RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukáš Handl at 2015-09-25 11:28:26
Microsoft Windows 8.1 s aplikací Bing
System drive C: has 319 GB (74%) free of 434 GB
Total RAM: 3979 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:28:48, on 25. 9. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Rising\RSD\popwndexe.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera_crashreporter.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe
C:\Program Files\trend micro\Lukáš Handl.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/?tn=94493384_hao_pg
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [ QQPCTray] "C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCTRAY.EXE" /regrun /qqrepair
O4 - HKLM\..\Run: [RSDTRAY] "C:\Program Files (x86)\Rising\RSD\popwndexe.exe"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PerfTraceService - Unknown owner - C:\Program Files (x86)\Tencent\QQBrowser\Service\PerfTraceService.exe
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) - Tencent - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCRTP.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Rsd Service (RsMgrSvc) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe
O23 - Service: Rav Service (RsRavMon) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files (x86)\Rising\RAV\ravmond.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\windows\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TAOFrame - Tencent - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TAOFrame.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11109 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCRTP.exe" -r
"C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe"
"C:\Program Files (x86)\Rising\RAV\ravmond.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
dashost.exe {481bf772-5f5e-4846-ae0d9e335ed435c0}
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe"
"C:\Program Files (x86)\Tencent\QQBrowser\Service\PerfTraceService.exe"
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
C:\windows\SysWOW64\SAsrv.exe
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-10d8c97f-7b61-4b73-abeb-3258dae5a713 -SystemEventPortName:HostProcess-67cbf03a-c626-4a51-9f03-676f329bb6ba -IoCancelEventPortName:HostProcess-17ee24a1-75ec-4f4d-8044-0ad0ec3f9a18 -NonStateChangingEventPortName:HostProcess-bfad9a0e-4581-43e3-ab53-e8e311a1b3fe -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:382f8ace-264b-455e-85ac-5a37561139fc -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\Explorer.EXE
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Users\Lukáš Handl\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe" /LOGON
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\windows\system32\SearchIndexer.exe /Embedding
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCTray.exe" /elevated /regrun
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe" -Embedding
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\Rising\RSD\popwndexe.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
adb fork-server server
"C:\windows\FileManager\PhotosApp.exe" -ServerName:Microsoft.Windows.PhotoManager
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\32.0.1948.25\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=2648
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=gpu-process --channel="2648.0.317849077\1524206141" --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,26,51 --gpu-vendor-id=0x8086 --gpu-device-id=0x0f31 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3496 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.2.2131348293\1202395706" /prefetch:673131151
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.3.1909890863\1237639355" /prefetch:673131151
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.4.1724338208\88976254" /prefetch:673131151
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.5.732085868\1325385976" /prefetch:673131151
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.11.922462440\266188133" /prefetch:673131151
"C:\Program Files (x86)\Opera\32.0.1948.25\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_201.dll" --ppapi-flash-version=19.0.0.201 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=off --crash-reporter-pid=8088 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="2648.13.1782463725\1921301887" /prefetch:673131151
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe102_ Global\UsGthrCtrlFltPipeMssGthrPipe102 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 572 576 584 65536 580
"C:\Users\Lukáš Handl\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\5VpyJGkQ8eiTJLrydW.job - C:\Users\Luk� Handl\AppData\Roaming\5VpyJGkQ8eiTJLrydW.exe --c=XX0rPQ/tYC1v2JYocjwy6tEZTEln++MpT80ZDQxUc/oca3RUVMekhKp3AH0JKqCxWT4KbBx9CCeGyJqCEB2g64j8TLZOygLJ52c21mJEC8AyQdLWD5SmPQJYwSMoJP7tL3sXvZhh6b4HWBBx8qbaXMpoMTL77s5CacEHqtUc+bROYARhYQ8NHK8h8D+obT+46uCqqd4eppBTMpsa4KJ3fhAFrgVCWm6dNigC5qbvGbW2FuPhhGB2Equtg2+ze0vEgX24hq3ZXRzYoTxKUWw+jEdPjC+Bbyn3UA77Ul8gWCH/aYJwSdkW77TTFuuK6nwRQ/R/RNKyoaVOdhXMB2oW2A==
C:\windows\tasks\Adobe Flash box Files Update Ver 2015921.job - C:\ProgramData\uiksdl201592116\Dailaymation.exe /check_update
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\QQBrowser Udpater Task(Core).job - C:\Program Files (x86)\Tencent\QQBrowser\QQBrowser.exe -host= -tasks=1
C:\windows\tasks\QQBrowser Udpater Task.job - C:\Program Files (x86)\Tencent\QQBrowser\QQBrowser.exe -host= -tasks
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}]
电脑管家网页防火墙 - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TSWebMon64.dat [2015-09-21 414560]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-08-13 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-08-13 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-08-13 10842096]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-02-13 169768]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-10-30 132736]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
" QQPCTray"=C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCTRAY.EXE [2015-09-21 355296]
"RSDTRAY"=C:\Program Files (x86)\Rising\RSD\popwndexe.exe [2012-09-25 126808]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-10-30 132736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\QQPCRTP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDWFP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VisualDiscovery]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-09-25 11:28:27 ----D---- C:\Program Files\trend micro
2015-09-25 11:28:26 ----D---- C:\rsit
2015-09-24 22:49:27 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\ProductData
2015-09-24 22:48:21 ----D---- C:\ProgramData\ProductData
2015-09-24 22:48:11 ----D---- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2015-09-24 22:48:08 ----D---- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
2015-09-24 22:46:18 ----D---- C:\ProgramData\IObit
2015-09-24 22:46:11 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\IObit
2015-09-24 22:46:07 ----D---- C:\Program Files (x86)\IObit
2015-09-24 15:03:52 ----SHD---- C:\Config.Msi
2015-09-24 11:55:20 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\AVG
2015-09-24 11:54:26 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\TuneUp Software
2015-09-24 11:49:23 ----D---- C:\ProgramData\MFAData
2015-09-24 11:46:50 ----D---- C:\ProgramData\Avg
2015-09-24 11:46:49 ----HD---- C:\ProgramData\Common Files
2015-09-22 19:46:20 ----D---- C:\ProgramData\Malwarebytes
2015-09-21 19:48:40 ----A---- C:\windows\SYSWOW64\drivers\TS888x64.sys
2015-09-21 19:42:39 ----N---- C:\windows\system32\drivers\rsndisp.sys
2015-09-21 19:42:38 ----N---- C:\windows\system32\drivers\sysmon.sys
2015-09-21 19:42:38 ----N---- C:\windows\system32\drivers\rsutils.sys
2015-09-21 19:39:54 ----D---- C:\ProgramData\TXQMPC
2015-09-21 19:39:51 ----D---- C:\Program Files (x86)\Rising
2015-09-21 19:39:50 ----D---- C:\ProgramData\Rising
2015-09-21 19:36:34 ----D---- C:\Program Files (x86)\yyzb_201509211936
2015-09-21 19:34:57 ----A---- C:\windows\system32\drivers\TAOAccelerator64.sys
2015-09-21 19:34:55 ----D---- C:\Program Files\Common Files\Tencent
2015-09-21 19:34:47 ----A---- C:\windows\system32\drivers\TAOKernel64.sys
2015-09-21 19:34:46 ----A---- C:\windows\system32\drivers\TFsFltX64.sys
2015-09-21 19:33:28 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\Tencent
2015-09-21 19:33:28 ----D---- C:\Program Files (x86)\Tencent
2015-09-21 19:33:13 ----D---- C:\ProgramData\Tencent
2015-09-21 19:10:45 ----D---- C:\Program Files (x86)\26770e5a-280e-4dfa-8260-ad71d031841e
2015-09-21 19:01:58 ----D---- C:\Program Files (x86)\334a952c-7f11-4051-8ef2-b8d6f554dc13
2015-09-21 19:01:28 ----D---- C:\Program Files (x86)\globalUpdate
2015-09-21 18:59:15 ----A---- C:\ProgramData\inf.dat
2015-09-21 18:59:13 ----A---- C:\ProgramData\mfkkhcmhltpt.dll
2015-09-21 18:58:52 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\cpuminer
2015-09-21 18:58:46 ----D---- C:\ProgramData\adb
2015-09-21 18:58:43 ----D---- C:\Program Files (x86)\Seznam.cz
2015-09-21 18:58:40 ----D---- C:\ProgramData\uiksdl201592116
2015-09-21 18:58:40 ----D---- C:\ProgramData\4997GameBox_Data
2015-09-21 18:58:08 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\Seznam.cz
2015-09-21 18:58:04 ----D---- C:\ppsfile
2015-09-21 18:56:46 ----D---- C:\IQIYI Video
2015-09-21 18:53:59 ----D---- C:\Program Files (x86)\baidu
2015-09-09 17:16:37 ----A---- C:\windows\SYSWOW64\msxml6.dll
2015-09-09 17:16:37 ----A---- C:\windows\system32\msxml6.dll
2015-09-09 17:16:37 ----A---- C:\windows\system32\msxml3.dll
2015-09-09 17:16:36 ----A---- C:\windows\SYSWOW64\msxml3.dll
2015-09-09 17:16:34 ----A---- C:\windows\system32\UtcResources.dll
2015-09-09 17:16:34 ----A---- C:\windows\system32\tdh.dll
2015-09-09 17:16:34 ----A---- C:\windows\system32\diagtrack.dll
2015-09-09 17:16:33 ----A---- C:\windows\SYSWOW64\tdh.dll
2015-09-09 17:16:32 ----A---- C:\windows\SYSWOW64\gdi32.dll
2015-09-09 17:16:32 ----A---- C:\windows\system32\gdi32.dll
2015-09-09 17:16:32 ----A---- C:\windows\system32\consent.exe
2015-09-09 17:16:30 ----A---- C:\windows\system32\SettingsHandlers.dll
2015-09-09 17:16:29 ----A---- C:\windows\system32\profsvc.dll
2015-09-09 17:16:20 ----AC---- C:\windows\system32\drivers\bthpan.sys
2015-09-09 16:18:26 ----A---- C:\windows\system32\wucltux.dll
2015-09-09 16:18:26 ----A---- C:\windows\system32\wuaueng.dll
2015-09-09 16:18:25 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-09-09 16:18:25 ----A---- C:\windows\system32\WUSettingsProvider.dll
2015-09-09 16:18:25 ----A---- C:\windows\system32\wuauclt.exe
2015-09-09 16:18:25 ----A---- C:\windows\system32\wuapi.dll
2015-09-09 16:18:24 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-09-09 16:18:24 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-09-09 16:18:24 ----A---- C:\windows\system32\wuwebv.dll
2015-09-09 16:18:24 ----A---- C:\windows\system32\wudriver.dll
2015-09-09 16:18:24 ----A---- C:\windows\system32\wuapp.exe
2015-09-09 16:18:22 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-09-09 16:17:43 ----A---- C:\windows\system32\taskeng.exe
2015-09-09 16:17:43 ----A---- C:\windows\system32\schedsvc.dll
2015-09-09 16:17:42 ----A---- C:\windows\SYSWOW64\taskeng.exe
2015-09-09 16:17:42 ----A---- C:\windows\SYSWOW64\schtasks.exe
2015-09-09 16:17:42 ----A---- C:\windows\system32\schtasks.exe
2015-09-09 16:17:37 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-09-09 16:17:37 ----A---- C:\windows\system32\InkEd.dll
2015-09-09 16:17:35 ----A---- C:\windows\system32\Windows.UI.Immersive.dll
2015-09-09 16:17:34 ----A---- C:\windows\SYSWOW64\Windows.UI.Immersive.dll
2015-09-09 16:17:34 ----A---- C:\windows\system32\SettingSync.dll
2015-09-09 16:17:34 ----A---- C:\windows\system32\authui.dll
2015-09-09 16:17:33 ----A---- C:\windows\SYSWOW64\authui.dll
2015-09-09 16:17:30 ----A---- C:\windows\SYSWOW64\SettingSync.dll
2015-09-09 16:17:29 ----A---- C:\windows\SYSWOW64\shacct.dll
2015-09-09 16:17:29 ----A---- C:\windows\system32\shacct.dll
2015-09-09 16:17:10 ----A---- C:\windows\SYSWOW64\appidapi.dll
2015-09-09 16:17:10 ----A---- C:\windows\system32\appidsvc.dll
2015-09-09 16:17:10 ----A---- C:\windows\system32\appidapi.dll
2015-09-09 16:16:55 ----A---- C:\windows\system32\mshtml.dll
2015-09-09 16:16:49 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-09-09 16:16:41 ----A---- C:\windows\system32\ieframe.dll
2015-09-09 16:16:39 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-09-09 16:16:37 ----A---- C:\windows\system32\jscript9.dll
2015-09-09 16:16:34 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-09-09 16:16:33 ----A---- C:\windows\system32\iertutil.dll
2015-09-09 16:16:32 ----A---- C:\windows\system32\wininet.dll
2015-09-09 16:16:31 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-09-09 16:16:31 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-09-09 16:16:30 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-09-09 16:16:30 ----A---- C:\windows\system32\urlmon.dll
2015-09-09 16:16:29 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-09-09 16:16:29 ----A---- C:\windows\system32\jscript.dll
2015-09-09 16:16:28 ----A---- C:\windows\system32\iedkcs32.dll
2015-09-09 16:16:28 ----A---- C:\windows\system32\ie4uinit.exe
2015-09-09 16:16:27 ----A---- C:\windows\system32\vbscript.dll
2015-09-09 16:16:26 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-09-09 16:16:21 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-09-09 16:16:21 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-09-09 16:16:19 ----A---- C:\windows\system32\webcheck.dll
2015-09-09 16:16:19 ----A---- C:\windows\system32\msfeeds.dll
2015-09-09 16:16:18 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-09-09 16:16:16 ----A---- C:\windows\system32\inetcomm.dll
2015-09-09 16:16:10 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2015-09-09 16:16:10 ----A---- C:\windows\system32\ieapfltr.dll
2015-09-09 16:16:08 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-09-09 16:14:52 ----A---- C:\windows\system32\win32k.sys
2015-09-09 16:14:52 ----A---- C:\windows\system32\atmfd.dll
2015-09-09 16:14:49 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-09-09 16:14:49 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-09-09 16:14:49 ----A---- C:\windows\system32\atmlib.dll
2015-09-09 16:13:51 ----A---- C:\windows\system32\tzsync.exe
======List of files/folders modified in the last 1 month======
2015-09-25 11:28:34 ----D---- C:\windows\Prefetch
2015-09-25 11:28:27 ----RD---- C:\Program Files
2015-09-25 11:16:13 ----D---- C:\windows\system32\sru
2015-09-25 10:00:06 ----D---- C:\windows\Temp
2015-09-25 02:24:44 ----D---- C:\windows\system32\config
2015-09-25 02:10:08 ----D---- C:\windows\Microsoft.NET
2015-09-25 00:45:15 ----SHD---- C:\System Volume Information
2015-09-24 23:13:31 ----D---- C:\windows\Tasks
2015-09-24 23:13:31 ----D---- C:\windows\system32\Tasks
2015-09-24 23:13:28 ----D---- C:\windows\system32\drivers
2015-09-24 22:48:21 ----HD---- C:\ProgramData
2015-09-24 22:48:21 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\Apple Computer
2015-09-24 22:48:07 ----D---- C:\Program Files (x86)\Common Files
2015-09-24 22:46:13 ----SHD---- C:\windows\Installer
2015-09-24 22:46:13 ----RD---- C:\Program Files (x86)
2015-09-24 22:45:07 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\vlc
2015-09-24 22:33:31 ----D---- C:\windows\SysWOW64
2015-09-24 22:16:30 ----RAD---- C:\windows\System32
2015-09-24 22:16:30 ----D---- C:\windows\Inf
2015-09-24 22:16:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-09-24 17:26:30 ----SD---- C:\Users\Lukáš Handl\AppData\Roaming\Microsoft
2015-09-24 15:22:22 ----AD---- C:\Users
2015-09-24 15:10:21 ----D---- C:\ProgramData\LU
2015-09-24 14:59:30 ----D---- C:\Program Files\Common Files
2015-09-24 14:57:39 ----D---- C:\Program Files (x86)\Google
2015-09-24 11:54:15 ----HD---- C:\windows\ELAMBKUP
2015-09-22 20:58:22 ----D---- C:\windows\CbsTemp
2015-09-22 20:58:16 ----D---- C:\windows\WinSxS
2015-09-22 20:57:56 ----D---- C:\windows\debug
2015-09-22 20:23:17 ----D---- C:\windows\addins
2015-09-22 20:21:53 ----D---- C:\Program Files (x86)\Lenovo
2015-09-22 20:21:46 ----D---- C:\Program Files (x86)\Apple Software Update
2015-09-22 20:21:46 ----D---- C:\Program Files (x86)\Adobe
2015-09-22 19:02:29 ----AD---- C:\Windows
2015-09-22 18:04:08 ----D---- C:\Users\Lukáš Handl\AppData\Roaming\TeamViewer
2015-09-22 18:03:39 ----D---- C:\windows\Panther
2015-09-22 18:03:36 ----D---- C:\windows\Logs
2015-09-22 17:55:05 ----D---- C:\windows\rescache
2015-09-21 20:47:18 ----RSD---- C:\windows\Fonts
2015-09-21 19:48:40 ----D---- C:\windows\SYSWOW64\drivers
2015-09-21 18:58:12 ----SHD---- C:\$Recycle.Bin
2015-09-17 22:54:59 ----D---- C:\Program Files (x86)\Opera
2015-09-17 10:35:16 ----D---- C:\windows\system32\DriverStore
2015-09-16 00:08:40 ----D---- C:\windows\AppReadiness
2015-09-15 03:18:38 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-09-12 18:03:38 ----D---- C:\windows\system32\en-US
2015-09-12 18:03:38 ----D---- C:\windows\system32\cs-CZ
2015-09-12 18:03:36 ----D---- C:\windows\PolicyDefinitions
2015-09-12 18:03:36 ----D---- C:\Program Files\Windows Journal
2015-09-12 18:03:36 ----D---- C:\Program Files\Internet Explorer
2015-09-12 18:03:36 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-11 20:29:42 ----RSD---- C:\windows\assembly
2015-09-09 17:40:58 ----D---- C:\ProgramData\Microsoft Help
2015-09-09 17:32:23 ----A---- C:\windows\win.ini
2015-09-09 17:28:19 ----D---- C:\windows\system32\MRT
2015-09-09 17:19:36 ----D---- C:\windows\SYSWOW64\en-US
2015-09-09 17:19:36 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-09-09 16:13:01 ----D---- C:\windows\system32\catroot2
2015-08-31 17:51:49 ----HD---- C:\Program Files\WindowsApps
2015-08-26 18:37:02 ----A---- C:\windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MBI;@oem10.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\windows\System32\drivers\MBI.sys [2013-10-10 29464]
R1 QMUdisk;tencent QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QMUdisk64.sys [2015-09-21 80184]
R1 rsutils;rsutils; C:\windows\system32\DRIVERS\rsutils.sys [2015-04-09 71760]
R1 TSSysKit;TSSysKit; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TSSysKit64.sys [2015-09-21 87352]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 QQSysMonX64;QQSysMonX64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQSysMonX64.sys [2015-09-21 138040]
R2 sysmon;sysmon; C:\windows\system32\DRIVERS\sysmon.sys [2015-04-30 119256]
R2 TAOKernelDriver;Tencent TAO kernel driver.; \??\C:\windows\system32\drivers\TAOKernel64.sys [2015-09-21 274232]
R3 ACPIVPC;@oem26.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2014-08-13 35576]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 athr;@oem18.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athwbx.sys [2013-11-13 3880448]
R3 BTATH_BUS;@oem14.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2013-10-30 34384]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2013-10-30 596168]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2014-01-27 1474240]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcDAud;@oem4.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
R3 iwdbus;@oem7.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 RSUSBVSTOR;@oem22.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-09-24 329944]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-08-15 830680]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-24 34544]
R3 SNP2UVC;@oem20.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2014-01-24 2853400]
R3 SynTP;@oem13.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-12-24 532720]
R3 TAOAccelerator;Tencent TAOAccelerator driver.; \??\C:\windows\system32\Drivers\TAOAccelerator64.sys [2015-08-21 87160]
R3 TFsFlt;TFsFlt; C:\windows\system32\Drivers\TFsFltX64.sys [2015-09-21 87864]
R3 TS888x64;TS888x64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TS888x64.sys [2015-09-24 28984]
R3 TXEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\windows\System32\drivers\TXEIx64.sys [2014-01-15 88592]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
R4 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys []
S1 TSDefenseBt;TSDefenseBt; \??\C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TSDefenseBT64.sys [2015-09-21 28472]
S2 VDWFP;VDWFP; \??\C:\windows\system32\Drivers\VDWFP64.sys []
S3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2013-10-30 89800]
S3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2013-10-30 338120]
S3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2013-10-30 116424]
S3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2013-10-30 179432]
S3 BTATH_LWFLT;@oem21.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2013-10-30 77464]
S3 BTATH_RCP;@oem23.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2013-10-30 137928]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2015-07-10 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 dg_ssudbus;@oem31.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem6.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IT9135BDA;@oem28.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\windows\System32\Drivers\IT9135BDA.sys [2014-11-06 165504]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys []
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 ssudmdm;@oem33.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 USBAAPL64;@oem29.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2014-08-16 54784]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-20 77128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-10-30 317568]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2014-03-12 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-03-06 584632]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-08-13 198192]
R2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-02-18 38896]
R2 PerfTraceService;PerfTraceService; C:\Program Files (x86)\Tencent\QQBrowser\Service\PerfTraceService.exe [2015-09-21 278880]
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-08-13 288240]
R2 QQPCRTP;QQPCMgr RTP Service; C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\QQPCRTP.exe [2015-09-21 301728]
R2 RsMgrSvc;Rsd Service; C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe [2015-08-06 196288]
R2 RsRavMon;Rav Service; C:\Program Files (x86)\Rising\RAV\ravmond.exe [2014-05-15 277552]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe []
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-03-25 5447952]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-02-13 643880]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-09-24 2909472]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-24 269000]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2014-03-12 279024]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-10-28 654848]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-08-13 305136]
S3 TAOFrame;TAOFrame; C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16575.227\TAOFrame.exe [2015-09-21 293856]
-----------------EOF-----------------
Tady přidávám screeny:
Kód: Vybrat vše
http://i59.tinypic.com/2vb3ij6.jpgKód: Vybrat vše
http://i57.tinypic.com/2r5amgx.jpgKód: Vybrat vše
http://i62.tinypic.com/a4x24w.jpgKód: Vybrat vše
http://i59.tinypic.com/j9q6i0.jpg
Stahnete AdwCleaner 
Ale je potreba to docistit poradne, jinak je to za chvili zpatky.
Přispějete na provoz fóra?