Ahoj, chci poprosit, jestli byste se mi na to nepodívali. Tak týden zpět se mi snad ze dne na den hrozně zpomalil notebook. Jak spouštění/vypínání, tak prohlížení na netu.
Přikládám log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Ondřej at 2016-09-09 12:13:30
Microsoft Windows 10 Home
System drive C: has 344 GB (74%) free of 463 GB
Total RAM: 3966 MB (6% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:23:48, on 09.09.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0545)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Integrated Camera\Monitor.exe
C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\ProgramData\Lenovo\TVSUUTS\{96229774-D3A0-4410-8400-09B79865B300}\uts.exe
C:\Program Files\trend micro\Ondřej.exe
C:\ProgramData\Lenovo\TVSUUTS\{96229774-D3A0-4410-8400-09B79865B300}\systemupdate507-2016-07-07.exe
C:\Users\ONDEJ~1\AppData\Local\Temp\is-I5T92.tmp\systemupdate507-2016-07-07.tmp
C:\ProgramData\Lenovo\tvsuinstaller\UninstallSU.exe
C:\ProgramData\Lenovo\tvsuinstaller\setup.exe
C:\WINDOWS\SysWOW64\MSIEXEC.EXE
C:\Windows\syswow64\MsiExec.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13-comm.msn.com/?pc=LNJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13-comm.msn.com/?pc=LNJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
O4 - HKLM\..\Run: [Integrated Camera_Monitor] "C:\Program Files (x86)\Integrated Camera\monitor.exe"
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVControlCenter - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @oem4.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Service - Lenovo Group Limited - C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo AVFramework Camera Privacy Controller (LENOVO.CAMMUTE) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\cammute.exe
O23 - Service: Lenovo AVFramework Microphone Volume Controller and Dolby Interface (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe
O23 - Service: Lenovo AVFramework Virtual Camera Controller Service (LENOVO.TVTVCAM) - Lenovo Corporation - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Location Task Manager (LocationTaskManager) - Unknown owner - C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
O23 - Service: Lenovo Solution Center System Service (LSC.Services.SystemService) - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo Settings Power Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12236 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\ibmpmsvc.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-336fe481-000c-4abe-bc35-cb72fda5989d -SystemEventPortName:HostProcess-ab8806da-b6f3-40ad-bd8b-e9343d03b678 -IoCancelEventPortName:HostProcess-281ac483-e503-4d59-a6f6-54cb3e15417e -NonStateChangingEventPortName:HostProcess-9e1529fd-e0bb-472a-a203-850d0faad0c8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:15068a43-03f4-40a8-953b-1ac258c87d52 -DeviceGroupId:
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f9ce59a0-adf8-4261-be3a-7967cd05ce53 -SystemEventPortName:HostProcess-716b64e7-2fc3-41ba-87c9-3e4f8e86102f -IoCancelEventPortName:HostProcess-d71390c9-dda4-40ec-a021-99f8bf066ea3 -NonStateChangingEventPortName:HostProcess-3f4821da-afdc-480d-9832-4a702a1db476 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:852f175b-08f1-4d80-9534-f7bbdd13c25b -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e5a9c7c2-315d-420a-bb99-154a3107840b -SystemEventPortName:HostProcess-88314150-9de2-4a2e-9a56-d24f1283c391 -IoCancelEventPortName:HostProcess-a92d5dad-20bd-46ae-8628-93ac3bb2d4ee -NonStateChangingEventPortName:HostProcess-93e078c5-de4e-47c6-82af-459eea177176 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d26261eb-aefd-4a32-88c5-6a81caf1303a -DeviceGroupId:
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7ffe184d-740e-47e3-a22b-8d700ba4fe9a -SystemEventPortName:HostProcess-c1fbca97-e866-4cc9-8516-3e9e9eb94e6e -IoCancelEventPortName:HostProcess-0234f624-4a1a-42e2-b1b0-e0a525c5a10c -NonStateChangingEventPortName:HostProcess-8e397f7a-abba-4231-9014-7c7019648c39 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5da21c72-1ed4-47ff-a9e2-4c7e60dd6bfc -DeviceGroupId:
dashost.exe {2a4df3b1-662d-4fc5-825d76182e57bffc}
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
"C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\Lenovo\Communications Utility\cammute.exe"
"C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe" -default
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Users\Ondřej\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe" /LOGON
C:\Windows\System32\RuntimeBroker.exe -Embedding
igfxEM.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
igfxHK.exe
"C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe"
igfxTray.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Program Files\LENOVO\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPOSD.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\Lenovo\HOTKEY\extapsup.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\Integrated Camera\Monitor.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
"C:\Program Files\Lenovo\Communications Utility\vcamsvchlpr.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Opera\launcher.exe" --scheduledautoupdate --autoupdaterequesttype=start
C:\windows\system32\msfeedssync.exe sync
C:\WINDOWS\System32\sihclient.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\compattelrunner.exe
"C:\Program Files\AVAST Software\SZBrowser\launcher.exe" --scheduledautoupdate $(Arg0)
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\InstallAgent.exe -Embedding
"C:\Program Files\Lenovo\iMController\AutoUpdate.exe"
C:\WINDOWS\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:Lr1633p/40K6wKEl.1
"C:\Program Files\AVAST Software\SZBrowser\1.48.2066.114_0\SZBrowser_autoupdate.exe" --host --pipeid=oauc_task_piped97c5153f3602eb1fdb77254528dce68 --version=1.48.2066.114 --lang=cs --producttype --requesttype=automatic --downloaddir="C:\Program Files\AVAST Software\SZBrowser\Temp" --operadir="C:\Program Files\AVAST Software\SZBrowser\1.48.2066.114_0" --installdir="C:\Program Files\AVAST Software\SZBrowser" --profile="C:\Program Files\AVAST Software\SZBrowser\Temp" --nometrics --scheduledtask
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Opera\39.0.2256.48\opera_autoupdate.exe" --host --pipeid=oauc_task_pipee59e7323ed1cebd78082538c8b9cbe70 --version=39.0.2256.48 --lang=cs --producttype --requesttype=start --downloaddir="C:\WINDOWS\TEMP\opera autoupdate" --operadir="C:\Program Files (x86)\Opera\39.0.2256.48" --installdir="C:\Program Files (x86)\Opera" --profile="C:\WINDOWS\TEMP\opera autoupdate" --nometrics --scheduledtask
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\ProgramData\Lenovo\TVSUUTS\{96229774-D3A0-4410-8400-09B79865B300}\uts.exe" /su
"C:\Users\Ondřej\Downloads\RSITx64.exe"
"systemupdate507-2016-07-07.exe" /verysilent /norestart
"C:\Users\ONDEJ~1\AppData\Local\Temp\is-I5T92.tmp\systemupdate507-2016-07-07.tmp" /SL5="$1B003A4,12874796,119296,C:\ProgramData\Lenovo\TVSUUTS\{96229774-D3A0-4410-8400-09B79865B300}\systemupdate507-2016-07-07.exe" /verysilent /norestart
"C:\ProgramData\Lenovo\tvsuinstaller\UninstallSU.exe" /s /v"/qn REBOOT=R /L*v C:\Users\ONDEJ~1\AppData\Local\Temp\tvsuSetup.log"
C:\WINDOWS\system32\msiexec.exe /V
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
setup.exe /s /v"/qn REBOOT=R /L*v C:\Users\ONDEJ~1\AppData\Local\Temp\tvsuSetup.log"
MSIEXEC.EXE /i "C:\ProgramData\Lenovo\tvsuinstaller\Lenovo System Update.msi" /L*v "C:\Users\ONDEJ~1\AppData\Local\Temp\tvsuSetup.log" /qn REBOOT=R /L*v C:\Users\ONDEJ~1\AppData\Local\Temp\tvsuSetup.log TRANSFORMS="1033.MST" SETUPEXEDIR="C:\ProgramData\Lenovo\tvsuinstaller" SETUPEXENAME="setup.exe"
C:\Windows\syswow64\MsiExec.exe -Embedding F32661096ACBE2A8AAE9BAE45264624E
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe811_ Global\UsGthrCtrlFltPipeMssGthrPipe811 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 632 636 644 8192 640
"C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe" /install
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"LenovoOptMouseUpdate"=C:\Program Files\Lenovo\HOTKEY\extapsup.exe [2013-06-20 255480]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2013-09-05 601080]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-09-02 3952800]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-18 633024]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2013-07-12 383768]
"Integrated Camera_Monitor"=C:\Program Files (x86)\Integrated Camera\monitor.exe [2013-08-19 1720184]
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2014-06-12 750320]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-09-16 134616]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-08-11 8900328]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-09-09 12:20:51 ----SHD---- C:\Config.Msi
2016-09-09 12:13:34 ----D---- C:\Program Files\trend micro
2016-09-09 12:13:30 ----D---- C:\rsit
2016-09-09 11:57:30 ----HD---- C:\OneDriveTemp
2016-09-02 17:08:24 ----HD---- C:\$WINDOWS.~BT
2016-08-25 19:17:41 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-08-10 18:17:51 ----A---- C:\WINDOWS\system32\wmp.dll
2016-08-10 18:17:50 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-08-10 18:17:50 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 18:17:49 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-08-10 18:17:49 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-08-10 18:17:48 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-08-10 18:17:48 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-08-10 18:17:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-08-10 18:17:47 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-08-10 18:17:46 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\wevtutil.exe
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-08-10 18:17:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-08-10 18:17:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-08-10 18:17:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-08-10 18:17:45 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-08-10 18:17:45 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-08-10 18:17:45 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-08-10 18:17:45 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2016-08-10 18:17:45 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-08-10 18:17:44 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 18:17:44 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 18:17:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-08-10 18:17:43 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-08-10 18:17:42 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-08-10 18:17:42 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-08-10 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-08-10 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\tdlrecover.exe
2016-08-10 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-08-10 18:17:41 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-08-10 18:17:41 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-08-10 18:17:41 ----A---- C:\WINDOWS\system32\usocore.dll
2016-08-10 18:17:41 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-08-10 18:17:40 ----A---- C:\WINDOWS\system32\cdd.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-08-10 18:17:39 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-08-10 18:17:39 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-08-10 18:17:38 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 18:17:38 ----A---- C:\WINDOWS\system32\wininet.dll
2016-08-10 18:17:38 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-08-10 18:17:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-08-10 18:17:37 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-08-10 18:17:37 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-08-10 18:17:36 ----A---- C:\WINDOWS\SYSWOW64\wevtutil.exe
2016-08-10 18:17:36 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-08-10 18:17:36 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-08-10 18:17:36 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-08-10 18:17:35 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-08-10 18:17:35 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-08-10 18:17:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-08-10 18:17:35 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-08-10 18:17:35 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-08-10 18:17:35 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-08-10 18:17:35 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-08-10 18:17:34 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-10 18:17:34 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-08-10 18:17:34 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-08-10 18:17:33 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-10 18:17:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 18:17:33 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-10 18:17:32 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-08-10 18:17:32 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-08-10 18:17:32 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-10 18:17:31 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-08-10 18:17:31 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-10 18:17:31 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-10 18:17:31 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-08-10 18:17:30 ----A---- C:\WINDOWS\system32\wldp.dll
2016-08-10 18:17:30 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-10 18:17:30 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 18:17:29 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-10 18:17:29 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-10 18:17:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-08-10 18:17:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-08-10 18:17:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-08-10 18:17:25 ----A---- C:\WINDOWS\system32\ole32.dll
2016-08-10 18:17:24 ----A---- C:\WINDOWS\system32\shell32.dll
2016-08-10 18:17:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-08-10 18:17:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-08-10 18:17:22 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-08-10 18:17:21 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-08-10 18:17:21 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-08-10 18:17:21 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-08-10 18:17:19 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-08-10 18:17:18 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-08-10 18:17:18 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-08-10 18:17:17 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-08-10 18:17:17 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-08-10 18:17:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-08-10 18:17:16 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2016-08-10 18:17:16 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-08-10 18:17:16 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-08-10 18:17:15 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-08-10 18:17:15 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-10 18:17:15 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-08-10 18:17:14 ----A---- C:\WINDOWS\system32\bthserv.dll
2016-08-10 18:17:13 ----A---- C:\WINDOWS\system32\ie4uinit.exe
======List of files/folders modified in the last 1 month======
2016-09-09 12:21:03 ----SHD---- C:\WINDOWS\Installer
2016-09-09 12:21:03 ----D---- C:\WINDOWS\Temp
2016-09-09 12:21:02 ----RSD---- C:\WINDOWS\assembly
2016-09-09 12:20:54 ----D---- C:\Program Files (x86)\Lenovo
2016-09-09 12:20:04 ----D---- C:\WINDOWS\SysWOW64
2016-09-09 12:16:17 ----HD---- C:\Program Files\WindowsApps
2016-09-09 12:14:41 ----D---- C:\WINDOWS\Prefetch
2016-09-09 12:14:14 ----D---- C:\ProgramData\Lenovo
2016-09-09 12:13:34 ----RD---- C:\Program Files
2016-09-09 11:58:44 ----D---- C:\WINDOWS\system32\sru
2016-09-09 11:55:56 ----D---- C:\WINDOWS\system32\drivers
2016-09-06 22:46:52 ----D---- C:\WINDOWS\system32\config
2016-09-06 22:08:46 ----D---- C:\WINDOWS\Microsoft.NET
2016-09-06 21:14:06 ----HD---- C:\ProgramData
2016-09-05 19:15:15 ----SHD---- C:\System Volume Information
2016-09-05 18:03:52 ----D---- C:\WINDOWS\AppReadiness
2016-09-04 09:21:56 ----D---- C:\Users\Ondřej\AppData\Roaming\Skype
2016-09-02 17:09:35 ----DC---- C:\WINDOWS\Panther
2016-09-02 17:08:23 ----D---- C:\WINDOWS\Logs
2016-09-01 19:16:59 ----D---- C:\WINDOWS\CbsTemp
2016-09-01 19:16:54 ----D---- C:\WINDOWS\system32\appraiser
2016-09-01 19:01:39 ----D---- C:\WINDOWS\WinSxS
2016-08-29 22:02:19 ----D---- C:\ProgramData\Skype
2016-08-29 22:02:13 ----RD---- C:\Program Files (x86)\Skype
2016-08-26 05:27:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-26 05:27:32 ----RD---- C:\Program Files (x86)
2016-08-24 18:21:43 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-08-22 19:42:24 ----D---- C:\WINDOWS\System32
2016-08-22 19:42:24 ----D---- C:\WINDOWS\INF
2016-08-22 19:42:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-22 13:17:24 ----D---- C:\WINDOWS\system32\NDF
2016-08-18 05:11:42 ----D---- C:\WINDOWS\system32\Tasks
2016-08-14 11:42:13 ----D---- C:\WINDOWS\rescache
2016-08-12 21:50:40 ----D---- C:\WINDOWS\system32\catroot2
2016-08-12 14:09:07 ----D---- C:\WINDOWS\system32\DriverStore
2016-08-12 05:26:31 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-08-12 05:26:31 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-08-12 05:26:30 ----D---- C:\WINDOWS\system32\en-US
2016-08-12 05:26:30 ----D---- C:\WINDOWS\system32\cs-CZ
2016-08-12 05:26:29 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-08-12 05:26:29 ----D---- C:\Program Files\Windows Journal
2016-08-12 05:26:29 ----D---- C:\Program Files\Internet Explorer
2016-08-12 05:26:29 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-12 05:18:26 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2016-08-12 05:18:21 ----D---- C:\WINDOWS\system32\MRT
2016-08-12 05:14:54 ----AC---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-07-16 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-08-06 292704]
R0 Fastboot;Fastboot; C:\WINDOWS\System32\DRIVERS\fastboot.sys [2014-06-12 65928]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-07-16 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-07-16 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-07-16 1070904]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-07-16 473592]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-07-16 37656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-07-16 108304]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-07-16 162904]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AmUStor;@oem7.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-06-25 109336]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-03 84992]
R3 IBMPMDRV;IBMPMDRV; C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys [2015-06-26 72400]
R3 ibtfltcoex;@oem16.inf,%PROVIDER_NAME%;Intel Corporation; C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys [2015-07-01 79632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-10-26 3797424]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem35.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-07-20 38976]
R3 MEIx64;@oem41.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-10-30 3343872]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2015-09-02 44192]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-03 112640]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-08-03 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-08-03 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem5.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-25 129152]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-08-03 181248]
S3 ssudmdm;@oem8.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-04-25 221824]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-07-16 197128]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2014-06-12 140016]
R2 IBMPMSVC;@oem4.inf,%ibm.svcDesc0%;Lenovo PM Service; C:\WINDOWS\system32\ibmpmsvc.exe [2015-06-26 131312]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-10-26 330136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-16 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo Settings Service;Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2013-08-02 2045944]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 LocationTaskManager;Location Task Manager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [2013-06-22 465912]
R2 OneSyncSvc_1900126c;Hostitel synchronizace_1900126c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 QuickControlMasterSvc;Lenovo QuickControl Master Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2013-07-17 59384]
R3 AVControlCenter;AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [2013-09-05 573432]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-10-26 291744]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LENOVO.CAMMUTE;Lenovo AVFramework Camera Privacy Controller; C:\Program Files\Lenovo\Communications Utility\cammute.exe [2013-09-05 511992]
R3 LENOVO.TPKNRSVC;Lenovo AVFramework Microphone Volume Controller and Dolby Interface; C:\Program Files\Lenovo\Communications Utility\tpknrsvc.exe [2013-09-05 511992]
R3 LENOVO.TVTVCAM;Lenovo AVFramework Virtual Camera Controller Service; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2013-09-05 694776]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 PimIndexMaintenanceSvc_1900126c;Data kontaktů_1900126c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 Power Manager DBC Service;Lenovo Settings Power Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-09-04 1668904]
R3 QuickControlService;Lenovo QuickControl Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2013-07-17 138232]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_13d0c97;Hostitel synchronizace_13d0c97; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1a6e94f;Hostitel synchronizace_1a6e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1d0c036;Hostitel synchronizace_1d0c036; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1f03b0c;Hostitel synchronizace_1f03b0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_33904e9;Hostitel synchronizace_33904e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_36db260;Hostitel synchronizace_36db260; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3a3cc11;Hostitel synchronizace_3a3cc11; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3e9f5f1;Hostitel synchronizace_3e9f5f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4b714b4;Hostitel synchronizace_4b714b4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4d10014;Hostitel synchronizace_4d10014; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5f9b66;Hostitel synchronizace_5f9b66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_747d7d;Hostitel synchronizace_747d7d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_772410;Hostitel synchronizace_772410; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_a06160;Hostitel synchronizace_a06160; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_ea71f6;Hostitel synchronizace_ea71f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_fe191c7;Hostitel synchronizace_fe191c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-16 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 intelsba;Intel(R) Small Business Advantage; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2013-07-26 54976]
S3 LSC.Services.SystemService;Lenovo Solution Center System Service; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [2016-04-20 273232]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_13d0c97;Služba zasílání zpráv_13d0c97; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1900126c;Služba zasílání zpráv_1900126c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1a6e94f;Služba zasílání zpráv_1a6e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1d0c036;Služba zasílání zpráv_1d0c036; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1f03b0c;Služba zasílání zpráv_1f03b0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_33904e9;Služba zasílání zpráv_33904e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_36db260;Služba zasílání zpráv_36db260; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3a3cc11;Služba zasílání zpráv_3a3cc11; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3e9f5f1;Služba zasílání zpráv_3e9f5f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4b714b4;Služba zasílání zpráv_4b714b4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4d10014;Služba zasílání zpráv_4d10014; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_5f9b66;Služba zasílání zpráv_5f9b66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_747d7d;Služba zasílání zpráv_747d7d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_772410;Služba zasílání zpráv_772410; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_a06160;Služba zasílání zpráv_a06160; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_ea71f6;Služba zasílání zpráv_ea71f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_fe191c7;Služba zasílání zpráv_fe191c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-08-25 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_13d0c97;Data kontaktů_13d0c97; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1a6e94f;Data kontaktů_1a6e94f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1d0c036;Data kontaktů_1d0c036; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1f03b0c;Data kontaktů_1f03b0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_33904e9;Data kontaktů_33904e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_36db260;Data kontaktů_36db260; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3a3cc11;Data kontaktů_3a3cc11; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3e9f5f1;Data kontaktů_3e9f5f1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4b714b4;Data kontaktů_4b714b4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4d10014;Data kontaktů_4d10014; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5f9b66;Data kontaktů_5f9b66; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_747d7d;Data kontaktů_747d7d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_772410;Data kontaktů_772410; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_a06160;Data kontaktů_a06160; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_ea71f6;Data kontaktů_ea71f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_fe191c7;Data kontaktů_fe191c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2016-07-07 28544]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2013-06-24 110072]
-----------------EOF-----------------
Děkuju, Ondra
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený notebook
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený notebook
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený notebook
Přikládám log
# AdwCleaner v6.010 - Log soubor vytvořen 09/09/2016 na 23:38:33
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-09.2 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Ondřej - ONDRA-PC
# Beží od : C:\Users\Ondřej\Downloads\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Ondřej\AppData\Local\SweetLabs App Platform
[-] Adresář smazán:C:\Users\Default User\AppData\Local\Pokki
[#] Adresář nelze smazat:C:\Users\Default\AppData\Local\Pokki
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Classes\pokki
[#] Klíč smazán po restartování:HKCU\Software\Classes\pokki
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\SweetLabs App Platform
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Klíč smazán po restartování:HKCU\Software\SweetLabs App Platform
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Hodnota smazána:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Klíč smazán:HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\Directory\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\Drive\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\lnkfile\shell\pokki
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2629 Bajtů] - [09/09/2016 23:38:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [2937 Bajtů] - [09/09/2016 23:32:58]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2777 Bajtů] ##########
# AdwCleaner v6.010 - Log soubor vytvořen 09/09/2016 na 23:38:33
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-09.2 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Ondřej - ONDRA-PC
# Beží od : C:\Users\Ondřej\Downloads\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Ondřej\AppData\Local\SweetLabs App Platform
[-] Adresář smazán:C:\Users\Default User\AppData\Local\Pokki
[#] Adresář nelze smazat:C:\Users\Default\AppData\Local\Pokki
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Classes\pokki
[#] Klíč smazán po restartování:HKCU\Software\Classes\pokki
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\SweetLabs App Platform
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Klíč smazán:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Klíč smazán po restartování:HKCU\Software\SweetLabs App Platform
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Hodnota smazána:HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Klíč smazán:HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\Directory\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\Drive\shell\pokki
[-] Klíč smazán:HKCU\Software\Classes\lnkfile\shell\pokki
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2629 Bajtů] - [09/09/2016 23:38:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [2937 Bajtů] - [09/09/2016 23:32:58]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2777 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený notebook
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený notebook
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Ran by Ondřej (administrator) on ONDRA-PC (10-09-2016 20:44:01)
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
() C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\E046963F.LenovoCompanion_3.59.1.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [601080 2013-09-05] (Lenovo Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-08-19] ()
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-06-12] (Lenovo)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6618920 2013-09-04] (Lenovo Group Limited)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-08-11] (AVAST Software)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\RunOnce: [Uninstall C:\Users\OndYej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-16] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ae7fbfcd-2401-4cd2-8d92-a813d23f9736}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{afc96962-e335-40e7-9268-d208e976ade6}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
FireFox:
========
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default
FF Homepage: www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Extension: (Firefox Hotfix) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-07-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-16] (AVAST Software)
S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [573432 2013-09-05] (Lenovo Corporation)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-06-12] (Lenovo)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-26] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-26] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2045944 2013-08-02] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [694776 2013-09-05] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo Group Limited)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [465912 2013-06-22] ()
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-04-20] (Lenovo)
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-17] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-17] (Lenovo Group Limited)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [28544 2016-07-07] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-09-02] (Synaptics Incorporated)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969560 2016-09-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-09-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-10] (AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R0 Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [65928 2014-06-12] (Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-09-02] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-10 20:44 - 2016-09-10 20:45 - 00015888 _____ C:\Users\Ondřej\Desktop\FRST.txt
2016-09-10 20:43 - 2016-09-10 20:44 - 00000000 ____D C:\FRST
2016-09-10 20:42 - 2016-09-10 20:42 - 02397696 _____ (Farbar) C:\Users\Ondřej\Desktop\FRST64.exe
2016-09-10 08:44 - 2016-08-06 10:23 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFBB.tmp
2016-09-10 08:44 - 2016-07-16 20:37 - 00473592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFAA.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00162904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFBC.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00108304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA8.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF96.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA9.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA7.tmp
2016-09-10 08:44 - 2016-07-16 20:30 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF95.tmp
2016-09-10 08:44 - 2016-07-16 20:30 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF75.tmp
2016-09-10 08:43 - 2016-09-10 08:43 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-10 08:43 - 2016-09-10 08:43 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-10 08:41 - 2016-09-10 08:41 - 00000000 ___HD C:\OneDriveTemp
2016-09-09 23:30 - 2016-09-09 23:38 - 00000000 ____D C:\AdwCleaner
2016-09-09 23:29 - 2016-09-09 23:29 - 03826240 _____ C:\Users\Ondřej\Downloads\adwcleaner_6.010.exe
2016-09-09 12:13 - 2016-09-09 12:24 - 00000000 ____D C:\rsit
2016-09-09 12:13 - 2016-09-09 12:23 - 00000000 ____D C:\Program Files\trend micro
2016-09-09 12:11 - 2016-09-09 12:12 - 01222144 _____ C:\Users\Ondřej\Downloads\RSITx64.exe
2016-09-07 06:08 - 2016-09-07 06:08 - 00000000 ____D C:\Users\Ondřej\Desktop\Niky (1)
2016-09-02 17:08 - 2016-09-02 17:08 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-25 19:17 - 2016-09-09 23:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-21 14:39 - 2016-08-21 15:44 - 612429824 _____ C:\Users\Ondřej\Downloads\SpaceBalls_VHS_CZ.avi
2016-08-18 05:11 - 2016-08-18 05:11 - 00003332 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-10 20:42 - 2015-01-29 21:04 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-10 20:24 - 2016-04-10 08:42 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-09-10 15:04 - 2015-01-27 22:14 - 00004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8E5F5D3F-003E-4298-8910-6B056B885298}
2016-09-10 08:47 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-10 08:47 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-10 08:44 - 2015-01-27 22:43 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-09-10 08:43 - 2016-07-16 20:37 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-10 08:43 - 2014-06-12 17:20 - 772730880 ___SH C:\WINDOWS\lenovo_fastboot.img
2016-09-10 08:41 - 2015-09-02 18:46 - 00000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2016-09-10 08:41 - 2015-01-27 17:40 - 00000000 __RDO C:\Users\Ondřej\SkyDrive
2016-09-09 23:40 - 2015-12-06 21:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-09 23:39 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-09-09 23:39 - 2015-01-27 22:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-09 23:32 - 2015-12-06 21:37 - 00000000 ____D C:\ProgramData\Lenovo
2016-09-09 13:07 - 2015-01-29 20:52 - 00003956 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1422557562
2016-09-09 13:07 - 2015-01-29 20:52 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-09-09 13:07 - 2015-01-29 20:50 - 00000000 ____D C:\Program Files (x86)\Opera
2016-09-09 12:35 - 2014-06-12 17:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2016-09-09 12:21 - 2014-06-12 17:06 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-09-09 12:20 - 2014-06-12 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2016-09-09 12:20 - 2014-06-12 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-09-09 12:20 - 2014-06-12 16:55 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-09-04 09:21 - 2015-02-01 12:04 - 00000000 ____D C:\Users\Ondřej\AppData\Roaming\Skype
2016-09-02 17:09 - 2015-12-06 21:31 - 00000000 ___DC C:\WINDOWS\Panther
2016-09-01 19:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-01 19:16 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-29 22:02 - 2015-12-17 13:01 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-29 22:02 - 2015-02-01 12:03 - 00000000 ____D C:\ProgramData\Skype
2016-08-22 19:42 - 2015-10-30 20:31 - 00751272 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-22 19:42 - 2015-10-30 20:31 - 00150860 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-22 19:42 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-22 19:42 - 2015-09-02 18:35 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-22 13:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-18 05:11 - 2015-09-02 18:58 - 00002444 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-14 11:42 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-12 14:11 - 2015-01-28 08:14 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-12 05:28 - 2015-12-06 21:41 - 00000000 ____D C:\Users\Ondřej
2016-08-12 05:26 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-12 05:26 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-12 05:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-12 05:18 - 2015-01-28 08:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-12 05:14 - 2015-01-28 08:27 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2015-01-27 17:35 - 2015-01-30 12:41 - 0001532 _____ () C:\Users\Ondřej\AppData\Roaming\AbsoluteReminder.xml
2015-01-27 17:34 - 2015-01-27 17:35 - 0000193 _____ () C:\Users\Ondřej\AppData\Local\RegisteredPackageInformation.xml
2015-12-06 21:37 - 2015-12-06 21:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Ondřej\AppData\Local\Temp\libeay32.dll
C:\Users\Ondřej\AppData\Local\Temp\msvcr120.dll
C:\Users\Ondřej\AppData\Local\Temp\oct13B0.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct3EFE.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct4377.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct4E2.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct5B97.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct6DC.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octBAEC.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octD4AA.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octD811.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octEB7F.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-05 18:41
==================== End of FRST.txt ============================
Ran by Ondřej (administrator) on ONDRA-PC (10-09-2016 20:44:01)
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlInput.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
() C:\Program Files (x86)\Integrated Camera\Monitor.exe
(Lenovo) C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\E046963F.LenovoCompanion_3.59.1.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-20] (Lenovo Group Limited)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [601080 2013-09-05] (Lenovo Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-09-02] (Synaptics Incorporated)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2013-07-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-08-19] ()
HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [750320 2014-06-12] (Lenovo)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6618920 2013-09-04] (Lenovo Group Limited)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-08-11] (AVAST Software)
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\...\RunOnce: [Uninstall C:\Users\OndYej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Ondřej\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-16] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ae7fbfcd-2401-4cd2-8d92-a813d23f9736}: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{afc96962-e335-40e7-9268-d208e976ade6}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
FireFox:
========
FF ProfilePath: C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default
FF Homepage: www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Extension: (Firefox Hotfix) - C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\jjoaezw7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-07-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-16] (AVAST Software)
S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [573432 2013-09-05] (Lenovo Corporation)
R2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [140016 2014-06-12] (Lenovo)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-26] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-26] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2045944 2013-08-02] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [694776 2013-09-05] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-11] (Lenovo Group Limited)
R2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [465912 2013-06-22] ()
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-04-20] (Lenovo)
R2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-17] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138232 2013-07-17] (Lenovo Group Limited)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [28544 2016-07-07] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-09-02] (Synaptics Incorporated)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969560 2016-09-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-09-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-10] (AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R0 Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [65928 2014-06-12] (Windows (R) Win 7 DDK provider)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-09-02] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-10 20:44 - 2016-09-10 20:45 - 00015888 _____ C:\Users\Ondřej\Desktop\FRST.txt
2016-09-10 20:43 - 2016-09-10 20:44 - 00000000 ____D C:\FRST
2016-09-10 20:42 - 2016-09-10 20:42 - 02397696 _____ (Farbar) C:\Users\Ondřej\Desktop\FRST64.exe
2016-09-10 08:44 - 2016-08-06 10:23 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFBB.tmp
2016-09-10 08:44 - 2016-07-16 20:37 - 00473592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFAA.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00162904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFBC.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00108304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA8.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF96.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA9.tmp
2016-09-10 08:44 - 2016-07-16 20:36 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAFA7.tmp
2016-09-10 08:44 - 2016-07-16 20:30 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF95.tmp
2016-09-10 08:44 - 2016-07-16 20:30 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswAF75.tmp
2016-09-10 08:43 - 2016-09-10 08:43 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-10 08:43 - 2016-09-10 08:43 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-10 08:41 - 2016-09-10 08:41 - 00000000 ___HD C:\OneDriveTemp
2016-09-09 23:30 - 2016-09-09 23:38 - 00000000 ____D C:\AdwCleaner
2016-09-09 23:29 - 2016-09-09 23:29 - 03826240 _____ C:\Users\Ondřej\Downloads\adwcleaner_6.010.exe
2016-09-09 12:13 - 2016-09-09 12:24 - 00000000 ____D C:\rsit
2016-09-09 12:13 - 2016-09-09 12:23 - 00000000 ____D C:\Program Files\trend micro
2016-09-09 12:11 - 2016-09-09 12:12 - 01222144 _____ C:\Users\Ondřej\Downloads\RSITx64.exe
2016-09-07 06:08 - 2016-09-07 06:08 - 00000000 ____D C:\Users\Ondřej\Desktop\Niky (1)
2016-09-02 17:08 - 2016-09-02 17:08 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-25 19:17 - 2016-09-09 23:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-21 14:39 - 2016-08-21 15:44 - 612429824 _____ C:\Users\Ondřej\Downloads\SpaceBalls_VHS_CZ.avi
2016-08-18 05:11 - 2016-08-18 05:11 - 00003332 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-10 20:42 - 2015-01-29 21:04 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-10 20:24 - 2016-04-10 08:42 - 00000958 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-09-10 15:04 - 2015-01-27 22:14 - 00004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8E5F5D3F-003E-4298-8910-6B056B885298}
2016-09-10 08:47 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-10 08:47 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-10 08:44 - 2015-01-27 22:43 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-09-10 08:43 - 2016-07-16 20:37 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-10 08:43 - 2015-01-27 22:43 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-10 08:43 - 2014-06-12 17:20 - 772730880 ___SH C:\WINDOWS\lenovo_fastboot.img
2016-09-10 08:41 - 2015-09-02 18:46 - 00000000 __SHD C:\Users\Ondřej\IntelGraphicsProfiles
2016-09-10 08:41 - 2015-01-27 17:40 - 00000000 __RDO C:\Users\Ondřej\SkyDrive
2016-09-09 23:40 - 2015-12-06 21:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-09 23:39 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-09-09 23:39 - 2015-01-27 22:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-09 23:32 - 2015-12-06 21:37 - 00000000 ____D C:\ProgramData\Lenovo
2016-09-09 13:07 - 2015-01-29 20:52 - 00003956 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1422557562
2016-09-09 13:07 - 2015-01-29 20:52 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-09-09 13:07 - 2015-01-29 20:50 - 00000000 ____D C:\Program Files (x86)\Opera
2016-09-09 12:35 - 2014-06-12 17:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2016-09-09 12:21 - 2014-06-12 17:06 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2016-09-09 12:20 - 2014-06-12 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2016-09-09 12:20 - 2014-06-12 17:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-09-09 12:20 - 2014-06-12 16:55 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-09-04 09:21 - 2015-02-01 12:04 - 00000000 ____D C:\Users\Ondřej\AppData\Roaming\Skype
2016-09-02 17:09 - 2015-12-06 21:31 - 00000000 ___DC C:\WINDOWS\Panther
2016-09-01 19:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-01 19:16 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-29 22:02 - 2015-12-17 13:01 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-29 22:02 - 2015-02-01 12:03 - 00000000 ____D C:\ProgramData\Skype
2016-08-22 19:42 - 2015-10-30 20:31 - 00751272 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-22 19:42 - 2015-10-30 20:31 - 00150860 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-22 19:42 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-22 19:42 - 2015-09-02 18:35 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-22 13:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-18 05:11 - 2015-09-02 18:58 - 00002444 _____ C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-14 11:42 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-12 14:11 - 2015-01-28 08:14 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-12 05:28 - 2015-12-06 21:41 - 00000000 ____D C:\Users\Ondřej
2016-08-12 05:26 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-12 05:26 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-12 05:18 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-12 05:18 - 2015-01-28 08:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-12 05:14 - 2015-01-28 08:27 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2015-01-27 17:35 - 2015-01-30 12:41 - 0001532 _____ () C:\Users\Ondřej\AppData\Roaming\AbsoluteReminder.xml
2015-01-27 17:34 - 2015-01-27 17:35 - 0000193 _____ () C:\Users\Ondřej\AppData\Local\RegisteredPackageInformation.xml
2015-12-06 21:37 - 2015-12-06 21:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
C:\Users\Ondřej\AppData\Local\Temp\libeay32.dll
C:\Users\Ondřej\AppData\Local\Temp\msvcr120.dll
C:\Users\Ondřej\AppData\Local\Temp\oct13B0.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct3EFE.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct4377.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct4E2.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct5B97.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\oct6DC.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octBAEC.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octD4AA.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octD811.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\octEB7F.tmp.exe
C:\Users\Ondřej\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-05 18:41
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený notebook
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
C:\WINDOWS\system32\Drivers\aswAFBB.tmp
C:\WINDOWS\system32\Drivers\aswAFAA.tmp
C:\WINDOWS\system32\Drivers\aswAFBC.tmp
C:\WINDOWS\system32\Drivers\aswAFA8.tmp
C:\WINDOWS\system32\Drivers\aswAF96.tmp
C:\WINDOWS\system32\Drivers\aswAFA7.tmp
C:\WINDOWS\system32\Drivers\aswAF95.tmp
C:\WINDOWS\system32\Drivers\aswAF75.tmp
C:\ProgramData\DP45977C.lfl
C:\Users\Ondřej\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený notebook
Fix result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by Ondřej (10-09-2016 22:37:54) Run:1
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
C:\WINDOWS\system32\Drivers\aswAFBB.tmp
C:\WINDOWS\system32\Drivers\aswAFAA.tmp
C:\WINDOWS\system32\Drivers\aswAFBC.tmp
C:\WINDOWS\system32\Drivers\aswAFA8.tmp
C:\WINDOWS\system32\Drivers\aswAF96.tmp
C:\WINDOWS\system32\Drivers\aswAFA7.tmp
C:\WINDOWS\system32\Drivers\aswAF95.tmp
C:\WINDOWS\system32\Drivers\aswAF75.tmp
C:\ProgramData\DP45977C.lfl
C:\Users\Ondřej\AppData\Local\Temp
End
*****************
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{823CBD5F-D776-4AE0-922F-4D033E282E0C}" => key removed successfully
HKCR\CLSID\{823CBD5F-D776-4AE0-922F-4D033E282E0C} => key not found.
C:\WINDOWS\system32\Drivers\aswAFBB.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFAA.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFBC.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFA8.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF96.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFA7.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF95.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF75.tmp => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Ondřej\AppData\Local\Temp" folder move:
Could not move "C:\Users\Ondřej\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-09-2016 22:45:13)
C:\Users\Ondřej\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:45:31 ====
Ran by Ondřej (10-09-2016 22:37:54) Run:1
Running from C:\Users\Ondřej\Desktop
Loaded Profiles: Ondřej (Available Profiles: Ondřej)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> DefaultScope {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
SearchScopes: HKU\S-1-5-21-3065164672-2474091376-2333748435-1001 -> {823CBD5F-D776-4AE0-922F-4D033E282E0C} URL =
C:\WINDOWS\system32\Drivers\aswAFBB.tmp
C:\WINDOWS\system32\Drivers\aswAFAA.tmp
C:\WINDOWS\system32\Drivers\aswAFBC.tmp
C:\WINDOWS\system32\Drivers\aswAFA8.tmp
C:\WINDOWS\system32\Drivers\aswAF96.tmp
C:\WINDOWS\system32\Drivers\aswAFA7.tmp
C:\WINDOWS\system32\Drivers\aswAF95.tmp
C:\WINDOWS\system32\Drivers\aswAF75.tmp
C:\ProgramData\DP45977C.lfl
C:\Users\Ondřej\AppData\Local\Temp
End
*****************
HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3065164672-2474091376-2333748435-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{823CBD5F-D776-4AE0-922F-4D033E282E0C}" => key removed successfully
HKCR\CLSID\{823CBD5F-D776-4AE0-922F-4D033E282E0C} => key not found.
C:\WINDOWS\system32\Drivers\aswAFBB.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFAA.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFBC.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFA8.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF96.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAFA7.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF95.tmp => moved successfully
C:\WINDOWS\system32\Drivers\aswAF75.tmp => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
"C:\Users\Ondřej\AppData\Local\Temp" folder move:
Could not move "C:\Users\Ondřej\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-09-2016 22:45:13)
C:\Users\Ondřej\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:45:31 ====
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený notebook
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený notebook
Už to zase valí v pohodě, děkuju moc:) Určitě se zase za nějaký čas ukážu 
Mějte se:)
Mějte se:)-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený notebook
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?