Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vytížený procesor

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Vytížený procesor

#1 Příspěvek od Rolandman »

Dobrý den, chtěl bych dát na kontrolu log a při té příležitosti se zeptat na problém, který se před pár dny vyskytl. Správce úloh mi ukazuje vytížení procesoru na 50% , děje se to vždy když nejsem třeba hodinku na PC a sotva se k němu vrátím celý systém je zasekaný a musím jej restartovat. Jsou to dva konkrétní procesy u kterých mi čísla naskakují k těm 50%, jeden je pojmenovaný jako procento doby nečinnosti a druhý je schvost.exe , přičemž u toho prvního je číslo vysoké stále a když naskočí ještě onen schvost.exe tak se na počítačí nedá nic dělat. Prosím o pomoc, zde je log

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jakub at 2016-01-30 22:45:30
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 10 GB (23%) free of 45 GB
Total RAM: 4095 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:45:34, on 30.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Jakub.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Programy\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6372 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {80C173B8-8EA3-44C2-90F1-ED8F644332EC}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
ngservice.exe pipeserver
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jakub\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\gb59iffs.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-25 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-08-15 8484056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"=D:\Programy\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyComGames]
C:\Users\Jakub\AppData\Local\MyComGames\MyComGames.exe [2016-01-29 4769136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
D:\Filmy a Hry\steam\Steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamePark klient 2.lnk]
D:\Programy\GAMEPA~1\gpcl.exe [2011-07-29 442880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-24 5515496]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-30 22:38:41 ----D---- C:\rsit
2016-01-20 15:06:01 ----D---- C:\Windows\pss
2016-01-19 20:10:18 ----D---- C:\Users\Jakub\AppData\Roaming\The Creative Assembly
2016-01-16 12:38:21 ----D---- C:\Users\Jakub\AppData\Roaming\Microsoft Games
2016-01-16 10:43:03 ----D---- C:\ProgramData\Package Cache
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2016-01-16 10:42:48 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2016-01-16 10:42:48 ----A---- C:\Windows\system32\xactengine3_7.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx10_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\system32\D3DX9_43.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2016-01-16 10:42:41 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2016-01-16 10:42:41 ----A---- C:\Windows\system32\XAudio2_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\system32\d3dcsx_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\system32\D3DX9_42.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\d3dx10_41.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2016-01-16 10:42:31 ----A---- C:\Windows\system32\D3DX9_41.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\system32\D3DX9_40.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\xactengine3_3.dll
2016-01-16 10:42:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2016-01-16 10:42:22 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2016-01-16 10:42:22 ----A---- C:\Windows\system32\xactengine3_2.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\d3dx10_39.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2016-01-16 10:42:19 ----A---- C:\Windows\system32\D3DX9_39.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\D3DX9_38.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\system32\D3DX9_37.dll
2016-01-16 10:42:08 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2016-01-16 10:42:08 ----A---- C:\Windows\system32\xactengine2_10.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\system32\d3dx9_36.dll
2016-01-16 10:42:04 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2016-01-16 10:42:04 ----A---- C:\Windows\system32\xactengine2_9.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\system32\d3dx9_35.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\X3DAudio1_2.dll

======List of files/folders modified in the last 1 month======

2016-01-30 22:45:33 ----D---- C:\Program Files\trend micro
2016-01-30 22:44:39 ----D---- C:\Windows\Temp
2016-01-30 22:43:01 ----D---- C:\Windows\system32\config
2016-01-30 18:33:19 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2016-01-30 18:33:12 ----D---- C:\Windows\System32
2016-01-30 18:33:12 ----D---- C:\Windows\inf
2016-01-30 18:33:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-30 18:29:36 ----D---- C:\Windows\Prefetch
2016-01-30 18:29:07 ----D---- C:\Windows\system32\drivers
2016-01-30 18:08:45 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2016-01-30 14:46:13 ----D---- C:\Users\Jakub\AppData\Roaming\uTorrent
2016-01-28 14:02:58 ----D---- C:\Windows
2016-01-27 20:04:52 ----SHD---- C:\System Volume Information
2016-01-26 12:45:12 ----D---- C:\ProgramData\ProductData
2016-01-20 20:15:08 ----D---- C:\Windows\SysWOW64
2016-01-20 20:15:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 19:33:20 ----SHD---- C:\Windows\Installer
2016-01-19 19:32:58 ----RSD---- C:\Windows\assembly
2016-01-19 19:03:04 ----D---- C:\Windows\Logs
2016-01-19 18:56:45 ----D---- C:\Program Files (x86)\Common Files
2016-01-19 18:56:02 ----D---- C:\Windows\winsxs
2016-01-16 15:45:13 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-01-16 12:39:20 ----SD---- C:\Users\Jakub\AppData\Roaming\Microsoft
2016-01-16 10:43:03 ----HD---- C:\ProgramData
2016-01-15 11:58:03 ----D---- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Pro

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-06-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-06-24 272248]
R0 mv61xx;mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [2015-03-08 183144]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-06-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-06-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-27 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-03-24 283200]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-03-08 26528]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-06-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-06-24 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-06-24 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-06-24 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-08-15 325632]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-03-08 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-08-15 4496600]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2015-03-08 64040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2015-04-02 15416]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-10-24 22200]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-08-15 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-10-25 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2016-01-16 214520]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-06-24 4034896]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#2 Příspěvek od Rudy »

Zdravím!

Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#3 Příspěvek od Rolandman »

Tak tady

# AdwCleaner v5.032 - Logfile created 31/01/2016 at 15:35:09
# Updated 31/01/2016 by Xplode
# Database : 2016-01-31.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Jakub - JAKUB-PC
# Running from : C:\Users\Jakub\Desktop\adwcleaner_5.032.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\eSupport.com
[-] Folder Deleted : C:\Users\Jakub\AppData\Local\eSupport.com
[-] Folder Deleted : C:\Users\Jakub\AppData\Local\Installer\Installsense_6228
[-] Folder Deleted : C:\Users\Jakub\AppData\Local\Installer\Install_14267
[-] Folder Deleted : C:\Users\Jakub\AppData\Local\Installer\Install_23968

***** [ Files ] *****

[-] File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\gb59iffs.default\user.js

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\eSupport.com
[!] Key Not Deleted : HKU\S-1-5-21-1694134875-3310667643-3196201430-1001\Software\eSupport.com

***** [ Web browsers ] *****

[-] [C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\gb59iffs.default\prefs.js] [Preference] Deleted : user_pref("network.hxxp.request.max-start-delay", 0);

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1555 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#5 Příspěvek od Rolandman »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jakub at 2016-01-31 19:57:01
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 4 GB (8%) free of 45 GB
Total RAM: 4095 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:03, on 31.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\Programy\Mozilla\firefox.exe
C:\Program Files\trend micro\Jakub.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Programy\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6405 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
taskeng.exe {50B2C241-344E-41D6-9AC1-8ADC16392B51}
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\system32\wuauclt.exe"
"D:\Programy\Mozilla\firefox.exe"
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jakub\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\gb59iffs.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-25 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-08-15 8484056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"=D:\Programy\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyComGames]
C:\Users\Jakub\AppData\Local\MyComGames\MyComGames.exe [2016-01-29 4769136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
D:\Filmy a Hry\steam\Steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamePark klient 2.lnk]
D:\Programy\GAMEPA~1\gpcl.exe [2011-07-29 442880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-24 5515496]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-31 15:33:49 ----D---- C:\AdwCleaner
2016-01-30 22:38:41 ----D---- C:\rsit
2016-01-20 15:06:01 ----D---- C:\Windows\pss
2016-01-19 20:10:18 ----D---- C:\Users\Jakub\AppData\Roaming\The Creative Assembly
2016-01-16 12:38:21 ----D---- C:\Users\Jakub\AppData\Roaming\Microsoft Games
2016-01-16 10:43:03 ----D---- C:\ProgramData\Package Cache
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2016-01-16 10:42:48 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2016-01-16 10:42:48 ----A---- C:\Windows\system32\xactengine3_7.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx10_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\system32\D3DX9_43.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2016-01-16 10:42:41 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2016-01-16 10:42:41 ----A---- C:\Windows\system32\XAudio2_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\system32\d3dcsx_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\system32\D3DX9_42.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\d3dx10_41.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2016-01-16 10:42:31 ----A---- C:\Windows\system32\D3DX9_41.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\system32\D3DX9_40.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\xactengine3_3.dll
2016-01-16 10:42:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2016-01-16 10:42:22 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2016-01-16 10:42:22 ----A---- C:\Windows\system32\xactengine3_2.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\d3dx10_39.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2016-01-16 10:42:19 ----A---- C:\Windows\system32\D3DX9_39.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\D3DX9_38.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\system32\D3DX9_37.dll
2016-01-16 10:42:08 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2016-01-16 10:42:08 ----A---- C:\Windows\system32\xactengine2_10.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\system32\d3dx9_36.dll
2016-01-16 10:42:04 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2016-01-16 10:42:04 ----A---- C:\Windows\system32\xactengine2_9.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\system32\d3dx9_35.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\X3DAudio1_2.dll

======List of files/folders modified in the last 1 month======

2016-01-31 19:57:03 ----D---- C:\Windows\Prefetch
2016-01-31 19:57:02 ----D---- C:\Windows\Temp
2016-01-31 19:57:02 ----D---- C:\Program Files\trend micro
2016-01-31 16:42:43 ----D---- C:\Windows\system32\config
2016-01-31 16:18:41 ----D---- C:\Users\Jakub\AppData\Roaming\uTorrent
2016-01-31 15:35:09 ----RD---- C:\Program Files (x86)
2016-01-30 18:33:19 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2016-01-30 18:33:12 ----D---- C:\Windows\System32
2016-01-30 18:33:12 ----D---- C:\Windows\inf
2016-01-30 18:33:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-30 18:29:07 ----D---- C:\Windows\system32\drivers
2016-01-30 18:08:45 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2016-01-28 14:02:58 ----D---- C:\Windows
2016-01-27 20:04:52 ----SHD---- C:\System Volume Information
2016-01-26 12:45:12 ----D---- C:\ProgramData\ProductData
2016-01-20 20:15:08 ----D---- C:\Windows\SysWOW64
2016-01-20 20:15:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 19:33:20 ----SHD---- C:\Windows\Installer
2016-01-19 19:32:58 ----RSD---- C:\Windows\assembly
2016-01-19 19:03:04 ----D---- C:\Windows\Logs
2016-01-19 18:56:45 ----D---- C:\Program Files (x86)\Common Files
2016-01-19 18:56:02 ----D---- C:\Windows\winsxs
2016-01-16 15:45:13 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-01-16 12:39:20 ----SD---- C:\Users\Jakub\AppData\Roaming\Microsoft
2016-01-16 10:43:03 ----HD---- C:\ProgramData
2016-01-15 11:58:03 ----D---- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Pro

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-06-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-06-24 272248]
R0 mv61xx;mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [2015-03-08 183144]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-06-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-06-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-27 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-03-24 283200]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-03-08 26528]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-06-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-06-24 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-06-24 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-06-24 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-08-15 325632]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-03-08 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-08-15 4496600]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2015-03-08 64040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2015-04-02 15416]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-10-24 22200]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-08-15 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-10-25 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2016-01-16 214520]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-06-24 4034896]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#7 Příspěvek od Rolandman »

Tady log z OTM, během toho co běžel sken mi vyskočila systémová hláška o kritické chybě a potřebě restartovat PC. Vše se ale zdá ok

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jakub
->Temp folder emptied: 233595927 bytes
->Temporary Internet Files folder emptied: 7629663 bytes
->Java cache emptied: 290292 bytes
->FireFox cache emptied: 374035734 bytes
->Flash cache emptied: 1968 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 48724286 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 634,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Jakub
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 01312016_211250

Files moved on Reboot...
C:\Users\Jakub\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#8 Příspěvek od Rolandman »

a RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jakub at 2016-01-31 21:18:05
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 4 GB (10%) free of 45 GB
Total RAM: 4095 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:18:09, on 31.1.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Jakub.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Programy\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Programy\Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6372 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {0BB5B3AD-D71F-4EA9-9AA2-2CF9D589468D}
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\01312016_211250.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1694134875-3310667643-3196201430-10011_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1694134875-3310667643-3196201430-10011 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Jakub\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\gb59iffs.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.286 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-25 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-08-15 8484056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Agent"=D:\Programy\DAEMON Tools Pro\DTAgent.exe [2012-10-23 3108480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyComGames]
C:\Users\Jakub\AppData\Local\MyComGames\MyComGames.exe [2016-01-29 4769136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
D:\Filmy a Hry\steam\Steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GamePark klient 2.lnk]
D:\Programy\GAMEPA~1\gpcl.exe [2011-07-29 442880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-24 5515496]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-01-31 21:12:50 ----D---- C:\_OTM
2016-01-31 15:33:49 ----D---- C:\AdwCleaner
2016-01-30 22:38:41 ----D---- C:\rsit
2016-01-20 15:06:01 ----D---- C:\Windows\pss
2016-01-19 20:10:18 ----D---- C:\Users\Jakub\AppData\Roaming\The Creative Assembly
2016-01-16 12:38:21 ----D---- C:\Users\Jakub\AppData\Roaming\Microsoft Games
2016-01-16 10:43:03 ----D---- C:\ProgramData\Package Cache
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAudio2_7.dll
2016-01-16 10:42:49 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2016-01-16 10:42:48 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2016-01-16 10:42:48 ----A---- C:\Windows\system32\xactengine3_7.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\d3dcsx_43.dll
2016-01-16 10:42:47 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx11_43.dll
2016-01-16 10:42:46 ----A---- C:\Windows\system32\d3dx10_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2016-01-16 10:42:44 ----A---- C:\Windows\system32\D3DX9_43.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAudio2_6.dll
2016-01-16 10:42:43 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\xactengine3_6.dll
2016-01-16 10:42:42 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2016-01-16 10:42:41 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2016-01-16 10:42:41 ----A---- C:\Windows\system32\XAudio2_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\xactengine3_5.dll
2016-01-16 10:42:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2016-01-16 10:42:37 ----A---- C:\Windows\system32\d3dcsx_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2016-01-16 10:42:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2016-01-16 10:42:34 ----A---- C:\Windows\system32\D3DX9_42.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\d3dx10_41.dll
2016-01-16 10:42:33 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2016-01-16 10:42:31 ----A---- C:\Windows\system32\D3DX9_41.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAudio2_4.dll
2016-01-16 10:42:30 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\xactengine3_4.dll
2016-01-16 10:42:29 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\d3dx10_40.dll
2016-01-16 10:42:27 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2016-01-16 10:42:25 ----A---- C:\Windows\system32\D3DX9_40.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2016-01-16 10:42:24 ----A---- C:\Windows\system32\xactengine3_3.dll
2016-01-16 10:42:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2016-01-16 10:42:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2016-01-16 10:42:22 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2016-01-16 10:42:22 ----A---- C:\Windows\system32\xactengine3_2.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\d3dx10_39.dll
2016-01-16 10:42:21 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2016-01-16 10:42:19 ----A---- C:\Windows\system32\D3DX9_39.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2016-01-16 10:42:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\xactengine3_1.dll
2016-01-16 10:42:17 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\d3dx10_38.dll
2016-01-16 10:42:15 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2016-01-16 10:42:13 ----A---- C:\Windows\system32\D3DX9_38.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\xactengine3_0.dll
2016-01-16 10:42:12 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\d3dx10_37.dll
2016-01-16 10:42:11 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2016-01-16 10:42:10 ----A---- C:\Windows\system32\D3DX9_37.dll
2016-01-16 10:42:08 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2016-01-16 10:42:08 ----A---- C:\Windows\system32\xactengine2_10.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\d3dx10_36.dll
2016-01-16 10:42:06 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2016-01-16 10:42:05 ----A---- C:\Windows\system32\d3dx9_36.dll
2016-01-16 10:42:04 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2016-01-16 10:42:04 ----A---- C:\Windows\system32\xactengine2_9.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\d3dx10_35.dll
2016-01-16 10:42:03 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2016-01-16 10:42:01 ----A---- C:\Windows\system32\d3dx9_35.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\xactengine2_8.dll
2016-01-16 10:41:59 ----A---- C:\Windows\system32\X3DAudio1_2.dll

======List of files/folders modified in the last 1 month======

2016-01-31 21:18:09 ----D---- C:\Program Files\trend micro
2016-01-31 21:16:51 ----D---- C:\Windows\Prefetch
2016-01-31 21:15:31 ----D---- C:\Windows\Temp
2016-01-31 20:01:51 ----D---- C:\Windows\System32
2016-01-31 20:01:51 ----D---- C:\Windows\inf
2016-01-31 20:01:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-01-31 16:42:43 ----D---- C:\Windows\system32\config
2016-01-31 16:18:41 ----D---- C:\Users\Jakub\AppData\Roaming\uTorrent
2016-01-31 15:35:09 ----RD---- C:\Program Files (x86)
2016-01-30 18:33:19 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2016-01-30 18:29:07 ----D---- C:\Windows\system32\drivers
2016-01-30 18:08:45 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2016-01-28 14:02:58 ----D---- C:\Windows
2016-01-27 20:04:52 ----SHD---- C:\System Volume Information
2016-01-26 12:45:12 ----D---- C:\ProgramData\ProductData
2016-01-20 20:15:08 ----D---- C:\Windows\SysWOW64
2016-01-20 20:15:06 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-01-19 19:33:20 ----SHD---- C:\Windows\Installer
2016-01-19 19:32:58 ----RSD---- C:\Windows\assembly
2016-01-19 19:03:04 ----D---- C:\Windows\Logs
2016-01-19 18:56:45 ----D---- C:\Program Files (x86)\Common Files
2016-01-19 18:56:02 ----D---- C:\Windows\winsxs
2016-01-16 15:45:13 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-01-16 12:39:20 ----SD---- C:\Users\Jakub\AppData\Roaming\Microsoft
2016-01-16 10:43:03 ----HD---- C:\ProgramData
2016-01-15 11:58:03 ----D---- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Pro

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-06-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-06-24 272248]
R0 mv61xx;mv61xx; C:\Windows\system32\DRIVERS\mv61xx.sys [2015-03-08 183144]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-06-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-06-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-06-27 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-03-24 283200]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-03-08 26528]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-06-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-06-24 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-06-24 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-06-24 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-08-15 325632]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-03-08 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2015-08-15 4496600]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2015-03-08 64040]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2015-04-02 15416]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-08-15 10592768]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-10-24 22200]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-08-15 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-10-25 75064]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2016-01-16 214520]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20 269504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-06-24 4034896]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#9 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#10 Příspěvek od Rolandman »

Tenhle krok jsem přece teď udělali, nebo je potřeba udělat ho znovu?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#11 Příspěvek od Rudy »

Není. Omlouvám se, toto patřilo jinam. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#12 Příspěvek od Rolandman »

S tim svchost.exe nic, ale nakonec jsem našel nějaký návod a zastavil jsem automatické vyhledávání aktualizací a už je pokoj :-) sice to teď budu muset dělat manuálně, ale aspoň už to neblbne. Jestli jinak z logu usuzujete že je pc čistý tak je vše v poho.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#13 Příspěvek od Rudy »

To bych vám poradil nyní. Při příští pravidelné aktualizaci (bude příští týden) aktualizace znovu zapněte, možná že se problém upraví sám. Často se to stane.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rolandman
Návštěvník
Návštěvník
Příspěvky: 229
Registrován: 14 čer 2008 11:43

Re: Vytížený procesor

#14 Příspěvek od Rolandman »

snad to tak bude. a OTM a adwcleaner muzu smazat? :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119673
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vytížený procesor

#15 Příspěvek od Rudy »

ADW spusťte a klikněte na >uninstall<. Adw se odinstaluje. OTM spusťte a klikněte na >CleanUp!<. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“