindowsManager.F, C:\ProgramData\QWinManProQ\updateconf, , [0ece13f81b7058de9c07ee2bb251f20e],
PUP.Optional.IStartSurf, C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Dobré: ("session":{"restore_on_startup":4,"startup_urls":["https://www.malwarebytes.org/restorebrowser/"]}}), Špatné: ("session":{"restore_on_startup":4,"startup_urls":["http://www.google.cz/","http://www.ista ... GVPG3DGVPX"]},"sync":{"remaining_rollback_tries":0}}), ,[a83403080586b87eab7faee6c441ba46]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Prosim o kontrolu logu
Vsechny nalezy MBAM nechte odstranit. Po odstraneni a restartu pc udelejte novy test, ale tentokrat opravdu se spravnym nastavenim. Tohle byl jen Sken hrozeb, ten neprohlizi cely pocitac. Musite udelat Vlastni sken, tak jak se pise v navodu.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 23. 8. 2015
Čas skenování: 13:20
Protokol: mbam2.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.23.02
Databáze rootkitů: v2015.08.16.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Lucka
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 752031
Uplynulý čas: 4 hod, 29 min, 28 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 23. 8. 2015
Čas skenování: 13:20
Protokol: mbam2.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.08.23.02
Databáze rootkitů: v2015.08.16.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Lucka
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 752031
Uplynulý čas: 4 hod, 29 min, 28 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Prosim o kontrolu logu
Vyborne, MBAM odinstalujte. Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2015/08/23 20:45:02
-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- HGST HTS541010A9E680
- MATSHITA DVD-RAM UJ8G6
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) HGST HTS541010A9E680 : 1000,2 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) HGST HTS541010A9E680
----------------------------------------------------------------------------
Model : HGST HTS541010A9E680
Firmware : JA0OA560
Serial Number : JA1009D9G3DGVP
Disk Size : 1000,2 GB (8,4/137,4/1000,2)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600
Power On Hours : 61 hod.
Power On Count : 40 krát
Temparature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4001h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 182 182 _33 001200000001 Čas na roztočení ploten
04 100 100 __0 0000000003E0 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 100 100 __0 00000000003D Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 000000000028 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000005 Počet vypnutí disku
C1 100 100 __0 000000000BF7 Počet cyklů načítání/vymazání
C2 187 187 __0 002A00120020 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 4A41 3130 4439 4439 4733 4447 5650
020: 0003 4000 0004 4A41 304F 3630 3630 4847 5354 2048
030: 5453 3534 3130 3130 4139 3830 3830 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 170E 170E 0004 005E 0040
080: 01FC 0028 746B 7D69 6163 BC49 BC49 6163 207F 0066
090: 0067 4001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 6003 6003 826C 5000 CCA8
110: 1FC1 8BF5 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 FA00 4000 4000 0400 0009 0000
140: 0000 0702 0702 0702 0802 0000 0000 0000 0000 0000
150: 0000 0003 3033 4235 0000 0000 0000 5DBD 2388 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 44A5
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 8 [6.2 Build 9200] (x64)
Date : 2015/08/23 20:45:02
-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- HGST HTS541010A9E680
- MATSHITA DVD-RAM UJ8G6
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) HGST HTS541010A9E680 : 1000,2 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) HGST HTS541010A9E680
----------------------------------------------------------------------------
Model : HGST HTS541010A9E680
Firmware : JA0OA560
Serial Number : JA1009D9G3DGVP
Disk Size : 1000,2 GB (8,4/137,4/1000,2)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/600
Power On Hours : 61 hod.
Power On Count : 40 krát
Temparature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4001h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _62 000000000000 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 182 182 _33 001200000001 Čas na roztočení ploten
04 100 100 __0 0000000003E0 Počet spuštění/zastavení
05 100 100 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 100 100 __0 00000000003D Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 000000000028 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000005 Počet vypnutí disku
C1 100 100 __0 000000000BF7 Počet cyklů načítání/vymazání
C2 187 187 __0 002A00120020 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 4A41 3130 4439 4439 4733 4447 5650
020: 0003 4000 0004 4A41 304F 3630 3630 4847 5354 2048
030: 5453 3534 3130 3130 4139 3830 3830 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 170E 170E 0004 005E 0040
080: 01FC 0028 746B 7D69 6163 BC49 BC49 6163 207F 0066
090: 0067 4001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 6003 6003 826C 5000 CCA8
110: 1FC1 8BF5 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 0000 0000 2182 1CF1 FA00 4000 4000 0400 0009 0000
140: 0000 0702 0702 0702 0802 0000 0000 0000 0000 0000
150: 0000 0003 3033 4235 0000 0000 0000 5DBD 2388 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 44A5
Re: Prosim o kontrolu logu
Dejte novy log z RSITa k tomu
Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
prikladam RSIT, je vetsi nez 10000 znaku, takze se nevejde : )
- Přílohy
-
- log.rar
- (38.86 KiB) Staženo 45 x
Re: Prosim o kontrolu logu
a tohle taky pridavam v souboru : )
- Přílohy
-
- FRST.rar
- (60.1 KiB) Staženo 50 x
Re: Prosim o kontrolu logu
Priste davejte logy primo sem, lepe se pak s nimi pracuje. Kdyz jsou dlouhe, klidne je rozdelte do vice prispevku.
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
2015-08-22 20:51 - 2015-08-22 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-22 20:48 - 2015-08-22 20:49 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Lucka.Erin\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-17 19:07 - 2015-08-17 19:07 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Avira
2015-08-17 19:04 - 2015-08-18 06:37 - 00000000 ____D C:\ProgramData\Avira
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
EndKliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version:23-08-2015
Ran by Lucka (2015-08-24 16:25:58) Run:1
Running from C:\Users\Lucka.Erin\Desktop
Loaded Profiles: Lucka (Available Profiles: Lucka)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
2015-08-22 20:51 - 2015-08-22 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-22 20:48 - 2015-08-22 20:49 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Lucka.Erin\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-17 19:07 - 2015-08-17 19:07 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Avira
2015-08-17 19:04 - 2015-08-18 06:37 - 00000000 ____D C:\ProgramData\Avira
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
MBAMSwissArmy => Unable to stop service.
MBAMSwissArmy => service removed successfully
gupdate => service removed successfully
SkypeUpdate => service removed successfully
gupdatem => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\Users\Lucka.Erin\Downloads\mbam-setup-2.1.8.1057.exe => moved successfully
C:\Users\Lucka\AppData\Roaming\Avira => moved successfully
C:\ProgramData\Avira => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 156.5 MB temporary data Removed.
The system needed a reboot..
==== End of Fixlog 16:26:58 ====
Ran by Lucka (2015-08-24 16:25:58) Run:1
Running from C:\Users\Lucka.Erin\Desktop
Loaded Profiles: Lucka (Available Profiles: Lucka)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
R3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-19 144200]
2015-08-22 20:51 - 2015-08-22 20:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-22 20:48 - 2015-08-22 20:49 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Lucka.Erin\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-17 19:07 - 2015-08-17 19:07 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Avira
2015-08-17 19:04 - 2015-08-18 06:37 - 00000000 ____D C:\ProgramData\Avira
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-362802956-2544113632-3344963122-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
MBAMSwissArmy => Unable to stop service.
MBAMSwissArmy => service removed successfully
gupdate => service removed successfully
SkypeUpdate => service removed successfully
gupdatem => service removed successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\Users\Lucka.Erin\Downloads\mbam-setup-2.1.8.1057.exe => moved successfully
C:\Users\Lucka\AppData\Roaming\Avira => moved successfully
C:\ProgramData\Avira => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 156.5 MB temporary data Removed.
The system needed a reboot..
==== End of Fixlog 16:26:58 ====
Re: Prosim o kontrolu logu
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remove disinfection tools
- Kliknete na Run
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak to s pc vypada. Nastala nejaka zmena?Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosim o kontrolu logu
děkuji moc za pomoc, pc funguje jak má (respektive je podstatně rychlejší) 
Odvádíte úžasnou práci, nicméně neberte to zle, ale doufám že se opět dlouho nebudeme číst : ) snažím si dávat pozor, ale ta havěť je čím dál vlezlejší : )
Přispějete na provoz fóra?