Dobrý den,
mám menší problém se svým miláškem. Poslední dobou nějak nešlape jak má, tzn. jede o dost pomaleji. Občas se také stane, že se např. uprostřed přehrávání videa absolutně zasekne a jediným únikem je vypnutí tlačítkem. V tomto oboru jsem asi tak znalý, jako veverka v řízení jeřábu, tak pevně věřím, že se nade někdo, kdo se v tomto vyzná a pomůže mi, za což předem moc děkuji. Níže přikládám log z RSIT.
Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2016-06-05 20:11:23
Microsoft Windows 8.1 Pro
System drive C: has 64 GB (29%) free of 220 GB
Total RAM: 7603 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:11:31, on 5. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
C:\Program Files\trend micro\ThinkPad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=27368
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [f.lux] "C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [WinFLTray] C:\WINDOWS\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLService - New Softwares.net - C:\WINDOWS\SysWow64\WinFLService.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11693 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-94e0d723-e3af-489c-a120-293705557cec -SystemEventPortName:HostProcess-bc440009-13e6-4b1c-9321-0a1d2a1d9c52 -IoCancelEventPortName:HostProcess-27b894fe-5eab-43b0-9701-d3147eb6a88b -NonStateChangingEventPortName:HostProcess-de35d8c8-5ffc-4c50-8bbd-907d67f77bce -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5dce431a-f6d0-4ec5-8a35-ff7c2a0c169e -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {859aebaa-5d9c-4cfa-990b3e110ffd7d42}
C:\WINDOWS\SysWow64\WinFLService.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
taskhostex.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000710
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
/ChildServer
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding
szndesktop.exe default start
"C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {CA72513D-318D-4F55-9017-7848A923B340}
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\System32\Taskmgr.exe" /2
taskeng.exe {30A203EA-9B7F-404F-A90C-22EDA09E2B68}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource scheduler
"C:\Users\ThinkPad\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07 2518312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22 857792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07 2353448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24 2963184]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [2012-05-22 1000288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"f.lux"=C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"WinFLTray"=C:\WINDOWS\SysWow64\WinFLTray.exe [2015-09-23 330120]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2015-09-23 275848]
"cz.seznam.software.autoupdate"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2016-05-15 814608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-05-04 67840]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-05 20:02:08 ----D---- C:\rsit
2016-05-31 17:48:53 ----D---- C:\Users\ThinkPad\AppData\Roaming\Atari
2016-05-31 17:44:44 ----A---- C:\WINDOWS\patchw32.dll
2016-05-31 17:34:16 ----D---- C:\Program Files (x86)\Atari
2016-05-29 18:01:12 ----D---- C:\ProgramData\Steam
2016-05-23 19:34:25 ----D---- C:\Program Files (x86)\World of Warcraft
2016-05-22 12:05:12 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2016-05-22 10:55:31 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-22 10:55:10 ----D---- C:\Users\ThinkPad\AppData\Roaming\Seznam.cz
2016-05-20 16:54:28 ----D---- C:\Users\ThinkPad\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2016-05-20 16:28:18 ----D---- C:\Program Files (x86)\BFME2PatchSwitcher
2016-05-20 14:26:17 ----D---- C:\SkladiÜtý her bez ladu a skladu
2016-05-13 20:53:20 ----D---- C:\Users\ThinkPad\AppData\Roaming\TubeTycoon
2016-05-11 14:01:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 14:01:58 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 14:01:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 14:01:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 14:01:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\certcli.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 13:59:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-11 13:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 13:59:08 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 13:59:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 13:55:40 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2016-05-11 13:55:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 13:54:05 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-08 00:06:23 ----D---- C:\Program Files (x86)\EA Sports
2016-05-06 15:19:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-06-05 20:11:29 ----D---- C:\WINDOWS\Temp
2016-06-05 20:11:27 ----D---- C:\WINDOWS\Prefetch
2016-06-05 20:11:26 ----D---- C:\Program Files\trend micro
2016-06-05 20:08:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype
2016-06-05 20:02:12 ----D---- C:\Program Files (x86)\trend micro
2016-06-05 20:00:02 ----D---- C:\WINDOWS\system32\sru
2016-06-05 19:36:30 ----D---- C:\Skladiště her bez ladu a skladu
2016-06-05 18:38:42 ----D---- C:\WINDOWS\AppReadiness
2016-06-05 18:28:28 ----RD---- C:\WINDOWS\System32
2016-06-05 18:28:28 ----D---- C:\WINDOWS\Inf
2016-06-05 18:28:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-05 11:44:12 ----SHD---- C:\System Volume Information
2016-06-05 11:42:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-04 23:15:44 ----SHD---- C:\WINDOWS\Installer
2016-06-04 23:15:44 ----D---- C:\ProgramData\Skype
2016-06-04 23:15:34 ----RD---- C:\Program Files (x86)\Skype
2016-06-04 23:04:09 ----D---- C:\Users\ThinkPad\AppData\Roaming\vlc
2016-06-02 18:00:27 ----D---- C:\WINDOWS\SysWOW64
2016-05-31 17:44:44 ----D---- C:\Windows
2016-05-31 17:44:44 ----D---- C:\Program Files (x86)\Common Files
2016-05-31 17:34:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-05-31 17:34:16 ----RD---- C:\Program Files (x86)
2016-05-31 12:07:21 ----HD---- C:\Program Files\WindowsApps
2016-05-30 19:45:41 ----D---- C:\Program Files (x86)\Battle.net
2016-05-30 19:42:31 ----D---- C:\Program Files\Steam
2016-05-29 18:17:42 ----D---- C:\GOG Games
2016-05-29 18:01:12 ----HD---- C:\ProgramData
2016-05-28 20:50:51 ----D---- C:\Martin
2016-05-27 19:50:53 ----D---- C:\WINDOWS\system32\config
2016-05-25 12:22:06 ----D---- C:\ProgramData\Package Cache
2016-05-23 19:31:51 ----D---- C:\Users\ThinkPad\AppData\Roaming\Battle.net
2016-05-23 16:00:48 ----D---- C:\Users\ThinkPad\AppData\Roaming\uTorrent
2016-05-18 16:19:21 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-05-18 16:19:00 ----HD---- C:\WINDOWS\msdownld.tmp
2016-05-18 16:16:05 ----D---- C:\Users\ThinkPad\AppData\Roaming\DAEMON Tools Lite
2016-05-17 16:39:29 ----D---- C:\ProgramData\BioWare
2016-05-17 16:37:52 ----D---- C:\ProgramData\Media Center Programs
2016-05-16 19:32:30 ----RSD---- C:\WINDOWS\assembly
2016-05-16 19:31:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-16 13:06:22 ----D---- C:\WINDOWS\Tasks
2016-05-16 13:06:22 ----D---- C:\WINDOWS\system32\Tasks
2016-05-15 22:39:18 ----D---- C:\WINDOWS\system32\drivers
2016-05-15 11:03:22 ----D---- C:\WINDOWS\CbsTemp
2016-05-15 11:03:17 ----D---- C:\WINDOWS\WinSxS
2016-05-13 15:12:56 ----D---- C:\WINDOWS\rescache
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\wbem
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 22:42:45 ----D---- C:\Program Files\Internet Explorer
2016-05-11 22:42:45 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 22:08:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 22:04:53 ----D---- C:\Program Files\Zoner
2016-05-11 22:04:38 ----RD---- C:\Program Files
2016-05-11 21:32:10 ----D---- C:\Program Files\Windows Journal
2016-05-11 21:31:53 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 20:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 20:36:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 13:50:16 ----D---- C:\WINDOWS\system32\catroot2
2016-05-07 23:56:39 ----D---- C:\WINDOWS\Logs
2016-05-07 22:40:59 ----D---- C:\ProgramData\Glyph
2016-05-06 22:40:06 ----D---- C:\Program Files (x86)\Jets N Guns GOLD
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-05-15 146712]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-12-03 35488]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-25 283064]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2015-08-13 960808]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2015-08-13 117768]
R1 VBoxNetLwf;@oem45.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2015-08-13 146072]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2015-08-13 138904]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 APXACC;@oem5.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-03-17 128664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-05-15 78208]
R2 NEWDRIVER;NEWDRIVER; \??\C:\WINDOWS\SysWow64\WinVDEdrv6.sys [2015-09-23 197648]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2015-03-10 39104]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-08-21 91648]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem16.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-12-13 288480]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2013-04-26 29424]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-04-24 460528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 rzdaendpt;@oem20.inf,%rzdaendpt.SvcDesc%;Razer DeathAdder end point; C:\WINDOWS\System32\drivers\rzdaendpt.sys [2014-09-05 33448]
S3 rzudd;@oem46.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-14 201432]
S3 rzvkeyboard;@oem29.inf,%rzvkeyboard%;Razer Virtual Keyboard Driver; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [2014-09-05 31912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2016-05-15 467016]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2016-05-15 467016]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-05-04 276424]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CxAudMsg;Conexant Audio Message Service; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 FLService;FLService; C:\WINDOWS\SysWow64\WinFLService.exe [2015-09-23 93064]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2013-08-07 2139944]
R2 IBMPMSVC;@oem9.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-11-15 2468496]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-11-13 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-11-13 103736]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2014-06-10 124400]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-07-22 401704]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2016-05-15 970656]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2016-05-15 1435704]
S2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-06 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý PC a jeho občasné zasekávání
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý PC a jeho občasné zasekávání
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Lorgan
- Návštěvník
- Příspěvky: 51
- Registrován: 19 lis 2013 12:24
- Bydliště: Přístup k údajům o bydlení vyžaduje bezpečnostní prověrku pátého stupně :P
Re: Pomalý PC a jeho občasné zasekávání
Děkuji za velice rychlou odezvu!
# Operační system : Windows 8.1 Pro (X64)
# Uživatelské jméno : ThinkPad - LENOVO
# Spuštěno z : C:\Users\ThinkPad\Downloads\adwcleaner_5.119.exe
# Nastavení : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[#] Složka Smazáno : C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [928 bytů] - [05/06/2016 21:42:59]
C:\AdwCleaner\AdwCleaner[C2].txt - [743 bytů] - [16/01/2016 14:01:56]
C:\AdwCleaner\AdwCleaner[R0].txt - [839 bytů] - [14/03/2015 00:02:56]
C:\AdwCleaner\AdwCleaner[R1].txt - [900 bytů] - [14/03/2015 10:50:30]
C:\AdwCleaner\AdwCleaner[S0].txt - [967 bytů] - [14/03/2015 11:13:59]
C:\AdwCleaner\AdwCleaner[S1].txt - [354 bytů] - [05/06/2016 21:06:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [1402 bytů] - [05/06/2016 21:20:03]
C:\AdwCleaner\AdwCleaner[S3].txt - [651 bytů] - [16/01/2016 13:59:52]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1505 bytů] ##########
# Operační system : Windows 8.1 Pro (X64)
# Uživatelské jméno : ThinkPad - LENOVO
# Spuštěno z : C:\Users\ThinkPad\Downloads\adwcleaner_5.119.exe
# Nastavení : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[#] Složka Smazáno : C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Nastavení Winsock vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [928 bytů] - [05/06/2016 21:42:59]
C:\AdwCleaner\AdwCleaner[C2].txt - [743 bytů] - [16/01/2016 14:01:56]
C:\AdwCleaner\AdwCleaner[R0].txt - [839 bytů] - [14/03/2015 00:02:56]
C:\AdwCleaner\AdwCleaner[R1].txt - [900 bytů] - [14/03/2015 10:50:30]
C:\AdwCleaner\AdwCleaner[S0].txt - [967 bytů] - [14/03/2015 11:13:59]
C:\AdwCleaner\AdwCleaner[S1].txt - [354 bytů] - [05/06/2016 21:06:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [1402 bytů] - [05/06/2016 21:20:03]
C:\AdwCleaner\AdwCleaner[S3].txt - [651 bytů] - [16/01/2016 13:59:52]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1505 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý PC a jeho občasné zasekávání
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Lorgan
- Návštěvník
- Příspěvky: 51
- Registrován: 19 lis 2013 12:24
- Bydliště: Přístup k údajům o bydlení vyžaduje bezpečnostní prověrku pátého stupně :P
Re: Pomalý PC a jeho občasné zasekávání
Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2016-06-05 22:08:21
Microsoft Windows 8.1 Pro
System drive C: has 64 GB (29%) free of 220 GB
Total RAM: 7603 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:08:30, on 5. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\ThinkPad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=27368
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [f.lux] "C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [WinFLTray] C:\WINDOWS\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLService - New Softwares.net - C:\WINDOWS\SysWow64\WinFLService.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11693 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-db768244-b4e1-489c-9896-5b1924848864 -SystemEventPortName:HostProcess-94e5bf4b-4ee3-4231-bccc-830e9b975bf1 -IoCancelEventPortName:HostProcess-597f9416-e791-490f-9917-e00a78964426 -NonStateChangingEventPortName:HostProcess-32e51b06-4dbc-4628-ade4-cabc14104818 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8582b453-cb18-4089-89c9-1b9d0b221b9d -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {85860b50-4a94-4eb9-98638a2e013aba7b}
C:\WINDOWS\SysWow64\WinFLService.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000734
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
/ChildServer
"C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C1].txt
szndesktop.exe default start
"C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\ThinkPad\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07 2518312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22 857792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07 2353448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24 2963184]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [2012-05-22 1000288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"f.lux"=C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"WinFLTray"=C:\WINDOWS\SysWow64\WinFLTray.exe [2015-09-23 330120]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2015-09-23 275848]
"cz.seznam.software.autoupdate"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2016-05-15 814608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-05-04 67840]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-05 20:02:08 ----D---- C:\rsit
2016-05-31 17:48:53 ----D---- C:\Users\ThinkPad\AppData\Roaming\Atari
2016-05-31 17:44:44 ----A---- C:\WINDOWS\patchw32.dll
2016-05-31 17:34:16 ----D---- C:\Program Files (x86)\Atari
2016-05-29 18:01:12 ----D---- C:\ProgramData\Steam
2016-05-23 19:34:25 ----D---- C:\Program Files (x86)\World of Warcraft
2016-05-22 12:05:12 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2016-05-22 10:55:31 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-22 10:55:10 ----D---- C:\Users\ThinkPad\AppData\Roaming\Seznam.cz
2016-05-20 16:54:28 ----D---- C:\Users\ThinkPad\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2016-05-20 16:28:18 ----D---- C:\Program Files (x86)\BFME2PatchSwitcher
2016-05-20 14:26:17 ----D---- C:\SkladiÜtý her bez ladu a skladu
2016-05-13 20:53:20 ----D---- C:\Users\ThinkPad\AppData\Roaming\TubeTycoon
2016-05-11 14:01:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 14:01:58 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 14:01:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 14:01:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 14:01:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\certcli.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 13:59:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-11 13:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 13:59:08 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 13:59:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 13:55:40 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2016-05-11 13:55:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 13:54:05 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-08 00:06:23 ----D---- C:\Program Files (x86)\EA Sports
2016-05-06 15:19:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-06-05 22:08:28 ----D---- C:\Program Files\trend micro
2016-06-05 22:08:26 ----D---- C:\WINDOWS\Temp
2016-06-05 22:01:09 ----D---- C:\WINDOWS\AppReadiness
2016-06-05 22:00:03 ----D---- C:\WINDOWS\system32\sru
2016-06-05 21:51:53 ----RD---- C:\WINDOWS\System32
2016-06-05 21:51:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-05 21:51:50 ----D---- C:\WINDOWS\Inf
2016-06-05 21:48:09 ----D---- C:\WINDOWS\Prefetch
2016-06-05 21:42:59 ----D---- C:\AdwCleaner
2016-06-05 20:08:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype
2016-06-05 20:02:12 ----D---- C:\Program Files (x86)\trend micro
2016-06-05 19:36:30 ----D---- C:\Skladiště her bez ladu a skladu
2016-06-05 11:44:12 ----SHD---- C:\System Volume Information
2016-06-05 11:42:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-04 23:15:44 ----SHD---- C:\WINDOWS\Installer
2016-06-04 23:15:44 ----D---- C:\ProgramData\Skype
2016-06-04 23:15:34 ----RD---- C:\Program Files (x86)\Skype
2016-06-04 23:04:09 ----D---- C:\Users\ThinkPad\AppData\Roaming\vlc
2016-06-02 18:00:27 ----D---- C:\WINDOWS\SysWOW64
2016-05-31 17:44:44 ----D---- C:\Windows
2016-05-31 17:44:44 ----D---- C:\Program Files (x86)\Common Files
2016-05-31 17:34:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-05-31 17:34:16 ----RD---- C:\Program Files (x86)
2016-05-31 12:07:21 ----HD---- C:\Program Files\WindowsApps
2016-05-30 19:45:41 ----D---- C:\Program Files (x86)\Battle.net
2016-05-30 19:42:31 ----D---- C:\Program Files\Steam
2016-05-29 18:17:42 ----D---- C:\GOG Games
2016-05-29 18:01:12 ----HD---- C:\ProgramData
2016-05-28 20:50:51 ----D---- C:\Martin
2016-05-27 19:50:53 ----D---- C:\WINDOWS\system32\config
2016-05-25 12:22:06 ----D---- C:\ProgramData\Package Cache
2016-05-23 19:31:51 ----D---- C:\Users\ThinkPad\AppData\Roaming\Battle.net
2016-05-23 16:00:48 ----D---- C:\Users\ThinkPad\AppData\Roaming\uTorrent
2016-05-18 16:19:21 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-05-18 16:19:00 ----HD---- C:\WINDOWS\msdownld.tmp
2016-05-18 16:16:05 ----D---- C:\Users\ThinkPad\AppData\Roaming\DAEMON Tools Lite
2016-05-17 16:39:29 ----D---- C:\ProgramData\BioWare
2016-05-17 16:37:52 ----D---- C:\ProgramData\Media Center Programs
2016-05-16 19:32:30 ----RSD---- C:\WINDOWS\assembly
2016-05-16 19:31:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-16 13:06:22 ----D---- C:\WINDOWS\Tasks
2016-05-16 13:06:22 ----D---- C:\WINDOWS\system32\Tasks
2016-05-15 22:39:18 ----D---- C:\WINDOWS\system32\drivers
2016-05-15 11:03:22 ----D---- C:\WINDOWS\CbsTemp
2016-05-15 11:03:17 ----D---- C:\WINDOWS\WinSxS
2016-05-13 15:12:56 ----D---- C:\WINDOWS\rescache
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\wbem
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 22:42:45 ----D---- C:\Program Files\Internet Explorer
2016-05-11 22:42:45 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 22:08:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 22:04:53 ----D---- C:\Program Files\Zoner
2016-05-11 22:04:38 ----RD---- C:\Program Files
2016-05-11 21:32:10 ----D---- C:\Program Files\Windows Journal
2016-05-11 21:31:53 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 20:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 20:36:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 13:50:16 ----D---- C:\WINDOWS\system32\catroot2
2016-05-07 23:56:39 ----D---- C:\WINDOWS\Logs
2016-05-07 22:40:59 ----D---- C:\ProgramData\Glyph
2016-05-06 22:40:06 ----D---- C:\Program Files (x86)\Jets N Guns GOLD
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-05-15 146712]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-12-03 35488]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-25 283064]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2015-08-13 960808]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2015-08-13 117768]
R1 VBoxNetLwf;@oem45.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2015-08-13 146072]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2015-08-13 138904]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 APXACC;@oem5.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-03-17 128664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-05-15 78208]
R2 NEWDRIVER;NEWDRIVER; \??\C:\WINDOWS\SysWow64\WinVDEdrv6.sys [2015-09-23 197648]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2015-03-10 39104]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-08-21 91648]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem16.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-12-13 288480]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2013-04-26 29424]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-04-24 460528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 rzdaendpt;@oem20.inf,%rzdaendpt.SvcDesc%;Razer DeathAdder end point; C:\WINDOWS\System32\drivers\rzdaendpt.sys [2014-09-05 33448]
S3 rzudd;@oem46.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-14 201432]
S3 rzvkeyboard;@oem29.inf,%rzvkeyboard%;Razer Virtual Keyboard Driver; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [2014-09-05 31912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2016-05-15 467016]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2016-05-15 467016]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-05-04 276424]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CxAudMsg;Conexant Audio Message Service; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 FLService;FLService; C:\WINDOWS\SysWow64\WinFLService.exe [2015-09-23 93064]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2013-08-07 2139944]
R2 IBMPMSVC;@oem9.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-11-15 2468496]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-11-13 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-11-13 103736]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2014-06-10 124400]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-07-22 401704]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2016-05-15 970656]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2016-05-15 1435704]
S2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-06 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
Run by ThinkPad at 2016-06-05 22:08:21
Microsoft Windows 8.1 Pro
System drive C: has 64 GB (29%) free of 220 GB
Total RAM: 7603 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:08:30, on 5. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\ThinkPad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=27368
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [f.lux] "C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [WinFLTray] C:\WINDOWS\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLService - New Softwares.net - C:\WINDOWS\SysWow64\WinFLService.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11693 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-db768244-b4e1-489c-9896-5b1924848864 -SystemEventPortName:HostProcess-94e5bf4b-4ee3-4231-bccc-830e9b975bf1 -IoCancelEventPortName:HostProcess-597f9416-e791-490f-9917-e00a78964426 -NonStateChangingEventPortName:HostProcess-32e51b06-4dbc-4628-ade4-cabc14104818 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8582b453-cb18-4089-89c9-1b9d0b221b9d -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {85860b50-4a94-4eb9-98638a2e013aba7b}
C:\WINDOWS\SysWow64\WinFLService.exe
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000734
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
/ChildServer
"C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C1].txt
szndesktop.exe default start
"C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\ThinkPad\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07 2518312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25 2111616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22 857792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07 2353448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25 1637504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24 2963184]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [2012-05-22 1000288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"f.lux"=C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"WinFLTray"=C:\WINDOWS\SysWow64\WinFLTray.exe [2015-09-23 330120]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2015-09-23 275848]
"cz.seznam.software.autoupdate"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2016-05-15 814608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-05-04 67840]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-05 20:02:08 ----D---- C:\rsit
2016-05-31 17:48:53 ----D---- C:\Users\ThinkPad\AppData\Roaming\Atari
2016-05-31 17:44:44 ----A---- C:\WINDOWS\patchw32.dll
2016-05-31 17:34:16 ----D---- C:\Program Files (x86)\Atari
2016-05-29 18:01:12 ----D---- C:\ProgramData\Steam
2016-05-23 19:34:25 ----D---- C:\Program Files (x86)\World of Warcraft
2016-05-22 12:05:12 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2016-05-22 10:55:31 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-22 10:55:10 ----D---- C:\Users\ThinkPad\AppData\Roaming\Seznam.cz
2016-05-20 16:54:28 ----D---- C:\Users\ThinkPad\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2016-05-20 16:28:18 ----D---- C:\Program Files (x86)\BFME2PatchSwitcher
2016-05-20 14:26:17 ----D---- C:\SkladiÜtý her bez ladu a skladu
2016-05-13 20:53:20 ----D---- C:\Users\ThinkPad\AppData\Roaming\TubeTycoon
2016-05-11 14:01:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 14:01:58 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 14:01:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 14:01:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 14:01:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\certcli.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 13:59:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-11 13:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 13:59:08 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 13:59:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 13:55:40 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2016-05-11 13:55:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 13:54:05 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-08 00:06:23 ----D---- C:\Program Files (x86)\EA Sports
2016-05-06 15:19:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-06-05 22:08:28 ----D---- C:\Program Files\trend micro
2016-06-05 22:08:26 ----D---- C:\WINDOWS\Temp
2016-06-05 22:01:09 ----D---- C:\WINDOWS\AppReadiness
2016-06-05 22:00:03 ----D---- C:\WINDOWS\system32\sru
2016-06-05 21:51:53 ----RD---- C:\WINDOWS\System32
2016-06-05 21:51:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-05 21:51:50 ----D---- C:\WINDOWS\Inf
2016-06-05 21:48:09 ----D---- C:\WINDOWS\Prefetch
2016-06-05 21:42:59 ----D---- C:\AdwCleaner
2016-06-05 20:08:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype
2016-06-05 20:02:12 ----D---- C:\Program Files (x86)\trend micro
2016-06-05 19:36:30 ----D---- C:\Skladiště her bez ladu a skladu
2016-06-05 11:44:12 ----SHD---- C:\System Volume Information
2016-06-05 11:42:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-04 23:15:44 ----SHD---- C:\WINDOWS\Installer
2016-06-04 23:15:44 ----D---- C:\ProgramData\Skype
2016-06-04 23:15:34 ----RD---- C:\Program Files (x86)\Skype
2016-06-04 23:04:09 ----D---- C:\Users\ThinkPad\AppData\Roaming\vlc
2016-06-02 18:00:27 ----D---- C:\WINDOWS\SysWOW64
2016-05-31 17:44:44 ----D---- C:\Windows
2016-05-31 17:44:44 ----D---- C:\Program Files (x86)\Common Files
2016-05-31 17:34:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-05-31 17:34:16 ----RD---- C:\Program Files (x86)
2016-05-31 12:07:21 ----HD---- C:\Program Files\WindowsApps
2016-05-30 19:45:41 ----D---- C:\Program Files (x86)\Battle.net
2016-05-30 19:42:31 ----D---- C:\Program Files\Steam
2016-05-29 18:17:42 ----D---- C:\GOG Games
2016-05-29 18:01:12 ----HD---- C:\ProgramData
2016-05-28 20:50:51 ----D---- C:\Martin
2016-05-27 19:50:53 ----D---- C:\WINDOWS\system32\config
2016-05-25 12:22:06 ----D---- C:\ProgramData\Package Cache
2016-05-23 19:31:51 ----D---- C:\Users\ThinkPad\AppData\Roaming\Battle.net
2016-05-23 16:00:48 ----D---- C:\Users\ThinkPad\AppData\Roaming\uTorrent
2016-05-18 16:19:21 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-05-18 16:19:00 ----HD---- C:\WINDOWS\msdownld.tmp
2016-05-18 16:16:05 ----D---- C:\Users\ThinkPad\AppData\Roaming\DAEMON Tools Lite
2016-05-17 16:39:29 ----D---- C:\ProgramData\BioWare
2016-05-17 16:37:52 ----D---- C:\ProgramData\Media Center Programs
2016-05-16 19:32:30 ----RSD---- C:\WINDOWS\assembly
2016-05-16 19:31:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-16 13:06:22 ----D---- C:\WINDOWS\Tasks
2016-05-16 13:06:22 ----D---- C:\WINDOWS\system32\Tasks
2016-05-15 22:39:18 ----D---- C:\WINDOWS\system32\drivers
2016-05-15 11:03:22 ----D---- C:\WINDOWS\CbsTemp
2016-05-15 11:03:17 ----D---- C:\WINDOWS\WinSxS
2016-05-13 15:12:56 ----D---- C:\WINDOWS\rescache
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\wbem
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 22:42:45 ----D---- C:\Program Files\Internet Explorer
2016-05-11 22:42:45 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 22:08:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 22:04:53 ----D---- C:\Program Files\Zoner
2016-05-11 22:04:38 ----RD---- C:\Program Files
2016-05-11 21:32:10 ----D---- C:\Program Files\Windows Journal
2016-05-11 21:31:53 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 20:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 20:36:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 13:50:16 ----D---- C:\WINDOWS\system32\catroot2
2016-05-07 23:56:39 ----D---- C:\WINDOWS\Logs
2016-05-07 22:40:59 ----D---- C:\ProgramData\Glyph
2016-05-06 22:40:06 ----D---- C:\Program Files (x86)\Jets N Guns GOLD
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-05-15 146712]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-12-03 35488]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-25 283064]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2015-08-13 960808]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2015-08-13 117768]
R1 VBoxNetLwf;@oem45.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2015-08-13 146072]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2015-08-13 138904]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 APXACC;@oem5.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-03-17 128664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-05-15 78208]
R2 NEWDRIVER;NEWDRIVER; \??\C:\WINDOWS\SysWow64\WinVDEdrv6.sys [2015-09-23 197648]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2015-03-10 39104]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-08-21 91648]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem16.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-12-13 288480]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2013-04-26 29424]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-04-24 460528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 rzdaendpt;@oem20.inf,%rzdaendpt.SvcDesc%;Razer DeathAdder end point; C:\WINDOWS\System32\drivers\rzdaendpt.sys [2014-09-05 33448]
S3 rzudd;@oem46.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-14 201432]
S3 rzvkeyboard;@oem29.inf,%rzvkeyboard%;Razer Virtual Keyboard Driver; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [2014-09-05 31912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2016-05-15 467016]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2016-05-15 467016]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-05-04 276424]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-05-25 1364096]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-05-25 1687680]
R2 CxAudMsg;Conexant Audio Message Service; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 FLService;FLService; C:\WINDOWS\SysWow64\WinFLService.exe [2015-09-23 93064]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2013-08-07 2139944]
R2 IBMPMSVC;@oem9.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-11-15 2468496]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-11-13 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-11-13 103736]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2014-06-10 124400]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-07-22 401704]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2016-05-15 970656]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2016-05-15 1435704]
S2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-06 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý PC a jeho občasné zasekávání
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\Skype\Toolbars
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
:services
c2cautoupdatesvc
c2cpnrsvc
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý PC a jeho občasné zasekávání
FRST log 2
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-06-2016 02
Ran by Martina Martinkova (administrator) on MARTINA (06-06-2016 08:36:36)
Running from C:\Documents and Settings\Martina Martinkova\Plocha
Loaded Profiles: Martina Martinkova (Available Profiles: Martina Martinkova & Áňulína & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Agere Systems) C:\WINDOWS\system32\agrsmsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Atheros Communications, Inc.) C:\Program Files\Atheros\ACU.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IMJPMIG8.1] => C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [MSPY2002] => C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [59392 2008-04-14] ()
HKLM\...\Run: [PHIME2002ASync] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [PHIME2002A] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1032192 2008-02-22] (Synaptics, Inc.)
HKLM\...\Run: [AzMixerSel] => C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe [53248 2006-07-18] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [466944 2008-07-08] ()
HKLM\...\Run: [Boot] => C:\Program Files\Acer\Empowering Technology\ePower\Boot.exe [579584 2007-12-25] ()
HKLM\...\Run: [eRecoveryService] => C:\Program Files\Acer\Empowering Technology\eRecovery\eRAgent.exe [421888 2007-07-11] (Acer Inc.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [450648 2009-01-05] (Atheros Communications, Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7400064 2016-06-04] (AVAST Software)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe
Winlogon\Notify\AtiExtEvent:
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6690520 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {186c18d6-8b03-11de-943d-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {186c18d7-8b03-11de-943d-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30a-82ae-11de-9433-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30b-82ae-11de-9433-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30c-82ae-11de-9433-001f169596b8} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {48784602-a490-11de-9449-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {48784603-a490-11de-9449-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {49f17f3e-b028-11de-9455-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {49f17f3f-b028-11de-9455-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {703dc3eb-5537-11df-94e1-00242cd50c53} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {703dc3ec-5537-11df-94e1-00242cd50c53} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {b093fb10-8a6d-11de-943c-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {b093fb11-8a6d-11de-943c-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {c358eb34-5a5b-11df-94e4-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {c358eb35-5a5b-11df-94e4-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9ae-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9af-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9b0-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9b1-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {ccb383ed-5230-11df-94dd-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {ccb38f68-5230-11df-94dd-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-06-04] (AVAST Software)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acer Empowering Technology.lnk [2009-03-23]
ShortcutTarget: Acer Empowering Technology.lnk -> C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe (Acer Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk [2009-03-23]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{C1B65846-1D2F-41CE-BA61-AFBBDA0CBC03}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=0&o=xpp&d=0309&m=travelmate_6593
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://www.bing.com/search?FORM=UP21DF&PC=UP21 ... -SearchBox
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-04] (AVAST Software)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Toolbar: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> No Name - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - No File
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1237837155955
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default
FF DefaultSearchEngine: Ask.com
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Ask.com
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://www.search.ask.com/?o=APN10645A&gct=hp& ... 12-116&t=4
FF Keyword.URL: hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=29106EB8-4981-4A14-87D1-AA745792C1B4&n=77ee6815&ind=2012112917&id=HJxdm073YYcz&ptnrS=HJxdm073YYcz&si=pconverter&searchfor=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll [2014-09-09] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2011-11-24] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-05-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2463987481-3256626589-3986830351-1009: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-2463987481-3256626589-3986830351-1009: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF user.js: detected! => C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\user.js [2012-05-28]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-10] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2011-01-23] (Apple Inc.)
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\Ask.xml [2014-05-20]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\bingp.xml [2013-04-18]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\my-web-search.xml [2012-11-29]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\Search_Results.xml [2013-01-17]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\sweetim.xml [2012-11-04]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml [2011-03-11]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml [2013-10-04]
FF Extension: samfind Bookmarks Bar - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\sam@samfind.com [2013-10-03] [not signed]
FF Extension: No Name - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com [2016-06-04] [not signed]
FF Extension: Ask New Tabs - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\{0AF2132C-D508-1D6C-F240-7AAAB6C9E66D} [2014-05-20] [not signed]
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-07-20] [not signed]
FF Extension: SweetPacks Toolbar for Firefox - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2013-01-06] [not signed]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-20] [not signed]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-20] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-05] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-04]
FF HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Firefox\Extensions: [{1650a312-02bc-40ee-977e-83f158701739}] - C:\Program Files\SiteAdvisor\6172\FF => not found
FF HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2013-10-25]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.search.ask.com/?o=APN10645A&gct=hp& ... 12-116&t=4"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (Native Client) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.21.123\npGoogleUpdate3.dll => No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (602XML Filler) - C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Profile: C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-04]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-04]
CHR HKLM\...\Chrome\Extension: [apgjagobplilmcdfelodhgefiidomnfl] - C:\Program Files\Inbox Toolbar\Chrome\ibxtoolbar_chr.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-04]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: chrome.exe - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ACS; C:\WINDOWS\system32\acs.exe [475220 2009-01-05] (Atheros) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-06-04] (AVAST Software)
S4 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [File not signed]
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-04] () [File not signed]
S4 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-13] (O2Micro International) [File not signed]
S4 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [657408 2009-10-27] (Nokia) [File not signed]
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 abp480n5; C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1346464 2008-12-29] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-06-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-06-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-06-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-06-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [815792 2016-06-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449640 2016-06-04] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [187208 2016-06-04] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67216 2016-06-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221368 2016-06-04] (AVAST Software)
S3 AtiHdmiService; C:\WINDOWS\System32\drivers\AtiHdmi.sys [93696 2008-05-21] (ATI Research Inc.) [File not signed]
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539072 2007-03-23] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [876384 2007-03-31] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [149123 2007-03-23] (Broadcom Corporation.)
S3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [67960 2007-03-23] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 e1yexpress; C:\WINDOWS\System32\DRIVERS\e1y5132.sys [244368 2008-03-27] (Intel Corporation)
S3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [209664 2006-12-22] (Conexant Systems, Inc.)
S3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [988800 2006-12-22] (Conexant Systems, Inc.)
S3 IFXTPM; C:\WINDOWS\System32\DRIVERS\IFXTPM.SYS [41216 2008-05-08] (Infineon Technologies AG)
R2 Int15; C:\WINDOWS\System32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
R3 Iviaspi; C:\WINDOWS\System32\drivers\iviaspi.sys [10368 2005-09-21] (InterVideo, Inc.) [File not signed]
R3 k57w2k; C:\WINDOWS\System32\DRIVERS\k57xp32.sys [186880 2008-09-03] (Broadcom Corporation)
S3 KMWDFILTER; C:\WINDOWS\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171008 2005-06-02] (Pinnacle Systems GmbH) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 O2SCBUS; C:\WINDOWS\System32\DRIVERS\ozscr.sys [101848 2008-06-12] (O2Micro)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [158720 2008-10-07] (Realtek Semiconductor Corp.)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [57408 2008-02-08] (Atheros Communications, Inc.) [File not signed]
S3 ASAPIW2K; \??\C:\WINDOWS\system32\Drivers\asapiW2k.sys [X]
S3 NETw5x32; system32\DRIVERS\NETw5x32.sys [X]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 SNP2UVC; system32\DRIVERS\snp2uvc.sys [X]
S3 SymIM; system32\DRIVERS\SymIM.sys [X]
S3 SymIMMP; system32\DRIVERS\SymIM.sys [X]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
U1 WS2IFSL; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-06 08:31 - 2016-06-06 08:31 - 00000000 ____D C:\_OTM
2016-06-06 08:30 - 2016-06-06 08:23 - 00522240 _____ (OldTimer Tools) C:\Documents and Settings\Martina Martinkova\Plocha\OTM.exe
2016-06-05 21:02 - 2016-06-05 21:02 - 00019577 _____ C:\Documents and Settings\Martina Martinkova\Plocha\AdwCleaner[C1].txt
2016-06-05 20:57 - 2016-06-05 20:58 - 00000000 ____D C:\AdwCleaner
2016-06-05 20:55 - 2016-06-05 19:44 - 03677248 _____ C:\Documents and Settings\Martina Martinkova\Plocha\adwcleaner_5.119.exe
2016-06-05 18:37 - 2016-06-05 18:40 - 00084402 _____ C:\Documents and Settings\Martina Martinkova\Plocha\Addition.txt
2016-06-05 18:36 - 2016-06-06 08:37 - 00027949 _____ C:\Documents and Settings\Martina Martinkova\Plocha\FRST.txt
2016-06-05 18:36 - 2016-06-06 08:36 - 00000000 ____D C:\FRST
2016-06-05 18:35 - 2016-06-05 18:34 - 01735680 _____ (Farbar) C:\Documents and Settings\Martina Martinkova\Plocha\FRST.exe
2016-06-04 02:59 - 2016-06-04 03:01 - 00000000 ____D C:\WINDOWS\system32\config\RC Backup
2016-06-04 02:30 - 2016-06-04 02:30 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha\NETGATE.Registry.Cleaner.v14.0.405.0-BEAN
2016-06-04 02:24 - 2016-06-04 02:24 - 00000000 ____D C:\WINDOWS\system32\oodag
2016-06-04 02:22 - 2016-06-04 02:22 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\O&O
2016-06-04 01:43 - 2016-06-04 01:43 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\OO Software
2016-06-04 01:42 - 2016-06-04 01:42 - 00000686 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2016-06-04 01:42 - 2016-06-04 01:42 - 00000000 ____D C:\Program Files\CCleaner
2016-06-04 01:42 - 2016-06-04 01:42 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2016-06-04 01:33 - 2016-06-04 01:33 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha\backups
2016-06-04 01:27 - 2016-06-04 01:27 - 00000000 __SHD C:\Documents and Settings\Administrator\PrivacIE
2016-06-04 01:23 - 2016-06-04 01:23 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AVG
2016-06-04 01:23 - 2016-06-04 01:23 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\AVG
2016-06-04 01:17 - 2016-06-04 01:17 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mozilla
2016-06-04 01:17 - 2016-06-04 01:17 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2016-06-04 01:13 - 2016-06-04 01:13 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Data aplikací\AVAST Software
2016-06-04 01:12 - 2016-06-04 01:12 - 00001693 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2016-06-04 01:12 - 2016-06-04 01:12 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2016-06-04 01:12 - 2016-06-04 01:12 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2016-06-04 01:12 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2016-06-04 01:11 - 2016-06-06 08:36 - 00000388 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-06-04 01:11 - 2016-06-04 01:11 - 00815792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00449640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-06-04 01:11 - 2016-06-04 01:11 - 00221368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00187208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00091168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00067216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00058776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-06-04 01:11 - 2016-06-04 01:11 - 00032792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-06-04 01:10 - 2016-06-04 01:10 - 00000000 ____D C:\Program Files\Nová složka
2016-06-04 01:06 - 2016-05-12 11:42 - 00388608 _____ (Trend Micro Inc.) C:\Documents and Settings\Martina Martinkova\Plocha\hijackthis.exe
2016-06-04 00:38 - 2016-06-04 00:38 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Adobe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-06 08:37 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Temp
2016-06-06 08:35 - 2014-01-30 22:21 - 00000492 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-06-06 08:35 - 2008-09-08 20:10 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2016-06-06 08:34 - 2014-03-24 19:59 - 00000248 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2016-06-06 08:34 - 2009-08-04 16:19 - 00004176 _____ C:\WINDOWS\ModemLog_Agere Systems HDA Modem.txt
2016-06-06 08:34 - 2008-09-08 20:10 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-06 08:33 - 2009-08-05 18:12 - 00524288 _____ C:\WINDOWS\system32\config\ACS.evt
2016-06-06 08:33 - 2009-08-04 16:19 - 00000178 ___SH C:\Documents and Settings\Martina Martinkova\ntuser.ini
2016-06-06 08:33 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova
2016-06-06 08:33 - 2008-09-08 20:10 - 00032476 _____ C:\WINDOWS\SchedLgU.Txt
2016-06-06 08:32 - 2012-03-12 19:44 - 00000000 ____D C:\Documents and Settings\Áňulína\Local Settings\Temp
2016-06-06 08:31 - 2012-02-27 18:10 - 00000000 ____D C:\Documents and Settings\Anička\Local Settings\Temp
2016-06-06 08:31 - 2011-05-11 19:40 - 00001078 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2463987481-3256626589-3986830351-1009UA.job
2016-06-06 08:31 - 2008-09-08 20:10 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Temp
2016-06-06 08:30 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha
2016-06-06 08:29 - 2009-09-16 16:05 - 00000492 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{0B7D00A6-798F-4FF7-A1C1-E39533791E0A}.job
2016-06-05 21:44 - 2012-03-31 07:20 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-05 20:58 - 2008-09-08 19:41 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2016-06-05 20:58 - 2008-09-08 19:38 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2016-06-05 20:58 - 2008-09-08 19:38 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2016-06-05 16:57 - 2008-09-08 20:10 - 00000211 __RSH C:\boot.ini
2016-06-05 16:57 - 2008-09-08 19:28 - 00000582 _____ C:\WINDOWS\win.ini
2016-06-05 16:57 - 2008-07-10 04:29 - 00000240 _____ C:\WINDOWS\system.ini
2016-06-05 16:53 - 2009-08-04 16:19 - 00000000 __RHD C:\Documents and Settings\Martina Martinkova\Data aplikací
2016-06-05 16:48 - 2009-08-04 16:19 - 00000000 ___HD C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací
2016-06-04 20:36 - 2008-09-08 19:48 - 01183876 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-04 20:36 - 2008-09-08 19:48 - 00494042 _____ C:\WINDOWS\system32\perfh005.dat
2016-06-04 20:36 - 2008-09-08 19:48 - 00109542 _____ C:\WINDOWS\system32\perfc005.dat
2016-06-04 20:30 - 2008-07-10 04:29 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2016-06-04 16:33 - 2013-01-17 16:11 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\iLivid
2016-06-04 15:42 - 2011-05-11 19:41 - 00002362 _____ C:\Documents and Settings\Martina Martinkova\Nabídka Start\Programy\Google Chrome.lnk
2016-06-04 15:42 - 2011-05-11 19:41 - 00002356 _____ C:\Documents and Settings\Martina Martinkova\Plocha\Google Chrome.lnk
2016-06-04 15:42 - 2009-08-04 16:19 - 00000000 ___RD C:\Documents and Settings\Martina Martinkova\Nabídka Start\Programy
2016-06-04 15:33 - 2012-03-22 17:18 - 00000000 ____D C:\WINDOWS\pss
2016-06-04 15:31 - 2011-05-11 19:40 - 00001026 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2463987481-3256626589-3986830351-1009Core.job
2016-06-04 11:09 - 2009-03-23 23:03 - 00003187 _____ C:\WINDOWS\wincmd.ini
2016-06-04 02:45 - 2013-09-26 07:16 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Data aplikací\Seznam.cz
2016-06-04 02:39 - 2012-12-11 22:55 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\TEMP
2016-06-04 02:38 - 2012-12-11 22:55 - 00000000 ____D C:\Program Files\Common Files\PC Tools
2016-06-04 02:37 - 2014-06-19 18:41 - 00000000 ____D C:\Program Files\Sweet Home 3D
2016-06-04 02:25 - 2008-07-10 02:38 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2016-06-04 01:55 - 2008-09-08 19:44 - 00000000 ___HD C:\WINDOWS\inf
2016-06-04 01:55 - 2008-09-08 19:14 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2016-06-04 01:50 - 2009-05-06 21:36 - 00000000 ____D C:\WINDOWS\Minidump
2016-06-04 01:35 - 2011-01-30 20:02 - 00000000 ____D C:\Program Files\Centauri
2016-06-04 01:34 - 2014-06-19 18:43 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2016-06-04 01:32 - 2012-11-30 17:00 - 00000000 ____D C:\Program Files\NortonInstaller
2016-06-04 01:27 - 2008-09-08 20:04 - 00000000 ____D C:\Documents and Settings\Administrator
2016-06-04 01:25 - 2009-12-16 03:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Norton
2016-06-04 01:23 - 2008-09-08 19:35 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2016-06-04 01:15 - 2012-11-14 16:23 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Temp
2016-06-04 01:11 - 2012-03-22 20:40 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-04 01:10 - 2010-04-27 21:04 - 00000000 ____D C:\Program Files\AVG
2016-06-04 01:07 - 2012-03-22 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-06-04 01:00 - 2008-09-08 20:10 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2016-06-04 00:43 - 2008-07-10 02:36 - 00002504 _____ C:\WINDOWS\system32\CONFIG.NT
2016-06-04 00:38 - 2008-09-08 19:38 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
==================== Files in the root of some directories =======
2009-09-10 17:57 - 2014-06-02 19:57 - 0020992 _____ () C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-08-04 16:19 - 2009-08-04 16:19 - 0000138 _____ () C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\fusioncache.dat
2010-08-10 15:10 - 2014-09-10 18:01 - 0000952 ___SH () C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
2014-09-14 17:01 - 2014-09-14 17:01 - 0003865 _____ () C:\Documents and Settings\All Users\Data aplikací\lpm.dat
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-06-2016 02
Ran by Martina Martinkova (administrator) on MARTINA (06-06-2016 08:36:36)
Running from C:\Documents and Settings\Martina Martinkova\Plocha
Loaded Profiles: Martina Martinkova (Available Profiles: Martina Martinkova & Áňulína & Administrator)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Agere Systems) C:\WINDOWS\system32\agrsmsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Atheros Communications, Inc.) C:\Program Files\Atheros\ACU.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IMJPMIG8.1] => C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [MSPY2002] => C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [59392 2008-04-14] ()
HKLM\...\Run: [PHIME2002ASync] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [PHIME2002A] => C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [455168 2008-04-14] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1032192 2008-02-22] (Synaptics, Inc.)
HKLM\...\Run: [AzMixerSel] => C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe [53248 2006-07-18] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [466944 2008-07-08] ()
HKLM\...\Run: [Boot] => C:\Program Files\Acer\Empowering Technology\ePower\Boot.exe [579584 2007-12-25] ()
HKLM\...\Run: [eRecoveryService] => C:\Program Files\Acer\Empowering Technology\eRecovery\eRAgent.exe [421888 2007-07-11] (Acer Inc.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [450648 2009-01-05] (Atheros Communications, Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7400064 2016-06-04] (AVAST Software)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe
Winlogon\Notify\AtiExtEvent:
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6690520 2016-06-01] (Piriform Ltd)
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {186c18d6-8b03-11de-943d-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {186c18d7-8b03-11de-943d-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30a-82ae-11de-9433-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30b-82ae-11de-9433-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {228aa30c-82ae-11de-9433-001f169596b8} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {48784602-a490-11de-9449-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {48784603-a490-11de-9449-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {49f17f3e-b028-11de-9455-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {49f17f3f-b028-11de-9455-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {703dc3eb-5537-11df-94e1-00242cd50c53} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {703dc3ec-5537-11df-94e1-00242cd50c53} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {b093fb10-8a6d-11de-943c-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {b093fb11-8a6d-11de-943c-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {c358eb34-5a5b-11df-94e4-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {c358eb35-5a5b-11df-94e4-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9ae-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9af-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9b0-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {cbacb9b1-4481-11df-94d9-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {ccb383ed-5230-11df-94dd-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\MountPoints2: {ccb38f68-5230-11df-94dd-0017c47f128f} - F:\StartVMCLite.exe
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-06-04] (AVAST Software)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Acer Empowering Technology.lnk [2009-03-23]
ShortcutTarget: Acer Empowering Technology.lnk -> C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe (Acer Inc.)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth.lnk [2009-03-23]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{C1B65846-1D2F-41CE-BA61-AFBBDA0CBC03}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&s=0&o=xpp&d=0309&m=travelmate_6593
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://www.bing.com/search?FORM=UP21DF&PC=UP21 ... -SearchBox
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-04] (AVAST Software)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Toolbar: HKU\S-1-5-21-2463987481-3256626589-3986830351-1009 -> No Name - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - No File
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1237837155955
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default
FF DefaultSearchEngine: Ask.com
FF DefaultSearchUrl:
FF SearchEngineOrder.1: Ask.com
FF SearchEngineOrder.3: Bing
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://www.search.ask.com/?o=APN10645A&gct=hp& ... 12-116&t=4
FF Keyword.URL: hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=29106EB8-4981-4A14-87D1-AA745792C1B4&n=77ee6815&ind=2012112917&id=HJxdm073YYcz&ptnrS=HJxdm073YYcz&si=pconverter&searchfor=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll [2014-09-09] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-08-13] (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2011-11-24] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-05-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2463987481-3256626589-3986830351-1009: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-2463987481-3256626589-3986830351-1009: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-06-04] (Google Inc.)
FF user.js: detected! => C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\user.js [2012-05-28]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-10] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2011-01-23] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2011-01-23] (Apple Inc.)
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\Ask.xml [2014-05-20]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\bingp.xml [2013-04-18]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\my-web-search.xml [2012-11-29]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\Search_Results.xml [2013-01-17]
FF SearchPlugin: C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\searchplugins\sweetim.xml [2012-11-04]
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\mall-cz.xml [2011-03-11]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\jyxo-cz.xml [2013-10-04]
FF Extension: samfind Bookmarks Bar - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\sam@samfind.com [2013-10-03] [not signed]
FF Extension: No Name - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com [2016-06-04] [not signed]
FF Extension: Ask New Tabs - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\extensions\{0AF2132C-D508-1D6C-F240-7AAAB6C9E66D} [2014-05-20] [not signed]
FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-07-20] [not signed]
FF Extension: SweetPacks Toolbar for Firefox - C:\Documents and Settings\Martina Martinkova\Data aplikací\Mozilla\Firefox\Profiles\a5sa9qwh.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2013-01-06] [not signed]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-20] [not signed]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-11-20] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-05] [not signed]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-04]
FF HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Firefox\Extensions: [{1650a312-02bc-40ee-977e-83f158701739}] - C:\Program Files\SiteAdvisor\6172\FF => not found
FF HKU\S-1-5-21-2463987481-3256626589-3986830351-1009\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\Documents and Settings\All Users\Data aplikací\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi => not found
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2013-10-25]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.search.ask.com/?o=APN10645A&gct=hp& ... 12-116&t=4"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll => No File
CHR Plugin: (Native Client) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\49.0.2623.112\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Update\1.3.21.123\npGoogleUpdate3.dll => No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (602XML Filler) - C:\Program Files\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Profile: C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-04]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-04]
CHR HKLM\...\Chrome\Extension: [apgjagobplilmcdfelodhgefiidomnfl] - C:\Program Files\Inbox Toolbar\Chrome\ibxtoolbar_chr.crx <not found>
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-04]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: chrome.exe - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome - C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ACS; C:\WINDOWS\system32\acs.exe [475220 2009-01-05] (Atheros) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-06-04] (AVAST Software)
S4 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [File not signed]
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-04] () [File not signed]
S4 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-13] (O2Micro International) [File not signed]
S4 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [657408 2009-10-27] (Nokia) [File not signed]
S4 Skype C2C Service; C:\Documents and Settings\All Users\Data aplikací\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 abp480n5; C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1346464 2008-12-29] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-06-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-06-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-06-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-06-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [815792 2016-06-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449640 2016-06-04] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [187208 2016-06-04] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67216 2016-06-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221368 2016-06-04] (AVAST Software)
S3 AtiHdmiService; C:\WINDOWS\System32\drivers\AtiHdmi.sys [93696 2008-05-21] (ATI Research Inc.) [File not signed]
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [539072 2007-03-23] (Broadcom Corporation.)
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [37424 2007-03-23] (Broadcom Corporation.)
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [876384 2007-03-31] (Broadcom Corporation.)
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [149123 2007-03-23] (Broadcom Corporation.)
S3 btwhid; C:\WINDOWS\System32\DRIVERS\btwhid.sys [55352 2007-03-31] (Broadcom Corporation.)
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [67960 2007-03-23] (Broadcom Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 e1yexpress; C:\WINDOWS\System32\DRIVERS\e1y5132.sys [244368 2008-03-27] (Intel Corporation)
S3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [209664 2006-12-22] (Conexant Systems, Inc.)
S3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [988800 2006-12-22] (Conexant Systems, Inc.)
S3 IFXTPM; C:\WINDOWS\System32\DRIVERS\IFXTPM.SYS [41216 2008-05-08] (Infineon Technologies AG)
R2 Int15; C:\WINDOWS\System32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
R3 Iviaspi; C:\WINDOWS\System32\drivers\iviaspi.sys [10368 2005-09-21] (InterVideo, Inc.) [File not signed]
R3 k57w2k; C:\WINDOWS\System32\DRIVERS\k57xp32.sys [186880 2008-09-03] (Broadcom Corporation)
S3 KMWDFILTER; C:\WINDOWS\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows (R) Codename Longhorn DDK provider)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171008 2005-06-02] (Pinnacle Systems GmbH) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 O2SCBUS; C:\WINDOWS\System32\DRIVERS\ozscr.sys [101848 2008-06-12] (O2Micro)
R1 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 RSUSBSTOR; C:\WINDOWS\System32\Drivers\RTS5121.sys [158720 2008-10-07] (Realtek Semiconductor Corp.)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [57408 2008-02-08] (Atheros Communications, Inc.) [File not signed]
S3 ASAPIW2K; \??\C:\WINDOWS\system32\Drivers\asapiW2k.sys [X]
S3 NETw5x32; system32\DRIVERS\NETw5x32.sys [X]
S3 Rts516xIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 SNP2UVC; system32\DRIVERS\snp2uvc.sys [X]
S3 SymIM; system32\DRIVERS\SymIM.sys [X]
S3 SymIMMP; system32\DRIVERS\SymIM.sys [X]
S3 upperdev; system32\DRIVERS\usbser_lowerflt.sys [X]
S3 USBCCID; system32\DRIVERS\Rts5161ccid.sys [X]
U1 WS2IFSL; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-06 08:31 - 2016-06-06 08:31 - 00000000 ____D C:\_OTM
2016-06-06 08:30 - 2016-06-06 08:23 - 00522240 _____ (OldTimer Tools) C:\Documents and Settings\Martina Martinkova\Plocha\OTM.exe
2016-06-05 21:02 - 2016-06-05 21:02 - 00019577 _____ C:\Documents and Settings\Martina Martinkova\Plocha\AdwCleaner[C1].txt
2016-06-05 20:57 - 2016-06-05 20:58 - 00000000 ____D C:\AdwCleaner
2016-06-05 20:55 - 2016-06-05 19:44 - 03677248 _____ C:\Documents and Settings\Martina Martinkova\Plocha\adwcleaner_5.119.exe
2016-06-05 18:37 - 2016-06-05 18:40 - 00084402 _____ C:\Documents and Settings\Martina Martinkova\Plocha\Addition.txt
2016-06-05 18:36 - 2016-06-06 08:37 - 00027949 _____ C:\Documents and Settings\Martina Martinkova\Plocha\FRST.txt
2016-06-05 18:36 - 2016-06-06 08:36 - 00000000 ____D C:\FRST
2016-06-05 18:35 - 2016-06-05 18:34 - 01735680 _____ (Farbar) C:\Documents and Settings\Martina Martinkova\Plocha\FRST.exe
2016-06-04 02:59 - 2016-06-04 03:01 - 00000000 ____D C:\WINDOWS\system32\config\RC Backup
2016-06-04 02:30 - 2016-06-04 02:30 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha\NETGATE.Registry.Cleaner.v14.0.405.0-BEAN
2016-06-04 02:24 - 2016-06-04 02:24 - 00000000 ____D C:\WINDOWS\system32\oodag
2016-06-04 02:22 - 2016-06-04 02:22 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\O&O
2016-06-04 01:43 - 2016-06-04 01:43 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\OO Software
2016-06-04 01:42 - 2016-06-04 01:42 - 00000686 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2016-06-04 01:42 - 2016-06-04 01:42 - 00000000 ____D C:\Program Files\CCleaner
2016-06-04 01:42 - 2016-06-04 01:42 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\CCleaner
2016-06-04 01:33 - 2016-06-04 01:33 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha\backups
2016-06-04 01:27 - 2016-06-04 01:27 - 00000000 __SHD C:\Documents and Settings\Administrator\PrivacIE
2016-06-04 01:23 - 2016-06-04 01:23 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\AVG
2016-06-04 01:23 - 2016-06-04 01:23 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\AVG
2016-06-04 01:17 - 2016-06-04 01:17 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Mozilla
2016-06-04 01:17 - 2016-06-04 01:17 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2016-06-04 01:13 - 2016-06-04 01:13 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Data aplikací\AVAST Software
2016-06-04 01:12 - 2016-06-04 01:12 - 00001693 _____ C:\Documents and Settings\All Users\Plocha\Avast Free Antivirus.lnk
2016-06-04 01:12 - 2016-06-04 01:12 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2016-06-04 01:12 - 2016-06-04 01:12 - 00000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\AVAST Software
2016-06-04 01:12 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2016-06-04 01:11 - 2016-06-06 08:36 - 00000388 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-06-04 01:11 - 2016-06-04 01:11 - 00815792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00449640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-06-04 01:11 - 2016-06-04 01:11 - 00221368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00187208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00091168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00067216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00058776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-06-04 01:11 - 2016-06-04 01:11 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-06-04 01:11 - 2016-06-04 01:11 - 00032792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-06-04 01:10 - 2016-06-04 01:10 - 00000000 ____D C:\Program Files\Nová složka
2016-06-04 01:06 - 2016-05-12 11:42 - 00388608 _____ (Trend Micro Inc.) C:\Documents and Settings\Martina Martinkova\Plocha\hijackthis.exe
2016-06-04 00:38 - 2016-06-04 00:38 - 00000000 ____D C:\Documents and Settings\Administrator\Data aplikací\Adobe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-06-06 08:37 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Temp
2016-06-06 08:35 - 2014-01-30 22:21 - 00000492 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-06-06 08:35 - 2008-09-08 20:10 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2016-06-06 08:34 - 2014-03-24 19:59 - 00000248 _____ C:\WINDOWS\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
2016-06-06 08:34 - 2009-08-04 16:19 - 00004176 _____ C:\WINDOWS\ModemLog_Agere Systems HDA Modem.txt
2016-06-06 08:34 - 2008-09-08 20:10 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-06 08:33 - 2009-08-05 18:12 - 00524288 _____ C:\WINDOWS\system32\config\ACS.evt
2016-06-06 08:33 - 2009-08-04 16:19 - 00000178 ___SH C:\Documents and Settings\Martina Martinkova\ntuser.ini
2016-06-06 08:33 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova
2016-06-06 08:33 - 2008-09-08 20:10 - 00032476 _____ C:\WINDOWS\SchedLgU.Txt
2016-06-06 08:32 - 2012-03-12 19:44 - 00000000 ____D C:\Documents and Settings\Áňulína\Local Settings\Temp
2016-06-06 08:31 - 2012-02-27 18:10 - 00000000 ____D C:\Documents and Settings\Anička\Local Settings\Temp
2016-06-06 08:31 - 2011-05-11 19:40 - 00001078 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2463987481-3256626589-3986830351-1009UA.job
2016-06-06 08:31 - 2008-09-08 20:10 - 00000000 ____D C:\Documents and Settings\Administrator\Local Settings\Temp
2016-06-06 08:30 - 2009-08-04 16:19 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Plocha
2016-06-06 08:29 - 2009-09-16 16:05 - 00000492 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{0B7D00A6-798F-4FF7-A1C1-E39533791E0A}.job
2016-06-05 21:44 - 2012-03-31 07:20 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-06-05 20:58 - 2008-09-08 19:41 - 00000000 ____D C:\Documents and Settings\All Users\Plocha
2016-06-05 20:58 - 2008-09-08 19:38 - 00000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2016-06-05 20:58 - 2008-09-08 19:38 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2016-06-05 16:57 - 2008-09-08 20:10 - 00000211 __RSH C:\boot.ini
2016-06-05 16:57 - 2008-09-08 19:28 - 00000582 _____ C:\WINDOWS\win.ini
2016-06-05 16:57 - 2008-07-10 04:29 - 00000240 _____ C:\WINDOWS\system.ini
2016-06-05 16:53 - 2009-08-04 16:19 - 00000000 __RHD C:\Documents and Settings\Martina Martinkova\Data aplikací
2016-06-05 16:48 - 2009-08-04 16:19 - 00000000 ___HD C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací
2016-06-04 20:36 - 2008-09-08 19:48 - 01183876 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-04 20:36 - 2008-09-08 19:48 - 00494042 _____ C:\WINDOWS\system32\perfh005.dat
2016-06-04 20:36 - 2008-09-08 19:48 - 00109542 _____ C:\WINDOWS\system32\perfc005.dat
2016-06-04 20:30 - 2008-07-10 04:29 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2016-06-04 16:33 - 2013-01-17 16:11 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\iLivid
2016-06-04 15:42 - 2011-05-11 19:41 - 00002362 _____ C:\Documents and Settings\Martina Martinkova\Nabídka Start\Programy\Google Chrome.lnk
2016-06-04 15:42 - 2011-05-11 19:41 - 00002356 _____ C:\Documents and Settings\Martina Martinkova\Plocha\Google Chrome.lnk
2016-06-04 15:42 - 2009-08-04 16:19 - 00000000 ___RD C:\Documents and Settings\Martina Martinkova\Nabídka Start\Programy
2016-06-04 15:33 - 2012-03-22 17:18 - 00000000 ____D C:\WINDOWS\pss
2016-06-04 15:31 - 2011-05-11 19:40 - 00001026 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2463987481-3256626589-3986830351-1009Core.job
2016-06-04 11:09 - 2009-03-23 23:03 - 00003187 _____ C:\WINDOWS\wincmd.ini
2016-06-04 02:45 - 2013-09-26 07:16 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Data aplikací\Seznam.cz
2016-06-04 02:39 - 2012-12-11 22:55 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\TEMP
2016-06-04 02:38 - 2012-12-11 22:55 - 00000000 ____D C:\Program Files\Common Files\PC Tools
2016-06-04 02:37 - 2014-06-19 18:41 - 00000000 ____D C:\Program Files\Sweet Home 3D
2016-06-04 02:25 - 2008-07-10 02:38 - 00000000 ___RD C:\Documents and Settings\All Users\Nabídka Start
2016-06-04 01:55 - 2008-09-08 19:44 - 00000000 ___HD C:\WINDOWS\inf
2016-06-04 01:55 - 2008-09-08 19:14 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2016-06-04 01:50 - 2009-05-06 21:36 - 00000000 ____D C:\WINDOWS\Minidump
2016-06-04 01:35 - 2011-01-30 20:02 - 00000000 ____D C:\Program Files\Centauri
2016-06-04 01:34 - 2014-06-19 18:43 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2016-06-04 01:32 - 2012-11-30 17:00 - 00000000 ____D C:\Program Files\NortonInstaller
2016-06-04 01:27 - 2008-09-08 20:04 - 00000000 ____D C:\Documents and Settings\Administrator
2016-06-04 01:25 - 2009-12-16 03:05 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\Norton
2016-06-04 01:23 - 2008-09-08 19:35 - 00000000 ___HD C:\Documents and Settings\Administrator\Local Settings\Data aplikací
2016-06-04 01:15 - 2012-11-14 16:23 - 00000000 ____D C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\Temp
2016-06-04 01:11 - 2012-03-22 20:40 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-04 01:10 - 2010-04-27 21:04 - 00000000 ____D C:\Program Files\AVG
2016-06-04 01:07 - 2012-03-22 20:40 - 00000000 ____D C:\Documents and Settings\All Users\Data aplikací\AVAST Software
2016-06-04 01:00 - 2008-09-08 20:10 - 00000178 ___SH C:\Documents and Settings\Administrator\ntuser.ini
2016-06-04 00:43 - 2008-07-10 02:36 - 00002504 _____ C:\WINDOWS\system32\CONFIG.NT
2016-06-04 00:38 - 2008-09-08 19:38 - 00000000 __RHD C:\Documents and Settings\Administrator\Data aplikací
==================== Files in the root of some directories =======
2009-09-10 17:57 - 2014-06-02 19:57 - 0020992 _____ () C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-08-04 16:19 - 2009-08-04 16:19 - 0000138 _____ () C:\Documents and Settings\Martina Martinkova\Local Settings\Data aplikací\fusioncache.dat
2010-08-10 15:10 - 2014-09-10 18:01 - 0000952 ___SH () C:\Documents and Settings\All Users\Data aplikací\KGyGaAvL.sys
2014-09-14 17:01 - 2014-09-14 17:01 - 0003865 _____ () C:\Documents and Settings\All Users\Data aplikací\lpm.dat
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
-
Lorgan
- Návštěvník
- Příspěvky: 51
- Registrován: 19 lis 2013 12:24
- Bydliště: Přístup k údajům o bydlení vyžaduje bezpečnostní prověrku pátého stupně :P
Re: Pomalý PC a jeho občasné zasekávání
Opět dobrý den,
všiml jsem si příspěvku pana Tonyho182, předpokládám že jde o nedorozumnění, ovšem jestli ne, tak se omlouvám. Zde je nový log z RSIT.
Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2016-06-06 13:33:43
Microsoft Windows 8.1 Pro
System drive C: has 63 GB (29%) free of 220 GB
Total RAM: 7603 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:33:50, on 6. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files\trend micro\ThinkPad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=27368
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [f.lux] "C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [WinFLTray] C:\WINDOWS\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLService - New Softwares.net - C:\WINDOWS\SysWow64\WinFLService.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11636 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5ba99d7d-61e8-4a5f-820b-19d5c9b21882 -SystemEventPortName:HostProcess-8419a3d5-51b6-49f0-8a1c-ee8311854827 -IoCancelEventPortName:HostProcess-de37bbda-768f-4f8c-a67d-cd708dfc7c64 -NonStateChangingEventPortName:HostProcess-2992928f-7080-4456-ad95-93ceac033660 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6779b9e6-bf2d-4604-95e0-72373f5fec21 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
taskeng.exe {22E44C01-87D9-476A-9A62-3601E61F88E6}
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\SysWow64\WinFLService.exe
dashost.exe {859c39f1-6474-4df6-892b1a0471903a76}
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000634
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
/ChildServer
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\06062016_132332.log
"C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding
szndesktop.exe default start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe -Embedding
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play -Embedding
"C:\Users\ThinkPad\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07 2518312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22 857792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07 2353448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24 2963184]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [2012-05-22 1000288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"f.lux"=C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"WinFLTray"=C:\WINDOWS\SysWow64\WinFLTray.exe [2015-09-23 330120]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2015-09-23 275848]
"cz.seznam.software.autoupdate"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2016-05-15 814608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-05-04 67840]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-06 13:23:32 ----D---- C:\_OTM
2016-06-05 20:02:08 ----D---- C:\rsit
2016-05-31 17:48:53 ----D---- C:\Users\ThinkPad\AppData\Roaming\Atari
2016-05-31 17:44:44 ----A---- C:\WINDOWS\patchw32.dll
2016-05-31 17:34:16 ----D---- C:\Program Files (x86)\Atari
2016-05-29 18:01:12 ----D---- C:\ProgramData\Steam
2016-05-23 19:34:25 ----D---- C:\Program Files (x86)\World of Warcraft
2016-05-22 12:05:12 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2016-05-22 10:55:31 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-22 10:55:10 ----D---- C:\Users\ThinkPad\AppData\Roaming\Seznam.cz
2016-05-20 16:54:28 ----D---- C:\Users\ThinkPad\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2016-05-20 16:28:18 ----D---- C:\Program Files (x86)\BFME2PatchSwitcher
2016-05-20 14:26:17 ----D---- C:\SkladiÜtý her bez ladu a skladu
2016-05-13 20:53:20 ----D---- C:\Users\ThinkPad\AppData\Roaming\TubeTycoon
2016-05-11 14:01:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 14:01:58 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 14:01:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 14:01:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 14:01:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\certcli.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 13:59:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-11 13:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 13:59:08 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 13:59:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 13:55:40 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2016-05-11 13:55:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 13:54:05 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-08 00:06:23 ----D---- C:\Program Files (x86)\EA Sports
======List of files/folders modified in the last 1 month======
2016-06-06 13:33:49 ----D---- C:\WINDOWS\Temp
2016-06-06 13:33:49 ----D---- C:\Program Files\trend micro
2016-06-06 13:28:54 ----D---- C:\WINDOWS\Prefetch
2016-06-06 13:24:54 ----D---- C:\Windows
2016-06-06 13:23:33 ----RD---- C:\Program Files (x86)\Skype
2016-06-06 13:23:33 ----D---- C:\WINDOWS\Tasks
2016-06-06 13:15:27 ----D---- C:\WINDOWS\AppReadiness
2016-06-06 13:00:00 ----D---- C:\WINDOWS\system32\sru
2016-06-05 21:51:53 ----RD---- C:\WINDOWS\System32
2016-06-05 21:51:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-05 21:51:50 ----D---- C:\WINDOWS\Inf
2016-06-05 21:42:59 ----D---- C:\AdwCleaner
2016-06-05 20:08:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype
2016-06-05 20:02:12 ----D---- C:\Program Files (x86)\trend micro
2016-06-05 19:36:30 ----D---- C:\Skladiště her bez ladu a skladu
2016-06-05 11:44:12 ----SHD---- C:\System Volume Information
2016-06-05 11:42:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-04 23:15:44 ----SHD---- C:\WINDOWS\Installer
2016-06-04 23:15:44 ----D---- C:\ProgramData\Skype
2016-06-04 23:04:09 ----D---- C:\Users\ThinkPad\AppData\Roaming\vlc
2016-06-02 18:00:27 ----D---- C:\WINDOWS\SysWOW64
2016-05-31 17:44:44 ----D---- C:\Program Files (x86)\Common Files
2016-05-31 17:34:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-05-31 17:34:16 ----RD---- C:\Program Files (x86)
2016-05-31 12:07:21 ----HD---- C:\Program Files\WindowsApps
2016-05-30 19:45:41 ----D---- C:\Program Files (x86)\Battle.net
2016-05-30 19:42:31 ----D---- C:\Program Files\Steam
2016-05-29 18:17:42 ----D---- C:\GOG Games
2016-05-29 18:01:12 ----HD---- C:\ProgramData
2016-05-28 20:50:51 ----D---- C:\Martin
2016-05-27 19:50:53 ----D---- C:\WINDOWS\system32\config
2016-05-25 12:22:06 ----D---- C:\ProgramData\Package Cache
2016-05-23 19:31:51 ----D---- C:\Users\ThinkPad\AppData\Roaming\Battle.net
2016-05-23 16:00:48 ----D---- C:\Users\ThinkPad\AppData\Roaming\uTorrent
2016-05-18 16:19:21 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-05-18 16:16:05 ----D---- C:\Users\ThinkPad\AppData\Roaming\DAEMON Tools Lite
2016-05-17 16:39:29 ----D---- C:\ProgramData\BioWare
2016-05-17 16:37:52 ----D---- C:\ProgramData\Media Center Programs
2016-05-16 19:32:30 ----RSD---- C:\WINDOWS\assembly
2016-05-16 19:31:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-16 13:06:22 ----D---- C:\WINDOWS\system32\Tasks
2016-05-15 22:39:18 ----D---- C:\WINDOWS\system32\drivers
2016-05-15 11:03:22 ----D---- C:\WINDOWS\CbsTemp
2016-05-15 11:03:17 ----D---- C:\WINDOWS\WinSxS
2016-05-13 15:12:56 ----D---- C:\WINDOWS\rescache
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\wbem
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 22:42:45 ----D---- C:\Program Files\Internet Explorer
2016-05-11 22:42:45 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 22:08:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 22:04:53 ----D---- C:\Program Files\Zoner
2016-05-11 22:04:38 ----RD---- C:\Program Files
2016-05-11 21:32:10 ----D---- C:\Program Files\Windows Journal
2016-05-11 21:31:53 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 20:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 20:36:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 13:50:16 ----D---- C:\WINDOWS\system32\catroot2
2016-05-07 23:56:39 ----D---- C:\WINDOWS\Logs
2016-05-07 22:40:59 ----D---- C:\ProgramData\Glyph
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-05-15 146712]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-12-03 35488]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-25 283064]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2015-08-13 960808]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2015-08-13 117768]
R1 VBoxNetLwf;@oem45.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2015-08-13 146072]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2015-08-13 138904]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 APXACC;@oem5.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-03-17 128664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-05-15 78208]
R2 NEWDRIVER;NEWDRIVER; \??\C:\WINDOWS\SysWow64\WinVDEdrv6.sys [2015-09-23 197648]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2015-03-10 39104]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-08-21 91648]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem16.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-12-13 288480]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2013-04-26 29424]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-04-24 460528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 rzdaendpt;@oem20.inf,%rzdaendpt.SvcDesc%;Razer DeathAdder end point; C:\WINDOWS\System32\drivers\rzdaendpt.sys [2014-09-05 33448]
S3 rzudd;@oem46.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-14 201432]
S3 rzvkeyboard;@oem29.inf,%rzvkeyboard%;Razer Virtual Keyboard Driver; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [2014-09-05 31912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2016-05-15 467016]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2016-05-15 467016]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-05-04 276424]
R2 CxAudMsg;Conexant Audio Message Service; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 FLService;FLService; C:\WINDOWS\SysWow64\WinFLService.exe [2015-09-23 93064]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2013-08-07 2139944]
R2 IBMPMSVC;@oem9.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-11-15 2468496]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-11-13 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-11-13 103736]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2014-06-10 124400]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-07-22 401704]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2016-05-15 970656]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2016-05-15 1435704]
S2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-06 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
všiml jsem si příspěvku pana Tonyho182, předpokládám že jde o nedorozumnění, ovšem jestli ne, tak se omlouvám. Zde je nový log z RSIT.
Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2016-06-06 13:33:43
Microsoft Windows 8.1 Pro
System drive C: has 63 GB (29%) free of 220 GB
Total RAM: 7603 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:33:50, on 6. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal
Running processes:
C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe
C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files\trend micro\ThinkPad.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=27368
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [f.lux] "C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [WinFLTray] C:\WINDOWS\SysWow64\WinFLTray.exe
O4 - HKCU\..\Run: [FLBackup] C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLService - New Softwares.net - C:\WINDOWS\SysWow64\WinFLService.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11636 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5ba99d7d-61e8-4a5f-820b-19d5c9b21882 -SystemEventPortName:HostProcess-8419a3d5-51b6-49f0-8a1c-ee8311854827 -IoCancelEventPortName:HostProcess-de37bbda-768f-4f8c-a67d-cd708dfc7c64 -NonStateChangingEventPortName:HostProcess-2992928f-7080-4456-ad95-93ceac033660 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6779b9e6-bf2d-4604-95e0-72373f5fec21 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
taskeng.exe {22E44C01-87D9-476A-9A62-3601E61F88E6}
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\system32\CxAudMsg64.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\SysWow64\WinFLService.exe
dashost.exe {859c39f1-6474-4df6-892b1a0471903a76}
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
C:\WINDOWS\SysWOW64\PnkBstrB.exe
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\system32\GWX\GWX.exe"
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000634
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
/ChildServer
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\06062016_132332.log
"C:\Program Files\Lenovo Fingerprint Reader\x86\IEWebSiteLogon.exe"
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe"
"C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServ.exe" -Embedding
szndesktop.exe default start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe -Embedding
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play -Embedding
"C:\Users\ThinkPad\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\fzlcuoao.default-1462711082632
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@authentec.com/ffwloplugin]
"Description"=
"Path"=C:\Program Files\Lenovo Fingerprint Reader\npffwloplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=Virtual Earth 3D
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0]
"Description"=
"Path"=C:\Program Files (x86)\Virtual Earth 3D\
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2013-08-07 2518312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22 857792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2013-08-07 2353448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22 755392]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-04-24 2963184]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AppexAcceleratorUI.exe [2012-05-22 1000288]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"f.lux"=C:\Users\ThinkPad\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"WinFLTray"=C:\WINDOWS\SysWow64\WinFLTray.exe [2015-09-23 330120]
"FLBackup"=C:\Program Files (x86)\NewSoftware's\Folder Lock\FLComServCtrl.exe [2015-09-23 275848]
"cz.seznam.software.autoupdate"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\ThinkPad\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-07-04 766688]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2014-11-03 585536]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2016-05-15 814608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-05-04 67840]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.vorbis"=vorbis.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-06 13:23:32 ----D---- C:\_OTM
2016-06-05 20:02:08 ----D---- C:\rsit
2016-05-31 17:48:53 ----D---- C:\Users\ThinkPad\AppData\Roaming\Atari
2016-05-31 17:44:44 ----A---- C:\WINDOWS\patchw32.dll
2016-05-31 17:34:16 ----D---- C:\Program Files (x86)\Atari
2016-05-29 18:01:12 ----D---- C:\ProgramData\Steam
2016-05-23 19:34:25 ----D---- C:\Program Files (x86)\World of Warcraft
2016-05-22 12:05:12 ----D---- C:\Program Files (x86)\Scorpions WinCheater
2016-05-22 10:55:31 ----D---- C:\Program Files (x86)\Seznam.cz
2016-05-22 10:55:10 ----D---- C:\Users\ThinkPad\AppData\Roaming\Seznam.cz
2016-05-20 16:54:28 ----D---- C:\Users\ThinkPad\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2016-05-20 16:28:18 ----D---- C:\Program Files (x86)\BFME2PatchSwitcher
2016-05-20 14:26:17 ----D---- C:\SkladiÜtý her bez ladu a skladu
2016-05-13 20:53:20 ----D---- C:\Users\ThinkPad\AppData\Roaming\TubeTycoon
2016-05-11 14:01:58 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 14:01:58 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 14:01:46 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-05-11 14:01:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-05-11 14:01:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-05-11 14:01:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\wininet.dll
2016-05-11 14:01:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-05-11 14:01:33 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\ncrypt.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-05-11 14:00:49 ----A---- C:\WINDOWS\system32\certcli.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 14:00:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 13:59:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 13:59:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\winload.exe
2016-05-11 13:59:11 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-05-11 13:59:09 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-05-11 13:59:08 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 13:59:08 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 13:57:24 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-05-11 13:56:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-05-11 13:55:40 ----AC---- C:\WINDOWS\system32\drivers\volmgr.sys
2016-05-11 13:55:10 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-05-11 13:54:05 ----A---- C:\WINDOWS\system32\win32k.sys
2016-05-08 00:06:23 ----D---- C:\Program Files (x86)\EA Sports
======List of files/folders modified in the last 1 month======
2016-06-06 13:33:49 ----D---- C:\WINDOWS\Temp
2016-06-06 13:33:49 ----D---- C:\Program Files\trend micro
2016-06-06 13:28:54 ----D---- C:\WINDOWS\Prefetch
2016-06-06 13:24:54 ----D---- C:\Windows
2016-06-06 13:23:33 ----RD---- C:\Program Files (x86)\Skype
2016-06-06 13:23:33 ----D---- C:\WINDOWS\Tasks
2016-06-06 13:15:27 ----D---- C:\WINDOWS\AppReadiness
2016-06-06 13:00:00 ----D---- C:\WINDOWS\system32\sru
2016-06-05 21:51:53 ----RD---- C:\WINDOWS\System32
2016-06-05 21:51:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-05 21:51:50 ----D---- C:\WINDOWS\Inf
2016-06-05 21:42:59 ----D---- C:\AdwCleaner
2016-06-05 20:08:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype
2016-06-05 20:02:12 ----D---- C:\Program Files (x86)\trend micro
2016-06-05 19:36:30 ----D---- C:\Skladiště her bez ladu a skladu
2016-06-05 11:44:12 ----SHD---- C:\System Volume Information
2016-06-05 11:42:34 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-04 23:15:44 ----SHD---- C:\WINDOWS\Installer
2016-06-04 23:15:44 ----D---- C:\ProgramData\Skype
2016-06-04 23:04:09 ----D---- C:\Users\ThinkPad\AppData\Roaming\vlc
2016-06-02 18:00:27 ----D---- C:\WINDOWS\SysWOW64
2016-05-31 17:44:44 ----D---- C:\Program Files (x86)\Common Files
2016-05-31 17:34:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-05-31 17:34:16 ----RD---- C:\Program Files (x86)
2016-05-31 12:07:21 ----HD---- C:\Program Files\WindowsApps
2016-05-30 19:45:41 ----D---- C:\Program Files (x86)\Battle.net
2016-05-30 19:42:31 ----D---- C:\Program Files\Steam
2016-05-29 18:17:42 ----D---- C:\GOG Games
2016-05-29 18:01:12 ----HD---- C:\ProgramData
2016-05-28 20:50:51 ----D---- C:\Martin
2016-05-27 19:50:53 ----D---- C:\WINDOWS\system32\config
2016-05-25 12:22:06 ----D---- C:\ProgramData\Package Cache
2016-05-23 19:31:51 ----D---- C:\Users\ThinkPad\AppData\Roaming\Battle.net
2016-05-23 16:00:48 ----D---- C:\Users\ThinkPad\AppData\Roaming\uTorrent
2016-05-18 16:19:21 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-05-18 16:16:05 ----D---- C:\Users\ThinkPad\AppData\Roaming\DAEMON Tools Lite
2016-05-17 16:39:29 ----D---- C:\ProgramData\BioWare
2016-05-17 16:37:52 ----D---- C:\ProgramData\Media Center Programs
2016-05-16 19:32:30 ----RSD---- C:\WINDOWS\assembly
2016-05-16 19:31:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-05-16 13:06:22 ----D---- C:\WINDOWS\system32\Tasks
2016-05-15 22:39:18 ----D---- C:\WINDOWS\system32\drivers
2016-05-15 11:03:22 ----D---- C:\WINDOWS\CbsTemp
2016-05-15 11:03:17 ----D---- C:\WINDOWS\WinSxS
2016-05-13 15:12:56 ----D---- C:\WINDOWS\rescache
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-12 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\wbem
2016-05-11 22:42:46 ----D---- C:\WINDOWS\system32\cs-CZ
2016-05-11 22:42:45 ----D---- C:\Program Files\Internet Explorer
2016-05-11 22:42:45 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-11 22:08:17 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-05-11 22:04:53 ----D---- C:\Program Files\Zoner
2016-05-11 22:04:38 ----RD---- C:\Program Files
2016-05-11 21:32:10 ----D---- C:\Program Files\Windows Journal
2016-05-11 21:31:53 ----D---- C:\WINDOWS\system32\MRT
2016-05-11 20:36:58 ----A---- C:\WINDOWS\system32\MRT.exe
2016-05-11 20:36:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-05-11 13:50:16 ----D---- C:\WINDOWS\system32\catroot2
2016-05-07 23:56:39 ----D---- C:\WINDOWS\Logs
2016-05-07 22:40:59 ----D---- C:\ProgramData\Glyph
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-05-15 146712]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-12-03 35488]
R1 dtsoftbus01;@oem8.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-12-25 283064]
R1 VBoxDrv;VirtualBox Service; C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys [2015-08-13 960808]
R1 VBoxNetAdp;VirtualBox NDIS 6.0 Miniport Service; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [2015-08-13 117768]
R1 VBoxNetLwf;@oem45.inf,%VBoxNetLwfService_Desc%;VirtualBox NDIS6 Bridged Networking Service; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [2015-08-13 146072]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [2015-08-13 138904]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 APXACC;@oem5.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-03-17 128664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-05-15 78208]
R2 NEWDRIVER;NEWDRIVER; \??\C:\WINDOWS\SysWow64\WinVDEdrv6.sys [2015-09-23 197648]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2015-03-10 39104]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 speedfan;speedfan; \??\C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-08-21 91648]
R3 bcbtums;@oem18.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 CnxtHdAudService;@oem11.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSP2STOR;@oem16.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-12-13 288480]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2013-04-26 29424]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-04-24 460528]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 btwampfl;@oem18.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 rzdaendpt;@oem20.inf,%rzdaendpt.SvcDesc%;Razer DeathAdder end point; C:\WINDOWS\System32\drivers\rzdaendpt.sys [2014-09-05 33448]
S3 rzudd;@oem46.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-14 201432]
S3 rzvkeyboard;@oem29.inf,%rzvkeyboard%;Razer Virtual Keyboard Driver; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [2014-09-05 31912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-07-04 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2016-05-15 467016]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2016-05-15 467016]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-05-04 276424]
R2 CxAudMsg;Conexant Audio Message Service; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
R2 FLService;FLService; C:\WINDOWS\SysWow64\WinFLService.exe [2015-09-23 93064]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2013-08-07 2139944]
R2 IBMPMSVC;@oem9.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-11-15 2468496]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2014-04-07 110128]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2015-11-13 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\syswow64\PnkBstrB.exe [2015-11-13 103736]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2014-06-10 124400]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-07-22 401704]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2016-05-15 970656]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2016-05-15 1435704]
S2 BcmBtRSupport;@oem18.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-06 146888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-04-30 835664]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý PC a jeho občasné zasekávání
2Tony182: Proč vstupujete do cizího topic? Přečtěte si pravidla fóra a na svůj problém si založte vlasní vlákno.
2Lorgan: Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
2Lorgan: Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Lorgan
- Návštěvník
- Příspěvky: 51
- Registrován: 19 lis 2013 12:24
- Bydliště: Přístup k údajům o bydlení vyžaduje bezpečnostní prověrku pátého stupně :P
Re: Pomalý PC a jeho občasné zasekávání
Dobrý den,
je až neuvěřitelné, jak obrovské zlepšení nastalo, procenta nejsou dostatečně mocná na to, aby to dokázala přesně určit, nicméně je to úžasné! PC už se ani nezasekává a běží o dost rychleji. Moc Vám děkuji za rychlou a ochotnou pomoc, Vaše fórum jistě doporučím každému, kdo by měl s PC obdobné problémy. Ještě jednou děkuji a loučím se. Třeba zase někdy. S přáním pevného zdraví,
Lorgan
je až neuvěřitelné, jak obrovské zlepšení nastalo, procenta nejsou dostatečně mocná na to, aby to dokázala přesně určit, nicméně je to úžasné! PC už se ani nezasekává a běží o dost rychleji. Moc Vám děkuji za rychlou a ochotnou pomoc, Vaše fórum jistě doporučím každému, kdo by měl s PC obdobné problémy. Ještě jednou děkuji a loučím se. Třeba zase někdy. S přáním pevného zdraví,
Lorgan
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý PC a jeho občasné zasekávání
To jsem rád a mějte se. Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?