Preventivní kontrola

Zpráva

jarda66 · #1 Příspěvek od **jarda66** » 13 zář 2015 13:19

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jaroslav at 2015-09-13 14:10:24
Microsoft Windows 8.1
System drive C: has 78 GB (64%) free of 122 GB
Total RAM: 1932 MB (48% free)

HijackThis download failed

======Listing Processes======

wininit.exe

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a94205a6-66ee-4f4a-aa1cfe57a615da76}
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
taskhostex.exe
taskeng.exe {F629DC5B-F1E2-4E1D-B101-DCA5E11F2EFC}
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:1728
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\WINDOWS\system32\GWX\GWX.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3384.0.1578903260\1737525659" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.4229 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Disabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_19/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_18/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="3384.3.1526775218\1959430562" --font-cache-shared-handle=4120 /prefetch:673131151
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
KBFiltr.exe
"C:\Program Files\ASUS\P4G\InsOnSrv.exe"
"C:\Program Files\ASUS\P4G\InsOnWMI.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\WINDOWS\system32\hkcmd.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\WINDOWS\system32\igfxtray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 572 576 584 65536 580

"C:\Users\Jaroslav\Desktop\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-12-28 66688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-28 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-28 559624]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-12-28 129664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07 998104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSPRP]
C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [2012-12-19 3576784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4]
c:\windows\temp\DisableS3S464\sethigh.cmd []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg]
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-12-03 1256080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-12-07 13262480]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-09-05 6111824]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-12-28 129664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YouTubeVideoDownloader.exe"="C:\Program Files (x86)\Tomabo\YouTube Video Downloader\YouTubeVideoDownloader.exe:*:Enabled:YouTube Video Downloader"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-13 14:10:25 ----D---- C:\Program Files\trend micro
2015-09-13 14:10:24 ----D---- C:\rsit
2015-09-09 17:37:27 ----A---- C:\WINDOWS\system32\msxml6.dll
2015-09-09 17:37:26 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2015-09-09 17:37:25 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2015-09-09 17:37:25 ----A---- C:\WINDOWS\system32\msxml3.dll
2015-09-09 17:37:17 ----A---- C:\WINDOWS\system32\UtcResources.dll
2015-09-09 17:37:16 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-09-09 17:37:16 ----A---- C:\WINDOWS\system32\tdh.dll
2015-09-09 17:37:16 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-09-09 17:36:58 ----A---- C:\WINDOWS\system32\consent.exe
2015-09-09 17:36:57 ----A---- C:\WINDOWS\system32\profsvc.dll
2015-09-09 17:36:33 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-09 17:36:33 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2015-09-09 17:36:32 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-09 17:36:32 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-09 17:08:08 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-09-09 17:08:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-09-09 17:08:08 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-09-09 17:08:07 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-09-09 17:08:07 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-09 17:08:06 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-09-09 17:08:06 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-09-09 17:05:22 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2015-09-09 17:05:22 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-09-09 16:56:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-09 16:56:18 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-09 16:56:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-09 16:56:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-09 16:56:08 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-09-09 16:56:06 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-09-09 16:56:06 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-09 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-09-09 16:56:05 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-09 16:56:05 ----A---- C:\WINDOWS\system32\wininet.dll
2015-09-09 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-09 16:56:04 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-09 16:56:04 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-09 16:56:03 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-09 16:56:03 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-09 16:56:03 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-09-09 16:56:03 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-09-09 16:56:02 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-09 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-09-09 16:56:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-09-09 16:56:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-09-09 16:56:00 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-09-09 16:56:00 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-09-09 16:55:59 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-09-09 16:55:57 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-09-09 16:55:57 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-09-09 16:55:56 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-09-09 16:55:13 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 16:55:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-09 16:55:12 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-09 16:55:12 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-09 16:55:12 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-09 16:55:11 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-09 16:55:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-09 16:55:11 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-09 16:55:10 ----A---- C:\WINDOWS\system32\win32k.sys
2015-09-09 16:55:09 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-09 16:55:09 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-09 16:55:09 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-09 16:55:09 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-09 16:55:07 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2015-09-09 16:55:07 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2015-09-09 16:55:07 ----A---- C:\WINDOWS\system32\taskeng.exe
2015-09-09 16:55:07 ----A---- C:\WINDOWS\system32\schtasks.exe
2015-09-09 16:55:07 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-09 16:54:58 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2015-09-09 16:54:58 ----A---- C:\WINDOWS\system32\appidapi.dll
2015-09-09 16:54:57 ----A---- C:\WINDOWS\system32\appidsvc.dll
2015-09-09 16:54:43 ----A---- C:\WINDOWS\system32\tzsync.exe
2015-09-08 16:51:54 ----A---- C:\WINDOWS\system32\drivers\035A59D2.sys
2015-09-05 15:14:54 ----D---- C:\ProgramData\Malwarebytes
2015-09-05 14:54:23 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2015-09-05 14:54:15 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-09-05 14:53:55 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-09-05 14:07:31 ----D---- C:\Users\Jaroslav\AppData\Roaming\WinRAR
2015-09-05 14:07:03 ----D---- C:\Program Files\WinRAR
2015-09-05 12:01:22 ----A---- C:\autoexec.bat
2015-09-05 11:34:50 ----D---- C:\FRST
2015-09-05 11:07:53 ----D---- C:\AdwCleaner
2015-09-01 15:23:15 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-28 16:40:43 ----A---- C:\WINDOWS\avastSS.scr
2015-08-14 16:24:42 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-14 16:24:41 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll

======List of files/folders modified in the last 1 month======

2015-09-13 14:10:25 ----RD---- C:\Program Files
2015-09-13 14:04:24 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-13 14:03:26 ----D---- C:\WINDOWS\Temp
2015-09-13 14:02:13 ----D---- C:\Windows
2015-09-13 14:02:00 ----RD---- C:\Program Files (x86)
2015-09-13 14:00:02 ----D---- C:\WINDOWS\system32\sru
2015-09-13 13:58:45 ----D---- C:\WINDOWS\Prefetch
2015-09-13 13:56:31 ----D---- C:\Program Files (x86)\Opera
2015-09-13 13:56:21 ----D---- C:\WINDOWS\system32\Tasks
2015-09-13 13:54:34 ----D---- C:\WINDOWS\system32\drivers
2015-09-13 13:48:04 ----DC---- C:\WINDOWS\Panther
2015-09-13 13:48:04 ----D---- C:\WINDOWS\Inf
2015-09-13 13:47:40 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-13 13:47:40 ----D---- C:\WINDOWS\debug
2015-09-13 12:24:23 ----HD---- C:\ProgramData
2015-09-13 12:22:18 ----RD---- C:\WINDOWS\System32
2015-09-13 12:22:18 ----D---- C:\WINDOWS\Tasks
2015-09-13 12:22:17 ----D---- C:\WINDOWS\system32\GroupPolicy
2015-09-13 10:06:19 ----D---- C:\WINDOWS\AppReadiness
2015-09-11 21:57:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-11 15:45:38 ----D---- C:\WINDOWS\system32\config
2015-09-11 05:58:48 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-11 05:58:41 ----D---- C:\WINDOWS\WinSxS
2015-09-10 17:55:30 ----D---- C:\WINDOWS\SysWOW64
2015-09-10 17:55:28 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-10 17:55:27 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-10 17:55:27 ----D---- C:\Program Files\Windows Journal
2015-09-10 17:55:27 ----D---- C:\Program Files\Internet Explorer
2015-09-10 17:55:27 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 17:55:24 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-10 17:08:43 ----RD---- C:\WINDOWS\assembly
2015-09-10 16:00:49 ----D---- C:\WINDOWS\CbsTemp
2015-09-10 15:50:03 ----D---- C:\WINDOWS\system32\MRT
2015-09-10 15:25:39 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-10 11:40:13 ----SHD---- C:\System Volume Information
2015-09-09 17:39:26 ----HD---- C:\Program Files\WindowsApps
2015-09-09 05:59:57 ----D---- C:\WINDOWS\system32\catroot2
2015-09-08 17:50:16 ----D---- C:\WINDOWS\twain_32
2015-09-05 11:13:04 ----D---- C:\Program Files (x86)\Common Files
2015-08-29 13:10:06 ----SHD---- C:\WINDOWS\Installer
2015-08-26 18:37:02 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdisFlt;@oem40.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-09-05 454016]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-28 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-28 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-03-25 678384]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-09-05 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-28 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-09-05 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-28 447944]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-28 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-28 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-28 150672]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 ATP;@oem4.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2013-02-06 65784]
R3 BTATH_BUS;@oem6.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2012-12-28 33944]
R3 HIDSwitch;@oem10.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2012-05-31 21152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-12-11 3258256]
R3 IntcDAud;@oem22.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-10-26 342528]
R3 kbfiltr;@oem9.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem23.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2014-02-10 14112]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 AthBTPort;@oem11.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2012-12-28 89320]
S3 BTATH_HCRP;@oem12.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2012-12-28 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2012-12-28 77464]
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys []
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2013-01-07 1280768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-28 146600]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-09-05 109008]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2014-03-22 2183992]
R3 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-01-15 107320]
R3 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files\ASUS\P4G\InsOnSrv.exe [2013-04-29 277120]
R3 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
R3 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-12-28 226944]
R3 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R3 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R3 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
R3 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R3 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R3 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-04 107848]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-04 107848]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-07-19 194032]

-----------------EOF-----------------

#2 Příspěvek od **Márty84** » 13 zář 2015 13:56

Zdravim

Jedna se o stejny pc jako zde? http://forum.viry.cz/viewtopic.php?f=13&t=145934

jarda66 · #3 Příspěvek od **jarda66** » 13 zář 2015 14:01

Ano, je to stejné PC.

#4 Příspěvek od **Márty84** » 13 zář 2015 14:22

A proc zakladate nove tema?

jarda66 · #5 Příspěvek od **jarda66** » 13 zář 2015 14:35

Omlouvám se, prosím o vymazání témata. Děkuji

#6 Příspěvek od **Márty84** » 13 zář 2015 14:57

V poradku

Pokud je s pc jeste nejaky problem (pomaly start, pomaly internet, nebo cokoliv), napiste to do puvodniho tematu. Je zbytecne zakladat dalsi

Tady

VIRY.CZ

Preventivní kontrola

Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola