Předem se omlouvám, že otravuji, ale poslední dobou se mi zpomalil PC a seká se mi. Mám podezření na virovou smršť v mém PC. Myslíte, že byste mi mohli poradit, jak se jich případně zbavit? Log v příloze. Mám W10. Díky
Log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Trochy at 2016-01-19 20:56:08
Microsoft Windows 10 Pro
System drive C: has 20 GB (14%) free of 145 GB
Total RAM: 3241 MB (3% free)
HijackThis download failed
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 571736]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 157104]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 192432]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 201136]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2013-12-13 85600]
"BlueStacks Agent"=C:\Program Files\BlueStacks\HD-Agent.exe [2015-07-22 896632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Viber"=C:\Users\Trochy\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"OneDrive"=C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09 551112]
"DellSystemDetect"=C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [2015-02-20 283432]
C:\Users\Trochy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 339456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.mpng"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mjpg"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mvjp"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.yv12"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.444p"=C:\Program Files\t@b\0.958\686\tabdec.dll
"VIDC.FFDS"=ff_vfw.dll
"vidc.XVID"=xvidvfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-19 20:56:10 ----D---- C:\Program Files\trend micro
2016-01-19 20:56:08 ----D---- C:\rsit
2016-01-19 19:43:14 ----D---- C:\Users\Trochy\AppData\Roaming\Enigma Software Group
2016-01-19 19:42:57 ----D---- C:\sh4ldr
2016-01-19 19:41:58 ----A---- C:\WINDOWS\system32\drivers\EsgScanner.sys
2016-01-19 19:41:47 ----D---- C:\Program Files\Enigma Software Group
2016-01-19 19:41:29 ----D---- C:\Users\Trochy\AppData\Roaming\Anvsoft
2016-01-19 19:41:24 ----D---- C:\Program Files\Anvsoft
2016-01-18 22:01:26 ----D---- C:\Program Files\Xvid
2016-01-18 22:01:26 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2016-01-18 22:01:26 ----A---- C:\WINDOWS\system32\xvidcore.dll
2016-01-18 22:01:12 ----A---- C:\WINDOWS\system32\pthreadGC2.dll
2016-01-18 22:01:12 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2016-01-18 22:01:11 ----D---- C:\Program Files\ffdshow
2016-01-18 22:00:38 ----D---- C:\Program Files\AviSynth 2.5
2016-01-18 22:00:08 ----D---- C:\Program Files\Avi2Dvd
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\pcouffin.sys
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\inst.exe
2016-01-18 21:27:27 ----D---- C:\Users\Trochy\AppData\Roaming\Vso
2016-01-18 21:27:13 ----D---- C:\ProgramData\VSO
2016-01-18 21:27:13 ----D---- C:\Program Files\VSO
2016-01-18 21:17:08 ----D---- C:\Program Files\TopByteLabs
2016-01-13 21:50:07 ----D---- C:\WINDOWS\PCHEALTH
2016-01-13 21:49:11 ----SHD---- C:\Config.Msi
2016-01-13 18:24:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 18:24:44 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 18:24:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 18:24:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 18:24:37 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 18:24:36 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 18:24:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 18:24:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-10 19:38:57 ----D---- C:\WINDOWS\cs
2016-01-10 19:38:03 ----AD---- C:\Program Files\Windows Live
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-10 19:37:43 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-10 19:37:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files\Windows Live
2016-01-09 16:08:09 ----D---- C:\Zdenek
======List of files/folders modified in the last 1 month======
2016-01-19 20:56:10 ----RD---- C:\Program Files
2016-01-19 20:54:25 ----D---- C:\WINDOWS\Prefetch
2016-01-19 20:44:59 ----D---- C:\WINDOWS\Temp
2016-01-19 20:21:01 ----D---- C:\WINDOWS\system32\sru
2016-01-19 20:14:47 ----D---- C:\WINDOWS\System32
2016-01-19 20:14:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-19 20:14:46 ----D---- C:\WINDOWS\INF
2016-01-19 19:43:10 ----D---- C:\WINDOWS\system32\Tasks
2016-01-19 19:42:00 ----D---- C:\WINDOWS\system32\drivers
2016-01-18 21:27:13 ----HD---- C:\ProgramData
2016-01-18 20:36:09 ----SHD---- C:\System Volume Information
2016-01-18 20:35:25 ----D---- C:\WINDOWS\system32\config
2016-01-18 18:24:13 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-18 18:03:26 ----D---- C:\Users\Trochy\AppData\Roaming\ViberPC
2016-01-16 13:07:41 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 17:56:59 ----AD---- C:\Program Files\TeamViewer
2016-01-14 23:42:19 ----SHDC---- C:\WINDOWS\Installer
2016-01-14 20:14:48 ----D---- C:\WINDOWS\CbsTemp
2016-01-14 20:08:40 ----D---- C:\WINDOWS\AppReadiness
2016-01-14 03:34:51 ----D---- C:\WINDOWS\WinSxS
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 03:31:49 ----D---- C:\WINDOWS\apppatch
2016-01-14 03:31:34 ----AD---- C:\Program Files\Microsoft Silverlight
2016-01-13 21:51:31 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 21:50:07 ----D---- C:\Windows
2016-01-13 21:47:00 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 21:39:47 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 21:39:40 ----A---- C:\WINDOWS\win.ini
2016-01-13 18:30:49 ----HD---- C:\Program Files\WindowsApps
2016-01-13 18:21:00 ----D---- C:\WINDOWS\system32\catroot2
2016-01-11 19:41:41 ----D---- C:\WINDOWS\system32\NDF
2016-01-10 19:39:00 ----RD---- C:\WINDOWS\assembly
2016-01-10 19:38:30 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-01-10 19:37:30 ----D---- C:\WINDOWS\Logs
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files
2016-01-10 19:34:12 ----SD---- C:\ProgramData\Microsoft
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-04-22 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-04-22 209048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-04-22 81728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-26 428120]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-04-22 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-04-22 74976]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-04-22 106912]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [2015-06-16 131704]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 ApfiltrService;@oem14.inf,%Filter.SvcDesc%;Alps Touch Pad Filter Driver for Windows x86; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2014-06-03 470320]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\b57nd60x.sys [2015-10-30 402432]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2015-06-01 3788752]
R3 MEI;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2010-10-19 41088]
R3 NETwNe32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 32 Bit; C:\WINDOWS\System32\drivers\NETwen01.sys [2015-10-30 2670592]
R3 O2MDRRDR;O2MDRRDR; C:\WINDOWS\System32\drivers\O2MDRw7.sys [2011-01-04 62440]
R3 O2SDJRDR;O2SDJRDR; C:\WINDOWS\System32\drivers\o2sdjw7.sys [2011-11-14 64872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 teamviewervpn;@oem12.inf,%DeviceDescription%;TeamViewer VPN Adapter; C:\WINDOWS\System32\drivers\teamviewervpn.sys [2015-08-18 25088]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-04-22 787760]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 bpenum;Intel(R) Centrino(R) WiMAX Enumerator; C:\WINDOWS\system32\DRIVERS\bpenum.sys [2010-10-25 60416]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-07 96768]
S3 EsgScanner;EsgScanner; C:\WINDOWS\system32\DRIVERS\EsgScanner.sys [2016-01-19 19984]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 ApHidMonitorService;@oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 76120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-22 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 O2FLASH;O2FLASH; C:\WINDOWS\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\system32\srvany.exe [2003-04-19 8192]
R2 OneSyncSvc_da6a2b;Hostitel synchronizace_da6a2b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-22 3207800]
R3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files\BlueStacks\HD-Service.exe [2015-06-16 433784]
R3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [2015-06-16 413304]
R3 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files\BlueStacks\HD-UpdaterService.exe [2015-07-21 831096]
R3 PimIndexMaintenanceSvc_da6a2b;Data kontaktů_da6a2b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_da6a2b;Úložiště uživatelských dat_da6a2b; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3374f9;Hostitel synchronizace_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34323;Hostitel synchronizace_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9b3f30e;Hostitel synchronizace_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_a0ada86;Hostitel synchronizace_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 SpyHunter 4 Service;SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [2016-01-19 784256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3374f9;Služba zasílání zpráv_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34323;Služba zasílání zpráv_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9b3f30e;Služba zasílání zpráv_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_a0ada86;Služba zasílání zpráv_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_da6a2b;Služba zasílání zpráv_da6a2b; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3374f9;Data kontaktů_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34323;Data kontaktů_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9b3f30e;Data kontaktů_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_a0ada86;Data kontaktů_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_3374f9;Úložiště uživatelských dat_3374f9; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_34323;Úložiště uživatelských dat_34323; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_9b3f30e;Úložiště uživatelských dat_9b3f30e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_a0ada86;Úložiště uživatelských dat_a0ada86; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Velmi zpomalený počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Kalashnikow88
- Návštěvník
- Příspěvky: 56
- Registrován: 19 led 2016 20:47
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velmi zpomalený počítač
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Kalashnikow88
- Návštěvník
- Příspěvky: 56
- Registrován: 19 led 2016 20:47
Re: Velmi zpomalený počítač
# AdwCleaner v5.030 - Logfile created 19/01/2016 at 22:53:38
# Updated 17/01/2016 by Xplode
# Database : 2016-01-19.2 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Trochy - TROCHY-PC
# Running from : C:\Users\Trochy\Desktop\adwcleaner_5.030.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\DriverToolkit
[-] Folder Deleted : C:\Program Files\GreenTree Applications
[-] Folder Deleted : C:\ProgramData\ytd video downloader
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mppnoffgpafgpgbaigljliadgbnhljfl
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf
[-] Folder Deleted : C:\Users\Trochy\AppData\Roaming\OpenCandy
***** [ Files ] *****
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mppnoffgpafgpgbaigljliadgbnhljfl_0.localstorage
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mppnoffgpafgpgbaigljliadgbnhljfl_0.localstorage-journal
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage-journal
[-] File Deleted : C:\Users\Trochy\Desktop\YTD Video Downloader.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
***** [ Web browsers ] *****
[-] [C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mppnoffgpafgpgbaigljliadgbnhljfl
[-] [C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : nafaimnnclfjfedmmabolbppcngeolgf
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2493 bytes] ##########
# Updated 17/01/2016 by Xplode
# Database : 2016-01-19.2 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Trochy - TROCHY-PC
# Running from : C:\Users\Trochy\Desktop\adwcleaner_5.030.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files\DriverToolkit
[-] Folder Deleted : C:\Program Files\GreenTree Applications
[-] Folder Deleted : C:\ProgramData\ytd video downloader
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mppnoffgpafgpgbaigljliadgbnhljfl
[-] Folder Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf
[-] Folder Deleted : C:\Users\Trochy\AppData\Roaming\OpenCandy
***** [ Files ] *****
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mppnoffgpafgpgbaigljliadgbnhljfl_0.localstorage
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mppnoffgpafgpgbaigljliadgbnhljfl_0.localstorage-journal
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage
[-] File Deleted : C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage-journal
[-] File Deleted : C:\Users\Trochy\Desktop\YTD Video Downloader.lnk
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}
***** [ Web browsers ] *****
[-] [C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : mppnoffgpafgpgbaigljliadgbnhljfl
[-] [C:\Users\Trochy\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : nafaimnnclfjfedmmabolbppcngeolgf
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2493 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velmi zpomalený počítač
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Kalashnikow88
- Návštěvník
- Příspěvky: 56
- Registrován: 19 led 2016 20:47
Re: Velmi zpomalený počítač
Logfile of random's system information tool 1.10 (written by random/random)
Run by Trochy at 2016-01-20 19:34:02
Microsoft Windows 10 Pro
System drive C: has 20 GB (14%) free of 145 GB
Total RAM: 3241 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:12, on 20.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Users\Trochy\Downloads\RSIT.exe
C:\Program Files\trend micro\Trochy.exe
C:\WINDOWS\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IntelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\Trochy\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-UpdaterService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\system32\IntelCpHeciSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH - O2Micro International - C:\WINDOWS\system32\o2flash.exe
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 7661 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 571736]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 157104]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 192432]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 201136]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2013-12-13 85600]
"BlueStacks Agent"=C:\Program Files\BlueStacks\HD-Agent.exe [2015-07-22 896632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Viber"=C:\Users\Trochy\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"OneDrive"=C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09 551112]
"DellSystemDetect"=C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [2015-02-20 283432]
C:\Users\Trochy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 339456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.mpng"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mjpg"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mvjp"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.yv12"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.444p"=C:\Program Files\t@b\0.958\686\tabdec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-19 22:45:22 ----D---- C:\AdwCleaner
2016-01-19 20:56:10 ----D---- C:\Program Files\trend micro
2016-01-19 20:56:08 ----D---- C:\rsit
2016-01-19 19:41:29 ----D---- C:\Users\Trochy\AppData\Roaming\Anvsoft
2016-01-19 19:41:24 ----D---- C:\Program Files\Anvsoft
2016-01-18 22:00:38 ----D---- C:\Program Files\AviSynth 2.5
2016-01-18 22:00:08 ----D---- C:\Program Files\Avi2Dvd
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\pcouffin.sys
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\inst.exe
2016-01-18 21:27:27 ----D---- C:\Users\Trochy\AppData\Roaming\Vso
2016-01-18 21:27:13 ----D---- C:\ProgramData\VSO
2016-01-18 21:27:13 ----D---- C:\Program Files\VSO
2016-01-13 21:50:07 ----D---- C:\WINDOWS\PCHEALTH
2016-01-13 21:49:11 ----SHD---- C:\Config.Msi
2016-01-13 18:24:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 18:24:44 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 18:24:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 18:24:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 18:24:37 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 18:24:36 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 18:24:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 18:24:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-10 19:38:57 ----D---- C:\WINDOWS\cs
2016-01-10 19:38:03 ----AD---- C:\Program Files\Windows Live
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-10 19:37:43 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-10 19:37:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files\Windows Live
2016-01-09 16:08:09 ----D---- C:\Zdenek
======List of files/folders modified in the last 1 month======
2016-01-20 19:29:37 ----D---- C:\WINDOWS\System32
2016-01-20 19:29:37 ----D---- C:\WINDOWS\INF
2016-01-20 19:29:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-20 19:27:11 ----D---- C:\WINDOWS\system32\sru
2016-01-20 19:27:10 ----D---- C:\WINDOWS\system32\NDF
2016-01-20 19:25:31 ----D---- C:\Users\Trochy\AppData\Roaming\ViberPC
2016-01-20 19:24:54 ----D---- C:\WINDOWS\Temp
2016-01-20 19:12:56 ----D---- C:\WINDOWS\Prefetch
2016-01-19 22:53:43 ----HD---- C:\ProgramData
2016-01-19 22:53:41 ----RD---- C:\Program Files
2016-01-19 21:50:01 ----D---- C:\WINDOWS\system32\config
2016-01-19 21:33:40 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-19 21:18:56 ----HD---- C:\Program Files\WindowsApps
2016-01-19 21:18:56 ----D---- C:\WINDOWS\AppReadiness
2016-01-19 21:08:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-19 21:08:24 ----D---- C:\WINDOWS\system32\drivers
2016-01-18 20:36:09 ----SHD---- C:\System Volume Information
2016-01-16 13:07:41 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 17:56:59 ----AD---- C:\Program Files\TeamViewer
2016-01-14 23:42:19 ----SHDC---- C:\WINDOWS\Installer
2016-01-14 20:14:48 ----D---- C:\WINDOWS\CbsTemp
2016-01-14 03:34:51 ----D---- C:\WINDOWS\WinSxS
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 03:31:49 ----D---- C:\WINDOWS\apppatch
2016-01-14 03:31:34 ----AD---- C:\Program Files\Microsoft Silverlight
2016-01-13 21:51:41 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 21:50:07 ----D---- C:\Windows
2016-01-13 21:47:00 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 21:39:47 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 21:39:40 ----A---- C:\WINDOWS\win.ini
2016-01-13 18:21:00 ----D---- C:\WINDOWS\system32\catroot2
2016-01-10 19:39:00 ----RD---- C:\WINDOWS\assembly
2016-01-10 19:38:30 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-01-10 19:37:30 ----D---- C:\WINDOWS\Logs
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files
2016-01-10 19:34:12 ----SD---- C:\ProgramData\Microsoft
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-04-22 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-04-22 209048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-04-22 81728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-26 428120]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-04-22 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-04-22 74976]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-04-22 106912]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [2015-06-16 131704]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 ApfiltrService;@oem14.inf,%Filter.SvcDesc%;Alps Touch Pad Filter Driver for Windows x86; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2014-06-03 470320]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\b57nd60x.sys [2015-10-30 402432]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2015-06-01 3788752]
R3 MEI;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2010-10-19 41088]
R3 NETwNe32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 32 Bit; C:\WINDOWS\System32\drivers\NETwen01.sys [2015-10-30 2670592]
R3 O2MDRRDR;O2MDRRDR; C:\WINDOWS\System32\drivers\O2MDRw7.sys [2011-01-04 62440]
R3 O2SDJRDR;O2SDJRDR; C:\WINDOWS\System32\drivers\o2sdjw7.sys [2011-11-14 64872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 teamviewervpn;@oem12.inf,%DeviceDescription%;TeamViewer VPN Adapter; C:\WINDOWS\System32\drivers\teamviewervpn.sys [2015-08-18 25088]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-04-22 787760]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 bpenum;Intel(R) Centrino(R) WiMAX Enumerator; C:\WINDOWS\system32\DRIVERS\bpenum.sys [2010-10-25 60416]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-07 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 ApHidMonitorService;@oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 76120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-22 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 O2FLASH;O2FLASH; C:\WINDOWS\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\system32\srvany.exe [2003-04-19 8192]
R2 OneSyncSvc_4ec5d3;Hostitel synchronizace_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-22 3207800]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 PimIndexMaintenanceSvc_4ec5d3;Data kontaktů_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_4ec5d3;Úložiště uživatelských dat_4ec5d3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3374f9;Hostitel synchronizace_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34323;Hostitel synchronizace_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9b3f30e;Hostitel synchronizace_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_a0ada86;Hostitel synchronizace_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files\BlueStacks\HD-Service.exe [2015-06-16 433784]
S3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [2015-06-16 413304]
S3 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files\BlueStacks\HD-UpdaterService.exe [2015-07-21 831096]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3374f9;Služba zasílání zpráv_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34323;Služba zasílání zpráv_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_4ec5d3;Služba zasílání zpráv_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9b3f30e;Služba zasílání zpráv_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_a0ada86;Služba zasílání zpráv_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3374f9;Data kontaktů_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34323;Data kontaktů_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9b3f30e;Data kontaktů_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_a0ada86;Data kontaktů_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_3374f9;Úložiště uživatelských dat_3374f9; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_34323;Úložiště uživatelských dat_34323; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_9b3f30e;Úložiště uživatelských dat_9b3f30e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_a0ada86;Úložiště uživatelských dat_a0ada86; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Run by Trochy at 2016-01-20 19:34:02
Microsoft Windows 10 Pro
System drive C: has 20 GB (14%) free of 145 GB
Total RAM: 3241 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:35:12, on 20.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\conhost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Users\Trochy\Downloads\RSIT.exe
C:\Program Files\trend micro\Trochy.exe
C:\WINDOWS\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IntelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\Trochy\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DellSystemDetect] C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-UpdaterService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\system32\IntelCpHeciSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH - O2Micro International - C:\WINDOWS\system32\o2flash.exe
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 7661 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 571736]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 157104]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 192432]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 201136]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2013-12-13 85600]
"BlueStacks Agent"=C:\Program Files\BlueStacks\HD-Agent.exe [2015-07-22 896632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Viber"=C:\Users\Trochy\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"OneDrive"=C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09 551112]
"DellSystemDetect"=C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M\HPXPP6GV.E3T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [2015-02-20 283432]
C:\Users\Trochy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 339456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.mpng"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mjpg"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mvjp"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.yv12"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.444p"=C:\Program Files\t@b\0.958\686\tabdec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-19 22:45:22 ----D---- C:\AdwCleaner
2016-01-19 20:56:10 ----D---- C:\Program Files\trend micro
2016-01-19 20:56:08 ----D---- C:\rsit
2016-01-19 19:41:29 ----D---- C:\Users\Trochy\AppData\Roaming\Anvsoft
2016-01-19 19:41:24 ----D---- C:\Program Files\Anvsoft
2016-01-18 22:00:38 ----D---- C:\Program Files\AviSynth 2.5
2016-01-18 22:00:08 ----D---- C:\Program Files\Avi2Dvd
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\pcouffin.sys
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\inst.exe
2016-01-18 21:27:27 ----D---- C:\Users\Trochy\AppData\Roaming\Vso
2016-01-18 21:27:13 ----D---- C:\ProgramData\VSO
2016-01-18 21:27:13 ----D---- C:\Program Files\VSO
2016-01-13 21:50:07 ----D---- C:\WINDOWS\PCHEALTH
2016-01-13 21:49:11 ----SHD---- C:\Config.Msi
2016-01-13 18:24:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 18:24:44 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 18:24:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 18:24:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 18:24:37 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 18:24:36 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 18:24:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 18:24:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-10 19:38:57 ----D---- C:\WINDOWS\cs
2016-01-10 19:38:03 ----AD---- C:\Program Files\Windows Live
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-10 19:37:43 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-10 19:37:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files\Windows Live
2016-01-09 16:08:09 ----D---- C:\Zdenek
======List of files/folders modified in the last 1 month======
2016-01-20 19:29:37 ----D---- C:\WINDOWS\System32
2016-01-20 19:29:37 ----D---- C:\WINDOWS\INF
2016-01-20 19:29:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-20 19:27:11 ----D---- C:\WINDOWS\system32\sru
2016-01-20 19:27:10 ----D---- C:\WINDOWS\system32\NDF
2016-01-20 19:25:31 ----D---- C:\Users\Trochy\AppData\Roaming\ViberPC
2016-01-20 19:24:54 ----D---- C:\WINDOWS\Temp
2016-01-20 19:12:56 ----D---- C:\WINDOWS\Prefetch
2016-01-19 22:53:43 ----HD---- C:\ProgramData
2016-01-19 22:53:41 ----RD---- C:\Program Files
2016-01-19 21:50:01 ----D---- C:\WINDOWS\system32\config
2016-01-19 21:33:40 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-19 21:18:56 ----HD---- C:\Program Files\WindowsApps
2016-01-19 21:18:56 ----D---- C:\WINDOWS\AppReadiness
2016-01-19 21:08:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-19 21:08:24 ----D---- C:\WINDOWS\system32\drivers
2016-01-18 20:36:09 ----SHD---- C:\System Volume Information
2016-01-16 13:07:41 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 17:56:59 ----AD---- C:\Program Files\TeamViewer
2016-01-14 23:42:19 ----SHDC---- C:\WINDOWS\Installer
2016-01-14 20:14:48 ----D---- C:\WINDOWS\CbsTemp
2016-01-14 03:34:51 ----D---- C:\WINDOWS\WinSxS
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 03:31:49 ----D---- C:\WINDOWS\apppatch
2016-01-14 03:31:34 ----AD---- C:\Program Files\Microsoft Silverlight
2016-01-13 21:51:41 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 21:50:07 ----D---- C:\Windows
2016-01-13 21:47:00 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 21:39:47 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 21:39:40 ----A---- C:\WINDOWS\win.ini
2016-01-13 18:21:00 ----D---- C:\WINDOWS\system32\catroot2
2016-01-10 19:39:00 ----RD---- C:\WINDOWS\assembly
2016-01-10 19:38:30 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-01-10 19:37:30 ----D---- C:\WINDOWS\Logs
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files
2016-01-10 19:34:12 ----SD---- C:\ProgramData\Microsoft
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-04-22 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-04-22 209048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-04-22 81728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-26 428120]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-04-22 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-04-22 74976]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-04-22 106912]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [2015-06-16 131704]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 ApfiltrService;@oem14.inf,%Filter.SvcDesc%;Alps Touch Pad Filter Driver for Windows x86; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2014-06-03 470320]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\b57nd60x.sys [2015-10-30 402432]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2015-06-01 3788752]
R3 MEI;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2010-10-19 41088]
R3 NETwNe32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 32 Bit; C:\WINDOWS\System32\drivers\NETwen01.sys [2015-10-30 2670592]
R3 O2MDRRDR;O2MDRRDR; C:\WINDOWS\System32\drivers\O2MDRw7.sys [2011-01-04 62440]
R3 O2SDJRDR;O2SDJRDR; C:\WINDOWS\System32\drivers\o2sdjw7.sys [2011-11-14 64872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 teamviewervpn;@oem12.inf,%DeviceDescription%;TeamViewer VPN Adapter; C:\WINDOWS\System32\drivers\teamviewervpn.sys [2015-08-18 25088]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-04-22 787760]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 bpenum;Intel(R) Centrino(R) WiMAX Enumerator; C:\WINDOWS\system32\DRIVERS\bpenum.sys [2010-10-25 60416]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-07 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 ApHidMonitorService;@oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 76120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-22 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 O2FLASH;O2FLASH; C:\WINDOWS\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\system32\srvany.exe [2003-04-19 8192]
R2 OneSyncSvc_4ec5d3;Hostitel synchronizace_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-22 3207800]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R3 PimIndexMaintenanceSvc_4ec5d3;Data kontaktů_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 UnistoreSvc_4ec5d3;Úložiště uživatelských dat_4ec5d3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3374f9;Hostitel synchronizace_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34323;Hostitel synchronizace_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9b3f30e;Hostitel synchronizace_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_a0ada86;Hostitel synchronizace_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files\BlueStacks\HD-Service.exe [2015-06-16 433784]
S3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [2015-06-16 413304]
S3 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files\BlueStacks\HD-UpdaterService.exe [2015-07-21 831096]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3374f9;Služba zasílání zpráv_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34323;Služba zasílání zpráv_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_4ec5d3;Služba zasílání zpráv_4ec5d3; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9b3f30e;Služba zasílání zpráv_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_a0ada86;Služba zasílání zpráv_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3374f9;Data kontaktů_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34323;Data kontaktů_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9b3f30e;Data kontaktů_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_a0ada86;Data kontaktů_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_3374f9;Úložiště uživatelských dat_3374f9; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_34323;Úložiště uživatelských dat_34323; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_9b3f30e;Úložiště uživatelských dat_9b3f30e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_a0ada86;Úložiště uživatelských dat_a0ada86; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velmi zpomalený počítač
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Users\Trochy\AppData\Local\Apps\2.0\BDWAMDLP.76M
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DellSystemDetect"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Kalashnikow88
- Návštěvník
- Příspěvky: 56
- Registrován: 19 led 2016 20:47
Re: Velmi zpomalený počítač
Logfile of random's system information tool 1.10 (written by random/random)
Run by Trochy at 2016-01-20 20:37:53
Microsoft Windows 10 Pro
System drive C: has 21 GB (14%) free of 145 GB
Total RAM: 3241 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:38:07, on 20.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\WINDOWS\system32\conhost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Users\Trochy\Downloads\RSIT.exe
C:\Program Files\trend micro\Trochy.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IntelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\Trochy\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-UpdaterService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\system32\IntelCpHeciSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH - O2Micro International - C:\WINDOWS\system32\o2flash.exe
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 7333 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 571736]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 157104]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 192432]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 201136]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2013-12-13 85600]
"BlueStacks Agent"=C:\Program Files\BlueStacks\HD-Agent.exe [2015-07-22 896632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Viber"=C:\Users\Trochy\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"OneDrive"=C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09 551112]
C:\Users\Trochy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 339456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.mpng"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mjpg"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mvjp"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.yv12"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.444p"=C:\Program Files\t@b\0.958\686\tabdec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-20 20:30:29 ----D---- C:\_OTM
2016-01-19 22:45:22 ----D---- C:\AdwCleaner
2016-01-19 20:56:10 ----D---- C:\Program Files\trend micro
2016-01-19 20:56:08 ----D---- C:\rsit
2016-01-19 19:41:29 ----D---- C:\Users\Trochy\AppData\Roaming\Anvsoft
2016-01-19 19:41:24 ----D---- C:\Program Files\Anvsoft
2016-01-18 22:00:38 ----D---- C:\Program Files\AviSynth 2.5
2016-01-18 22:00:08 ----D---- C:\Program Files\Avi2Dvd
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\pcouffin.sys
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\inst.exe
2016-01-18 21:27:27 ----D---- C:\Users\Trochy\AppData\Roaming\Vso
2016-01-18 21:27:13 ----D---- C:\ProgramData\VSO
2016-01-18 21:27:13 ----D---- C:\Program Files\VSO
2016-01-13 21:50:07 ----D---- C:\WINDOWS\PCHEALTH
2016-01-13 21:49:11 ----SHD---- C:\Config.Msi
2016-01-13 18:24:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 18:24:44 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 18:24:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 18:24:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 18:24:37 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 18:24:36 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 18:24:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 18:24:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-10 19:38:57 ----D---- C:\WINDOWS\cs
2016-01-10 19:38:03 ----AD---- C:\Program Files\Windows Live
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-10 19:37:43 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-10 19:37:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files\Windows Live
2016-01-09 16:08:09 ----D---- C:\Zdenek
======List of files/folders modified in the last 1 month======
2016-01-20 20:37:31 ----D---- C:\WINDOWS\Prefetch
2016-01-20 20:36:03 ----D---- C:\WINDOWS\Temp
2016-01-20 20:35:14 ----D---- C:\WINDOWS\system32\sru
2016-01-20 20:30:39 ----D---- C:\WINDOWS\Tasks
2016-01-20 19:51:56 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-20 19:37:32 ----D---- C:\Users\Trochy\AppData\Roaming\ViberPC
2016-01-20 19:29:37 ----D---- C:\WINDOWS\System32
2016-01-20 19:29:37 ----D---- C:\WINDOWS\INF
2016-01-20 19:29:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-20 19:27:10 ----D---- C:\WINDOWS\system32\NDF
2016-01-19 22:53:43 ----HD---- C:\ProgramData
2016-01-19 22:53:41 ----RD---- C:\Program Files
2016-01-19 21:50:01 ----D---- C:\WINDOWS\system32\config
2016-01-19 21:18:56 ----HD---- C:\Program Files\WindowsApps
2016-01-19 21:18:56 ----D---- C:\WINDOWS\AppReadiness
2016-01-19 21:08:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-19 21:08:24 ----D---- C:\WINDOWS\system32\drivers
2016-01-18 20:36:09 ----SHD---- C:\System Volume Information
2016-01-16 13:07:41 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 17:56:59 ----AD---- C:\Program Files\TeamViewer
2016-01-14 23:42:19 ----SHDC---- C:\WINDOWS\Installer
2016-01-14 20:14:48 ----D---- C:\WINDOWS\CbsTemp
2016-01-14 03:34:51 ----D---- C:\WINDOWS\WinSxS
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 03:31:49 ----D---- C:\WINDOWS\apppatch
2016-01-14 03:31:34 ----AD---- C:\Program Files\Microsoft Silverlight
2016-01-13 21:51:41 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 21:50:07 ----D---- C:\Windows
2016-01-13 21:47:00 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 21:39:47 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 21:39:40 ----A---- C:\WINDOWS\win.ini
2016-01-13 18:21:00 ----D---- C:\WINDOWS\system32\catroot2
2016-01-10 19:39:00 ----RD---- C:\WINDOWS\assembly
2016-01-10 19:38:30 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-01-10 19:37:30 ----D---- C:\WINDOWS\Logs
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files
2016-01-10 19:34:12 ----SD---- C:\ProgramData\Microsoft
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-04-22 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-04-22 209048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-04-22 81728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-26 428120]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-04-22 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-04-22 74976]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-04-22 106912]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [2015-06-16 131704]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 ApfiltrService;@oem14.inf,%Filter.SvcDesc%;Alps Touch Pad Filter Driver for Windows x86; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2014-06-03 470320]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\b57nd60x.sys [2015-10-30 402432]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2015-06-01 3788752]
R3 MEI;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2010-10-19 41088]
R3 NETwNe32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 32 Bit; C:\WINDOWS\System32\drivers\NETwen01.sys [2015-10-30 2670592]
R3 O2MDRRDR;O2MDRRDR; C:\WINDOWS\System32\drivers\O2MDRw7.sys [2011-01-04 62440]
R3 O2SDJRDR;O2SDJRDR; C:\WINDOWS\System32\drivers\o2sdjw7.sys [2011-11-14 64872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 teamviewervpn;@oem12.inf,%DeviceDescription%;TeamViewer VPN Adapter; C:\WINDOWS\System32\drivers\teamviewervpn.sys [2015-08-18 25088]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-04-22 787760]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 bpenum;Intel(R) Centrino(R) WiMAX Enumerator; C:\WINDOWS\system32\DRIVERS\bpenum.sys [2010-10-25 60416]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-07 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 ApHidMonitorService;@oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 76120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-22 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 O2FLASH;O2FLASH; C:\WINDOWS\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\system32\srvany.exe [2003-04-19 8192]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-22 3207800]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1fcb2;Hostitel synchronizace_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3374f9;Hostitel synchronizace_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34323;Hostitel synchronizace_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9b3f30e;Hostitel synchronizace_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_a0ada86;Hostitel synchronizace_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files\BlueStacks\HD-Service.exe [2015-06-16 433784]
S3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [2015-06-16 413304]
S3 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files\BlueStacks\HD-UpdaterService.exe [2015-07-21 831096]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1fcb2;Služba zasílání zpráv_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3374f9;Služba zasílání zpráv_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34323;Služba zasílání zpráv_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9b3f30e;Služba zasílání zpráv_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_a0ada86;Služba zasílání zpráv_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1fcb2;Data kontaktů_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3374f9;Data kontaktů_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34323;Data kontaktů_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9b3f30e;Data kontaktů_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_a0ada86;Data kontaktů_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_1fcb2;Úložiště uživatelských dat_1fcb2; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_3374f9;Úložiště uživatelských dat_3374f9; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_34323;Úložiště uživatelských dat_34323; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_9b3f30e;Úložiště uživatelských dat_9b3f30e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_a0ada86;Úložiště uživatelských dat_a0ada86; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
Run by Trochy at 2016-01-20 20:37:53
Microsoft Windows 10 Pro
System drive C: has 21 GB (14%) free of 145 GB
Total RAM: 3241 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:38:07, on 20.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\WINDOWS\system32\conhost.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Users\Trochy\Downloads\RSIT.exe
C:\Program Files\trend micro\Trochy.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
O4 - HKLM\..\Run: [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
O4 - HKLM\..\Run: [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
O4 - HKLM\..\Run: [IntelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Viber] "C:\Users\Trochy\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) - BlueStack Systems, Inc. - C:\Program Files\BlueStacks\HD-UpdaterService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\system32\IntelCpHeciSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH - O2Micro International - C:\WINDOWS\system32\o2flash.exe
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 7333 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 571736]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 157104]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 192432]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 201136]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PROSet/Wireless []
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2013-12-13 85600]
"BlueStacks Agent"=C:\Program Files\BlueStacks\HD-Agent.exe [2015-07-22 896632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Viber"=C:\Users\Trochy\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"OneDrive"=C:\Users\Trochy\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-09 551112]
C:\Users\Trochy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Trochy\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 339456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.mpng"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mjpg"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.mvjp"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.yv12"=C:\Program Files\t@b\0.958\686\tabdec.dll
"vidc.444p"=C:\Program Files\t@b\0.958\686\tabdec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-20 20:30:29 ----D---- C:\_OTM
2016-01-19 22:45:22 ----D---- C:\AdwCleaner
2016-01-19 20:56:10 ----D---- C:\Program Files\trend micro
2016-01-19 20:56:08 ----D---- C:\rsit
2016-01-19 19:41:29 ----D---- C:\Users\Trochy\AppData\Roaming\Anvsoft
2016-01-19 19:41:24 ----D---- C:\Program Files\Anvsoft
2016-01-18 22:00:38 ----D---- C:\Program Files\AviSynth 2.5
2016-01-18 22:00:08 ----D---- C:\Program Files\Avi2Dvd
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\pcouffin.sys
2016-01-18 21:27:28 ----A---- C:\Users\Trochy\AppData\Roaming\inst.exe
2016-01-18 21:27:27 ----D---- C:\Users\Trochy\AppData\Roaming\Vso
2016-01-18 21:27:13 ----D---- C:\ProgramData\VSO
2016-01-18 21:27:13 ----D---- C:\Program Files\VSO
2016-01-13 21:50:07 ----D---- C:\WINDOWS\PCHEALTH
2016-01-13 21:49:11 ----SHD---- C:\Config.Msi
2016-01-13 18:24:45 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-01-13 18:24:44 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-01-13 18:24:43 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-01-13 18:24:42 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-01-13 18:24:37 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 18:24:36 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-01-13 18:24:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 18:24:34 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-01-13 18:24:33 ----A---- C:\WINDOWS\system32\mfps.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-01-13 18:24:32 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\winload.exe
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\schannel.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\evr.dll
2016-01-13 18:24:31 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\quartz.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\qedit.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\ProximityCommon.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\mftranscode.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\devinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-01-13 18:24:30 ----A---- C:\WINDOWS\system32\advapi32.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\RMSRoamingSecurity.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-01-13 18:24:29 ----A---- C:\WINDOWS\system32\aepic.dll
2016-01-10 19:38:57 ----D---- C:\WINDOWS\cs
2016-01-10 19:38:03 ----AD---- C:\Program Files\Windows Live
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-01-10 19:37:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2016-01-10 19:37:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-10 19:37:43 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-01-10 19:37:40 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files\Windows Live
2016-01-09 16:08:09 ----D---- C:\Zdenek
======List of files/folders modified in the last 1 month======
2016-01-20 20:37:31 ----D---- C:\WINDOWS\Prefetch
2016-01-20 20:36:03 ----D---- C:\WINDOWS\Temp
2016-01-20 20:35:14 ----D---- C:\WINDOWS\system32\sru
2016-01-20 20:30:39 ----D---- C:\WINDOWS\Tasks
2016-01-20 19:51:56 ----D---- C:\WINDOWS\Microsoft.NET
2016-01-20 19:37:32 ----D---- C:\Users\Trochy\AppData\Roaming\ViberPC
2016-01-20 19:29:37 ----D---- C:\WINDOWS\System32
2016-01-20 19:29:37 ----D---- C:\WINDOWS\INF
2016-01-20 19:29:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-20 19:27:10 ----D---- C:\WINDOWS\system32\NDF
2016-01-19 22:53:43 ----HD---- C:\ProgramData
2016-01-19 22:53:41 ----RD---- C:\Program Files
2016-01-19 21:50:01 ----D---- C:\WINDOWS\system32\config
2016-01-19 21:18:56 ----HD---- C:\Program Files\WindowsApps
2016-01-19 21:18:56 ----D---- C:\WINDOWS\AppReadiness
2016-01-19 21:08:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-19 21:08:24 ----D---- C:\WINDOWS\system32\drivers
2016-01-18 20:36:09 ----SHD---- C:\System Volume Information
2016-01-16 13:07:41 ----D---- C:\WINDOWS\system32\DriverStore
2016-01-15 17:56:59 ----AD---- C:\Program Files\TeamViewer
2016-01-14 23:42:19 ----SHDC---- C:\WINDOWS\Installer
2016-01-14 20:14:48 ----D---- C:\WINDOWS\CbsTemp
2016-01-14 03:34:51 ----D---- C:\WINDOWS\WinSxS
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\Boot
2016-01-14 03:31:53 ----D---- C:\WINDOWS\system32\appraiser
2016-01-14 03:31:49 ----D---- C:\WINDOWS\apppatch
2016-01-14 03:31:34 ----AD---- C:\Program Files\Microsoft Silverlight
2016-01-13 21:51:41 ----D---- C:\ProgramData\Microsoft Help
2016-01-13 21:50:07 ----D---- C:\Windows
2016-01-13 21:47:00 ----D---- C:\WINDOWS\system32\MRT
2016-01-13 21:39:47 ----A---- C:\WINDOWS\system32\MRT.exe
2016-01-13 21:39:40 ----A---- C:\WINDOWS\win.ini
2016-01-13 18:21:00 ----D---- C:\WINDOWS\system32\catroot2
2016-01-10 19:39:00 ----RD---- C:\WINDOWS\assembly
2016-01-10 19:38:30 ----AD---- C:\Program Files\Microsoft SQL Server Compact Edition
2016-01-10 19:37:30 ----D---- C:\WINDOWS\Logs
2016-01-10 19:34:20 ----D---- C:\Program Files\Common Files
2016-01-10 19:34:12 ----SD---- C:\ProgramData\Microsoft
2016-01-03 02:40:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-04-22 49904]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-04-22 209048]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-04-22 81728]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-06-26 428120]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 76288]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 7680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-04-22 24144]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-04-22 74976]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-04-22 106912]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [2015-06-16 131704]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 36864]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 62464]
R3 ApfiltrService;@oem14.inf,%Filter.SvcDesc%;Alps Touch Pad Filter Driver for Windows x86; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2014-06-03 470320]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\b57nd60x.sys [2015-10-30 402432]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-10-30 93184]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2015-10-30 61952]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd32.sys [2015-06-01 3788752]
R3 MEI;@oem13.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECI.sys [2010-10-19 41088]
R3 NETwNe32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 32 Bit; C:\WINDOWS\System32\drivers\NETwen01.sys [2015-10-30 2670592]
R3 O2MDRRDR;O2MDRRDR; C:\WINDOWS\System32\drivers\O2MDRw7.sys [2011-01-04 62440]
R3 O2SDJRDR;O2SDJRDR; C:\WINDOWS\System32\drivers\o2sdjw7.sys [2011-11-14 64872]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-10-30 136192]
R3 teamviewervpn;@oem12.inf,%DeviceDescription%;TeamViewer VPN Adapter; C:\WINDOWS\System32\drivers\teamviewervpn.sys [2015-08-18 25088]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 88928]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 83288]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 51040]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 51552]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 27992]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-04-22 787760]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 8192]
S3 bpenum;Intel(R) Centrino(R) WiMAX Enumerator; C:\WINDOWS\system32\DRIVERS\bpenum.sys [2010-10-25 60416]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-01-05 743936]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 26624]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-07 96768]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 17408]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2015-10-30 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 38240]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 66048]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2015-10-30 61936]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 23040]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 45056]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 33792]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 32768]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-10-30 200032]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-10-30 74080]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-10-30 104800]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-10-30 42840]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-10-30 21856]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-10-30 21856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 ApHidMonitorService;@oem14.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 76120]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-22 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
R2 O2FLASH;O2FLASH; C:\WINDOWS\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\system32\srvany.exe [2003-04-19 8192]
R2 TeamViewer;TeamViewer 10; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-22 3207800]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_1fcb2;Hostitel synchronizace_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_3374f9;Hostitel synchronizace_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_34323;Hostitel synchronizace_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_9b3f30e;Hostitel synchronizace_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S2 OneSyncSvc_a0ada86;Hostitel synchronizace_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files\BlueStacks\HD-Service.exe [2015-06-16 433784]
S3 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [2015-06-16 413304]
S3 BstHdUpdaterSvc;BlueStacks Updater Service; C:\Program Files\BlueStacks\HD-UpdaterService.exe [2015-07-21 831096]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\system32\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 26112]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-20 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_1fcb2;Služba zasílání zpráv_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_3374f9;Služba zasílání zpráv_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_34323;Služba zasílání zpráv_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_9b3f30e;Služba zasílání zpráv_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 MessagingService_a0ada86;Služba zasílání zpráv_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_1fcb2;Data kontaktů_1fcb2; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_3374f9;Data kontaktů_3374f9; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_34323;Data kontaktů_34323; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_9b3f30e;Data kontaktů_9b3f30e; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 PimIndexMaintenanceSvc_a0ada86;Data kontaktů_a0ada86; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 900096]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 256512]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_1fcb2;Úložiště uživatelských dat_1fcb2; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_3374f9;Úložiště uživatelských dat_3374f9; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_34323;Úložiště uživatelských dat_34323; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_9b3f30e;Úložiště uživatelských dat_9b3f30e; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S3 UnistoreSvc_a0ada86;Úložiště uživatelských dat_a0ada86; C:\WINDOWS\System32\svchost.exe [2015-10-30 37256]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 37256]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velmi zpomalený počítač
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Kalashnikow88
- Návštěvník
- Příspěvky: 56
- Registrován: 19 led 2016 20:47
Re: Velmi zpomalený počítač
Zda se, ze pocitac se zrychlil. Dekuji moc. Bylo tam hodne viru?
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velmi zpomalený počítač
Jen AdWary a zbytečnosti. Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?