Prosim o pomoc pocitac je velmi pomaly

Zpráva

janka173 · #1 Příspěvek od **janka173** » 26 led 2019 21:43

Logfile of random's system information tool 1.10 (written by random/random)
Run by Janka at 2019-01-26 21:35:04
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 404 GB (42%) free of 954 GB
Total RAM: 2046 MB (10% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:37:56, on 26.01.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\DAODx.exe
C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files\ASUS\EPU\EPU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe
C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Janka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KJ5P4MDC\RSIT.exe
C:\Windows\system32\RunDll32.exe
C:\Program Files\trend micro\Janka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: (no name) - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU\EPU.exe" -b
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [VoipConnect] "C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe" -nosplash -minimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [Dashlane] "C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
O4 - HKCU\..\Run: [DashlanePlugin] "C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-21-264022193-2710706558-349708152-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-264022193-2710706558-349708152-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: RF - Formular ausfüllen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComFillForms.html
O8 - Extra context menu item: RF - Formular speichern - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComSavePass.html
O8 - Extra context menu item: RF - Menü anpassen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: RF - RoboForm-Leiste ein/aus - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComShowToolbar.html
O9 - Extra button: Ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Symbolleiste anzeigen - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - RoboForm-Leiste ein/aus - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Email-Schutz (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Webschutz (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Kaspersky Anti-Virus Service 19.0.0 (AVP19.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe
O23 - Service: Kaspersky Secure Connection Service 3.0.0 (KSDE3.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe

--
End of file - 9391 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Ad-Aware Update (Weekly).job - C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe update all silent

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}]
Dashlane BHO - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-01-17 936016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce18769b-c7fa-42d2-860d-17c4662c70ad}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0}]
Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]
{C500C267-63BF-451F-8797-4D720C9A2ED9} - Kaspersky Protection Toolbar - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]
{669695BC-A811-4A9D-8CDF-BA8C795F261C} - Dashlane Toolbar - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2019-01-17 193616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TurboV EVO"=C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe [2010-04-07 9919104]
"Six Engine"=C:\Program Files\ASUS\EPU\EPU.exe [2010-03-16 5309056]
"NUSB3MON"=C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-01-22 106496]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2015-07-27 311616]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2019-01-08 98024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"=C:\Program Files\Logitech\Logitech Vid\vid.exe [2009-07-16 5458704]
"VoipConnect"=C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe [2018-02-17 42304056]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
"RoboForm"=C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2017-11-17 110376]
"Dashlane"=C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe [2019-01-17 390736]
"DashlanePlugin"=C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe [2019-01-17 413264]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1
"NoDriveTypeAutoRun"=60

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2019-01-26 18:21:54 ----A---- C:\Windows\system32\drivers\nusb3xhc.sys
2019-01-26 18:21:53 ----A---- C:\Windows\system32\nusb3co3.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\drivers\AmUStor.sys
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor2.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor.ini
2019-01-26 18:11:41 ----A---- C:\Windows\system32\drivers\jraid.sys
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RtNicProp32.dll
2019-01-26 18:07:39 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2019-01-26 18:05:34 ----A---- C:\Windows\system32\drivers\LGSHidFilt.Sys
2019-01-26 18:05:33 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VtSrdAPO.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMWRP32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMTHX32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPLD32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPCN32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO232.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIASysFx.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIAPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\VMfilt32.sys
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\viahduaa.sys
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaMicArrayAPO.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViakaraokeSrv.exe
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokePropPageExt.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokeApo.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\PropPageExt.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdap32.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2019-01-26 17:46:22 ----A---- C:\Windows\system32\drivers\amdide.sys
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispgenco3234201.dll
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispco3234201.dll
2019-01-26 15:58:56 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvopencl.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvoglv32.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvIFR.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvFBC.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuvid.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuda.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvcompiler.dll
2019-01-26 15:41:31 ----D---- C:\Users\Janka\AppData\Roaming\Dashlane
2019-01-26 15:37:15 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS
2019-01-20 19:08:44 ----D---- C:\Janka PC
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klif.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klhk.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klflt.sys
2019-01-14 21:48:21 ----HD---- C:\kleaner.tmp
2018-12-10 21:59:00 ----A---- C:\Windows\system32\drivers\klwtp.sys
2018-12-10 21:59:00 ----A---- C:\Windows\system32\drivers\kldisk.sys
2018-12-10 21:59:00 ----A---- C:\Windows\system32\drivers\klbackupflt.sys
2018-12-10 21:59:00 ----A---- C:\Windows\system32\drivers\klbackupdisk.sys
2018-12-05 22:37:49 ----A---- C:\url_setting_definitions.txt
2018-11-25 13:10:17 ----A---- C:\Windows\Reimage.ini
2018-11-14 14:21:54 ----A---- C:\Windows\system32\mshtml.dll
2018-11-14 14:21:48 ----A---- C:\Windows\system32\ieframe.dll
2018-11-14 14:21:46 ----A---- C:\Windows\system32\wininet.dll
2018-11-14 14:21:46 ----A---- C:\Windows\system32\tquery.dll
2018-11-14 14:21:46 ----A---- C:\Windows\system32\ole32.dll
2018-11-14 14:21:46 ----A---- C:\Windows\system32\mssrch.dll
2018-11-14 14:21:45 ----A---- C:\Windows\system32\vbscript.dll
2018-11-14 14:21:45 ----A---- C:\Windows\system32\rpcss.dll
2018-11-14 14:21:45 ----A---- C:\Windows\system32\iertutil.dll
2018-11-14 14:21:44 ----A---- C:\Windows\system32\win32k.sys
2018-11-14 14:21:44 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 14:21:44 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-11-14 14:21:44 ----A---- C:\Windows\system32\scrobj.dll
2018-11-14 14:21:44 ----A---- C:\Windows\system32\rpcrt4.dll
2018-11-14 14:21:44 ----A---- C:\Windows\system32\ntkrnlpa.exe
2018-11-14 14:21:44 ----A---- C:\Windows\system32\mssph.dll
2018-11-14 14:21:44 ----A---- C:\Windows\system32\KernelBase.dll
2018-11-14 14:21:43 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-11-14 14:21:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-11-14 14:21:43 ----A---- C:\Windows\system32\ntdll.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\wshcon.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\wscript.exe
2018-11-14 14:21:42 ----A---- C:\Windows\system32\scrrun.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-11-14 14:21:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\iedkcs32.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\halmacpi.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\halacpi.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\hal.dll
2018-11-14 14:21:42 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-11-14 14:21:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-11-14 14:21:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-11-14 14:21:42 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-11-14 14:21:42 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-11-14 14:21:42 ----A---- C:\Windows\system32\cscript.exe
2018-11-14 14:21:41 ----A---- C:\Windows\system32\winsrv.dll
2018-11-14 14:21:41 ----A---- C:\Windows\system32\urlmon.dll
2018-11-14 14:21:41 ----A---- C:\Windows\system32\rstrui.exe
2018-11-14 14:21:41 ----A---- C:\Windows\system32\lsasrv.dll
2018-11-14 14:21:41 ----A---- C:\Windows\system32\dispex.dll
2018-11-14 14:21:41 ----A---- C:\Windows\system32\d3d10warp.dll
2018-11-14 14:21:41 ----A---- C:\Windows\system32\conhost.exe
2018-11-14 14:21:41 ----A---- C:\Windows\system32\advapi32.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\wdigest.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\TSpkg.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\sspisrv.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\sspicli.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\srcore.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\srclient.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\smss.exe
2018-11-14 14:21:40 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\secur32.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\schannel.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\rpchttp.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\ncrypt.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\msv1_0.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\lsass.exe
2018-11-14 14:21:40 ----A---- C:\Windows\system32\kernel32.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\kerberos.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\jscript9.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\jscript.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\viac7.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\processr.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\appid.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-11-14 14:21:40 ----A---- C:\Windows\system32\csrsrv.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\cryptbase.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\credssp.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\bcrypt.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\auditpol.exe
2018-11-14 14:21:40 ----A---- C:\Windows\system32\appidsvc.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-11-14 14:21:40 ----A---- C:\Windows\system32\appidapi.dll
2018-11-14 14:21:40 ----A---- C:\Windows\system32\apisetschema.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 14:21:39 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\webcheck.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\msobjs.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\msfeeds.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\msaudite.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\comcat.dll
2018-11-14 14:21:39 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 14:21:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 14:21:38 ----A---- C:\Windows\system32\mssvp.dll
2018-11-14 14:21:38 ----A---- C:\Windows\system32\ieapfltr.dll
2018-11-14 14:21:38 ----A---- C:\Windows\system32\adtschema.dll
2018-11-14 14:21:37 ----A---- C:\Windows\system32\ieui.dll
2018-11-14 14:21:36 ----A---- C:\Windows\system32\oleres.dll
2018-11-14 14:21:36 ----A---- C:\Windows\system32\jscript9diag.dll
2018-11-14 14:21:36 ----A---- C:\Windows\system32\dxtrans.dll
2018-11-14 14:21:36 ----A---- C:\Windows\system32\dxtmsft.dll
2018-11-14 14:21:35 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 14:21:35 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-11-14 14:21:35 ----A---- C:\Windows\system32\msrating.dll
2018-11-14 14:21:35 ----A---- C:\Windows\system32\mshtmled.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\occache.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\mssphtb.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\mssitlb.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\jsproxy.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\inseng.dll
2018-11-14 14:21:34 ----A---- C:\Windows\system32\ieUnatt.exe
2018-11-14 14:21:34 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\mssprxy.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\msscntrs.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\iesetup.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\iernonce.dll
2018-11-14 14:21:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-11-14 14:21:33 ----A---- C:\Windows\system32\ie4uinit.exe
2018-11-14 14:21:32 ----A---- C:\Windows\system32\msshooks.dll
2018-11-14 14:21:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll

======List of files/folders modified in the last 3 months======

2019-01-26 21:35:09 ----D---- C:\Program Files\trend micro
2019-01-26 21:33:36 ----D---- C:\ProgramData\Kaspersky Lab
2019-01-26 21:31:53 ----D---- C:\Windows\system32\Macromed
2019-01-26 21:28:34 ----D---- C:\Windows\System32
2019-01-26 21:28:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-01-26 21:28:33 ----D---- C:\Windows\inf
2019-01-26 21:26:34 ----D---- C:\Windows\Temp
2019-01-26 21:26:34 ----D---- C:\Windows\Prefetch
2019-01-26 21:23:35 ----D---- C:\Windows
2019-01-26 21:22:17 ----SHD---- C:\System Volume Information
2019-01-26 18:30:00 ----D---- C:\Windows\system32\drivers
2019-01-26 18:28:21 ----D---- C:\ProgramData\NVIDIA
2019-01-26 18:25:26 ----D---- C:\Windows\system32\catroot
2019-01-26 18:23:44 ----D---- C:\Windows\system32\DriverStore
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RTNUninst32.dll
2019-01-26 18:04:08 ----D---- C:\Program Files\VIA
2019-01-26 16:10:33 ----D---- C:\Program Files\NVIDIA Corporation
2019-01-26 15:58:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvd3dum.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvapi.dll
2019-01-26 15:42:53 ----D---- C:\ProgramData\ProductData
2019-01-26 15:41:30 ----D---- C:\Windows\system32\Tasks
2019-01-26 15:41:15 ----D---- C:\ProgramData\IObit
2019-01-26 15:39:39 ----D---- C:\Users\Janka\AppData\Roaming\IObit
2019-01-26 15:36:53 ----D---- C:\Program Files\IObit
2019-01-22 19:47:08 ----SHD---- C:\Windows\Installer
2019-01-17 20:43:44 ----D---- C:\Tom
2019-01-17 20:18:51 ----D---- C:\Windows\Minidump
2019-01-17 20:12:39 ----HD---- C:\ProgramData
2019-01-17 20:12:39 ----D---- C:\Program Files
2019-01-14 21:59:11 ----D---- C:\Program Files\Common Files\AV
2019-01-14 21:58:25 ----D---- C:\Program Files\Kaspersky Lab
2019-01-14 21:47:36 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2019-01-09 08:02:07 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2019-01-09 07:43:03 ----D---- C:\ProgramData\Package Cache
2018-12-23 12:58:03 ----D---- C:\Windows\system32\catroot2
2018-11-26 18:40:36 ----SHD---- C:\$Recycle.Bin
2018-11-25 13:31:25 ----D---- C:\Windows\system32\config
2018-11-14 19:19:59 ----D---- C:\Windows\rescache
2018-11-14 19:03:49 ----D---- C:\Windows\Microsoft.NET
2018-11-14 18:53:50 ----RSD---- C:\Windows\assembly
2018-11-14 18:46:33 ----D---- C:\Windows\winsxs
2018-11-14 18:40:53 ----D---- C:\Program Files\Internet Explorer
2018-11-14 18:40:52 ----D---- C:\Windows\system32\migration
2018-11-14 18:40:52 ----D---- C:\Windows\system32\de-DE
2018-11-14 18:40:50 ----D---- C:\Windows\system32\en-US
2018-11-13 09:57:51 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 14392]
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2018-05-07 46440]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2018-05-07 23304]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x86 (56 bit); C:\Windows\system32\DRIVERS\cm_km.sys [2018-01-27 178368]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2019-01-26 106296]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2018-02-20 151240]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2018-12-10 63688]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2009-08-04 11296]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2018-07-08 147880]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2018-05-07 35840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 389632]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2019-01-26 23840]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2018-12-10 102152]
R1 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2018-12-10 76880]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2019-01-14 680232]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2019-01-14 876320]
R1 klim6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2018-02-12 49344]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2017-05-30 45520]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2017-11-07 75488]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2018-12-10 152896]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2018-02-24 168640]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2018-07-08 132448]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2018-05-07 59000]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35088]
R3 AmUStor;Al USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2019-01-26 75200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2019-01-14 173152]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2018-01-15 51400]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2017-12-11 76328]
R3 kltap;Kaspersky Security Data Escort Adapter; C:\Windows\system32\DRIVERS\kltap.sys [2018-02-12 45496]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2019-01-26 39960]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 13216]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2019-01-26 169472]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2019-01-26 171312]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2019-01-26 913344]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-10-19 31288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2019-01-26 575696]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-08-20 717296]
S1 SASDIFSV;SASDIFSV; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS []
S1 SASKUTIL;SASKUTIL; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP-Bus-Filtertreiber; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-05-21 89984]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-09-02 41240]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-09-02 39192]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-12 41752]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2019-01-14 40776]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\Windows\system32\drivers\mwac.sys []
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 59904]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561AV.SYS [2007-10-12 490776]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-02-21 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 sisagp;SIS AGP-Bus-Filter; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2015-05-21 184192]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2017-08-30 23040]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-02-21 49664]
S3 usbscan;USB-Scannertreiber; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP-Bus-Filter; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;VIA C7-Prozessortreiber; C:\Windows\system32\drivers\viac7.sys [2018-11-11 53248]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S4 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-12-28 96896]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2019-01-08 438384]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2019-01-21 103728]
R2 AVP19.0.0;Kaspersky Anti-Virus Service 19.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe [2018-02-28 619640]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [2009-08-24 406016]
R2 KSDE3.0.0;Kaspersky Secure Connection Service 3.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [2018-02-28 617016]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$VIAGOGODB;SQL Server (VIAGOGODB); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-11-14 677312]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-05-21 743688]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2019-01-26 36496]
S2 AntiVirMailService;Avira Email-Schutz; C:\Program Files\Avira\Antivirus\avmailc7.exe [2018-09-06 895056]
S2 AntiVirSchedulerService;Avira Planer; C:\Program Files\Avira\Antivirus\sched.exe [2018-09-06 226000]
S2 AntiVirService;Avira Echtzeit-Scanner; C:\Program Files\Avira\Antivirus\avguard.exe [2018-09-06 226000]
S2 AntiVirWebService;Avira Webschutz; C:\Program Files\Avira\Antivirus\avwebg7.exe [2018-09-06 1148568]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-09 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 104960]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 295192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET-Zustandsdienst; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

#2 Příspěvek od **Rudy** » 26 led 2019 21:53

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

janka173 · #3 Příspěvek od **janka173** » 27 led 2019 20:47

Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-25.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-27-2019
# Duration: 00:00:51
# OS: Windows 7 Professional
# Cleaned: 54
# Failed: 2

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\IObit\Advanced SystemCare V7
Deleted C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare V7
Deleted C:\Users\Janka\AppData\LocalLow\IObit\Advanced SystemCare V7
Deleted C:\Users\Janka\AppData\Roaming\IObit\Advanced SystemCare V7
Deleted C:\Users\Janka\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

Deleted C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\Driver Booster Scheduler

***** [ Registry ] *****

Deleted HKLM\Software\IObit\RealTimeProtector
Deleted HKLM\Software\Classes\TypeLib\{60AD0991-ECD4-49DC-B170-8B7E7C60F51B}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\ByteFence
Deleted HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{D28C7E56-2CC6-415C-8727-D71334085926}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{D28C7E56-2CC6-415C-8727-D71334085926}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID|{1D970ED5-3EDA-438D-BFFD-715931E2775B}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
Deleted HKLM\Software\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKLM\Software\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75CAE28D-879B-4868-8E1F-71AA9533F7A1}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted HKCU\Software\Reimage
Deleted HKLM\Software\Reimage
Deleted HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted HKLM\Software\Classes\REI_AxControl.ReiEngine.1
Deleted HKLM\Software\Classes\REI_AxControl.ReiEngine
Deleted HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\SpyHunter4.exe
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

Not Deleted MSN Homepage & Bing Search Engine
Not Deleted MSN Homepage & Bing Search Engine

***** [ Chromium URLs ] *****

Deleted Search the web (Babylon)
Deleted Search the web (Babylon)
Deleted Search the web (Babylon)
Deleted Search the web (Babylon)
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch
Deleted mystartsearch

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5751 octets] - [27/01/2019 20:39:49]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#4 Příspěvek od **Rudy** » 27 led 2019 20:54

OK. Dejte nový log RSIT.

janka173 · #5 Příspěvek od **janka173** » 28 led 2019 20:12

Logfile of random's system information tool 1.10 (written by random/random)
Run by Janka at 2019-01-28 20:07:19
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 406 GB (43%) free of 954 GB
Total RAM: 2046 MB (4% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:10:30, on 28.01.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\DAODx.exe
C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files\ASUS\EPU\EPU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe
C:\Windows\system32\msfeedssync.exe
C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
C:\Program Files\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\RunDll32.exe
C:\Users\Janka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B2KH3OUR\RSIT.exe
C:\Program Files\trend micro\Janka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: (no name) - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU\EPU.exe" -b
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [VoipConnect] "C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe" -nosplash -minimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [Dashlane] "C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
O4 - HKCU\..\Run: [DashlanePlugin] "C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O8 - Extra context menu item: RF - Formular ausfüllen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComFillForms.html
O8 - Extra context menu item: RF - Formular speichern - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComSavePass.html
O8 - Extra context menu item: RF - Menü anpassen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: RF - RoboForm-Leiste ein/aus - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComShowToolbar.html
O9 - Extra button: Ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Symbolleiste anzeigen - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - RoboForm-Leiste ein/aus - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Email-Schutz (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Webschutz (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Kaspersky Anti-Virus Service 19.0.0 (AVP19.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe
O23 - Service: Kaspersky Secure Connection Service 3.0.0 (KSDE3.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe

--
End of file - 9269 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Ad-Aware Update (Weekly).job - C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe update all silent

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}]
Dashlane BHO - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-01-17 936016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce18769b-c7fa-42d2-860d-17c4662c70ad}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0}]
Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]
{C500C267-63BF-451F-8797-4D720C9A2ED9} - Kaspersky Protection Toolbar - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]
{669695BC-A811-4A9D-8CDF-BA8C795F261C} - Dashlane Toolbar - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2019-01-17 193616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TurboV EVO"=C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe [2010-04-07 9919104]
"Six Engine"=C:\Program Files\ASUS\EPU\EPU.exe [2010-03-16 5309056]
"NUSB3MON"=C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-01-22 106496]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2015-07-27 311616]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2019-01-08 98024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"=C:\Program Files\Logitech\Logitech Vid\vid.exe [2009-07-16 5458704]
"VoipConnect"=C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe [2018-02-17 42304056]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
"RoboForm"=C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2017-11-17 110376]
"Dashlane"=C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe [2019-01-17 390736]
"DashlanePlugin"=C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe [2019-01-17 413264]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1
"NoDriveTypeAutoRun"=60

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-01-26 22:24:29 ----SHD---- C:\Config.Msi
2019-01-26 18:21:54 ----A---- C:\Windows\system32\drivers\nusb3xhc.sys
2019-01-26 18:21:53 ----A---- C:\Windows\system32\nusb3co3.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\drivers\AmUStor.sys
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor2.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor.ini
2019-01-26 18:11:41 ----A---- C:\Windows\system32\drivers\jraid.sys
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RtNicProp32.dll
2019-01-26 18:07:39 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2019-01-26 18:05:34 ----A---- C:\Windows\system32\drivers\LGSHidFilt.Sys
2019-01-26 18:05:33 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VtSrdAPO.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMWRP32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMTHX32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPLD32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPCN32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO232.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIASysFx.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIAPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\VMfilt32.sys
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\viahduaa.sys
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaMicArrayAPO.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViakaraokeSrv.exe
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokePropPageExt.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokeApo.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\PropPageExt.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdap32.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2019-01-26 17:46:22 ----A---- C:\Windows\system32\drivers\amdide.sys
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispgenco3234201.dll
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispco3234201.dll
2019-01-26 15:58:56 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvopencl.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvoglv32.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvIFR.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvFBC.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuvid.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuda.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvcompiler.dll
2019-01-26 15:41:31 ----D---- C:\Users\Janka\AppData\Roaming\Dashlane
2019-01-26 15:37:15 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS
2019-01-20 19:08:44 ----D---- C:\Janka PC
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klif.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klhk.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klflt.sys
2019-01-14 21:48:21 ----HD---- C:\kleaner.tmp

======List of files/folders modified in the last 1 month======

2019-01-28 20:07:35 ----D---- C:\Program Files\trend micro
2019-01-28 20:07:11 ----D---- C:\Windows\Temp
2019-01-28 20:05:02 ----D---- C:\ProgramData\Kaspersky Lab
2019-01-28 19:54:08 ----SHD---- C:\System Volume Information
2019-01-28 08:23:08 ----D---- C:\Windows\System32
2019-01-28 08:23:08 ----D---- C:\Windows\inf
2019-01-28 08:23:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-01-27 20:44:03 ----D---- C:\Windows\system32\Tasks
2019-01-27 20:40:27 ----D---- C:\Windows
2019-01-27 20:40:27 ----D---- C:\ProgramData\IObit
2019-01-27 20:40:25 ----D---- C:\Users\Janka\AppData\Roaming\IObit
2019-01-27 20:39:49 ----D---- C:\AdwCleaner
2019-01-27 20:25:19 ----D---- C:\Windows\Microsoft.NET
2019-01-27 07:48:44 ----D---- C:\Windows\system32\Macromed
2019-01-27 07:40:23 ----D---- C:\Windows\Prefetch
2019-01-27 07:39:23 ----D---- C:\Windows\system32\catroot2
2019-01-26 22:27:28 ----SHD---- C:\Windows\Installer
2019-01-26 18:30:00 ----D---- C:\Windows\system32\drivers
2019-01-26 18:28:21 ----D---- C:\ProgramData\NVIDIA
2019-01-26 18:25:26 ----D---- C:\Windows\system32\catroot
2019-01-26 18:23:44 ----D---- C:\Windows\system32\DriverStore
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RTNUninst32.dll
2019-01-26 18:04:08 ----D---- C:\Program Files\VIA
2019-01-26 16:10:33 ----D---- C:\Program Files\NVIDIA Corporation
2019-01-26 15:58:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvd3dum.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvapi.dll
2019-01-26 15:42:53 ----D---- C:\ProgramData\ProductData
2019-01-26 15:36:53 ----D---- C:\Program Files\IObit
2019-01-17 20:43:44 ----D---- C:\Tom
2019-01-17 20:18:51 ----D---- C:\Windows\Minidump
2019-01-17 20:12:39 ----HD---- C:\ProgramData
2019-01-17 20:12:39 ----D---- C:\Program Files
2019-01-14 21:59:11 ----D---- C:\Program Files\Common Files\AV
2019-01-14 21:58:25 ----D---- C:\Program Files\Kaspersky Lab
2019-01-14 21:47:36 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2019-01-13 18:49:47 ----A---- C:\url_setting_definitions.txt
2019-01-09 08:02:07 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2019-01-09 07:43:03 ----D---- C:\ProgramData\Package Cache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 14392]
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2018-05-07 46440]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2018-05-07 23304]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x86 (56 bit); C:\Windows\system32\DRIVERS\cm_km.sys [2018-01-27 178368]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2019-01-26 106296]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2018-02-20 151240]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2018-12-10 63688]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2009-08-04 11296]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2018-07-08 147880]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2018-05-07 35840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 389632]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2019-01-26 23840]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2018-12-10 102152]
R1 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2018-12-10 76880]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2019-01-14 680232]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2019-01-14 876320]
R1 klim6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2018-02-12 49344]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2017-05-30 45520]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2017-11-07 75488]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2018-12-10 152896]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2018-02-24 168640]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2018-07-08 132448]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2018-05-07 59000]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35088]
R3 AmUStor;Al USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2019-01-26 75200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2019-01-14 173152]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2018-01-15 51400]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2017-12-11 76328]
R3 kltap;Kaspersky Security Data Escort Adapter; C:\Windows\system32\DRIVERS\kltap.sys [2018-02-12 45496]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2019-01-26 39960]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 13216]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2019-01-26 169472]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2019-01-26 171312]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2019-01-26 913344]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-10-19 31288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2019-01-26 575696]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-08-20 717296]
S1 SASDIFSV;SASDIFSV; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS []
S1 SASKUTIL;SASKUTIL; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP-Bus-Filtertreiber; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-05-21 89984]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-09-02 41240]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-09-02 39192]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-12 41752]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2019-01-14 40776]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\Windows\system32\drivers\mwac.sys []
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 59904]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561AV.SYS [2007-10-12 490776]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-02-21 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 sisagp;SIS AGP-Bus-Filter; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2015-05-21 184192]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2017-08-30 23040]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-02-21 49664]
S3 usbscan;USB-Scannertreiber; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP-Bus-Filter; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;VIA C7-Prozessortreiber; C:\Windows\system32\drivers\viac7.sys [2018-11-11 53248]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S4 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-12-28 96896]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2019-01-08 438384]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2019-01-21 103728]
R2 AVP19.0.0;Kaspersky Anti-Virus Service 19.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe [2018-02-28 619640]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [2009-08-24 406016]
R2 KSDE3.0.0;Kaspersky Secure Connection Service 3.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [2018-02-28 617016]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$VIAGOGODB;SQL Server (VIAGOGODB); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-11-14 677312]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-05-21 743688]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2019-01-26 36496]
S2 AntiVirMailService;Avira Email-Schutz; C:\Program Files\Avira\Antivirus\avmailc7.exe [2018-09-06 895056]
S2 AntiVirSchedulerService;Avira Planer; C:\Program Files\Avira\Antivirus\sched.exe [2018-09-06 226000]
S2 AntiVirService;Avira Echtzeit-Scanner; C:\Program Files\Avira\Antivirus\avguard.exe [2018-09-06 226000]
S2 AntiVirWebService;Avira Webschutz; C:\Program Files\Avira\Antivirus\avwebg7.exe [2018-09-06 1148568]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-09 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 104960]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 295192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET-Zustandsdienst; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

janka173 · #6 Příspěvek od **janka173** » 28 led 2019 20:12

Logfile of random's system information tool 1.10 (written by random/random)
Run by Janka at 2019-01-28 20:07:19
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 406 GB (43%) free of 954 GB
Total RAM: 2046 MB (4% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:10:30, on 28.01.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\DAODx.exe
C:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files\ASUS\EPU\EPU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe
C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Avira\Antivirus\avgnt.exe
C:\Program Files\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe
C:\Windows\system32\msfeedssync.exe
C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
C:\Program Files\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\RunDll32.exe
C:\Users\Janka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B2KH3OUR\RSIT.exe
C:\Program Files\trend micro\Janka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Dashlane BHO - {42D79B50-CC4A-4A8E-860F-BE674AF053A2} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: (no name) - {ce18769b-c7fa-42d2-860d-17c4662c70ad} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [Six Engine] "C:\Program Files\ASUS\EPU\EPU.exe" -b
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [VoipConnect] "C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe" -nosplash -minimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [Dashlane] "C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe" autoLaunchAtStartup
O4 - HKCU\..\Run: [DashlanePlugin] "C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe" ws
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O8 - Extra context menu item: RF - Formular ausfüllen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComFillForms.html
O8 - Extra context menu item: RF - Formular speichern - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComSavePass.html
O8 - Extra context menu item: RF - Menü anpassen - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: RF - RoboForm-Leiste ein/aus - file://C:/Program Files/Siber Systems/AI RoboForm/RoboFormComShowToolbar.html
O9 - Extra button: Ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular ausfüllen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - Formular speichern - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Symbolleiste anzeigen - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF - RoboForm-Leiste ein/aus - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Email-Schutz (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\sched.exe
O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avguard.exe
O23 - Service: Avira Webschutz (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Antivirus\avwebg7.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Kaspersky Anti-Virus Service 19.0.0 (AVP19.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe
O23 - Service: Kaspersky Secure Connection Service 3.0.0 (KSDE3.0.0) - AO Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - VIA Technologies, Inc. - C:\Windows\system32\viakaraokesrv.exe

--
End of file - 9269 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Ad-Aware Update (Weekly).job - C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe update all silent

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}]
Dashlane BHO - C:\Users\Janka\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-01-17 936016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce18769b-c7fa-42d2-860d-17c4662c70ad}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC1E29BB-F56A-45D8-B023-D3EF710FA0E0}]
Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-11-17 29203752]
{C500C267-63BF-451F-8797-4D720C9A2ED9} - Kaspersky Protection Toolbar - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\IEExt\ie_plugin.dll [2019-01-14 1179344]
{669695BC-A811-4A9D-8CDF-BA8C795F261C} - Dashlane Toolbar - C:\Users\Janka\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2019-01-17 193616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TurboV EVO"=C:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe [2010-04-07 9919104]
"Six Engine"=C:\Program Files\ASUS\EPU\EPU.exe [2010-03-16 5309056]
"NUSB3MON"=C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-01-22 106496]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2015-07-27 311616]
"Avira SystrayStartTrigger"=C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [2019-01-08 98024]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"=C:\Program Files\Logitech\Logitech Vid\vid.exe [2009-07-16 5458704]
"VoipConnect"=C:\Program Files\VoipConnect.com\VoipConnect\voipconnect.exe [2018-02-17 42304056]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
"RoboForm"=C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2017-11-17 110376]
"Dashlane"=C:\Users\Janka\AppData\Roaming\Dashlane\Dashlane.exe [2019-01-17 390736]
"DashlanePlugin"=C:\Users\Janka\AppData\Roaming\Dashlane\DashlanePlugin.exe [2019-01-17 413264]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1
"NoDriveTypeAutoRun"=60

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcodec2.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-01-26 22:24:29 ----SHD---- C:\Config.Msi
2019-01-26 18:21:54 ----A---- C:\Windows\system32\drivers\nusb3xhc.sys
2019-01-26 18:21:53 ----A---- C:\Windows\system32\nusb3co3.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\drivers\AmUStor.sys
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor2.dll
2019-01-26 18:15:45 ----A---- C:\Windows\system32\AmUStor.ini
2019-01-26 18:11:41 ----A---- C:\Windows\system32\drivers\jraid.sys
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RtNicProp32.dll
2019-01-26 18:07:39 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2019-01-26 18:05:34 ----A---- C:\Windows\system32\drivers\LGSHidFilt.Sys
2019-01-26 18:05:33 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VtSrdAPO.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMWRP32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMTHX32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPLD32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMPPCN32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO32.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VMAPO232.DLL
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIASysFx.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\VIAPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\ViaMicArrayPropPageExt.dll
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\VMfilt32.sys
2019-01-26 18:04:01 ----A---- C:\Windows\system32\drivers\viahduaa.sys
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaMicArrayAPO.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViakaraokeSrv.exe
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokePropPageExt.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\ViaKaraokeApo.dll
2019-01-26 18:04:00 ----A---- C:\Windows\system32\PropPageExt.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdap32.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2019-01-26 17:58:17 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2019-01-26 17:46:22 ----A---- C:\Windows\system32\drivers\amdide.sys
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispgenco3234201.dll
2019-01-26 15:59:10 ----A---- C:\Windows\system32\nvdispco3234201.dll
2019-01-26 15:58:56 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvopencl.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvoglv32.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvIFR.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\NvFBC.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuvid.dll
2019-01-26 15:58:53 ----A---- C:\Windows\system32\nvcuda.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvcompiler.dll
2019-01-26 15:41:31 ----D---- C:\Users\Janka\AppData\Roaming\Dashlane
2019-01-26 15:37:15 ----A---- C:\Windows\system32\drivers\HWiNFO32.SYS
2019-01-20 19:08:44 ----D---- C:\Janka PC
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klif.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klhk.sys
2019-01-14 21:56:45 ----A---- C:\Windows\system32\drivers\klflt.sys
2019-01-14 21:48:21 ----HD---- C:\kleaner.tmp

======List of files/folders modified in the last 1 month======

2019-01-28 20:07:35 ----D---- C:\Program Files\trend micro
2019-01-28 20:07:11 ----D---- C:\Windows\Temp
2019-01-28 20:05:02 ----D---- C:\ProgramData\Kaspersky Lab
2019-01-28 19:54:08 ----SHD---- C:\System Volume Information
2019-01-28 08:23:08 ----D---- C:\Windows\System32
2019-01-28 08:23:08 ----D---- C:\Windows\inf
2019-01-28 08:23:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-01-27 20:44:03 ----D---- C:\Windows\system32\Tasks
2019-01-27 20:40:27 ----D---- C:\Windows
2019-01-27 20:40:27 ----D---- C:\ProgramData\IObit
2019-01-27 20:40:25 ----D---- C:\Users\Janka\AppData\Roaming\IObit
2019-01-27 20:39:49 ----D---- C:\AdwCleaner
2019-01-27 20:25:19 ----D---- C:\Windows\Microsoft.NET
2019-01-27 07:48:44 ----D---- C:\Windows\system32\Macromed
2019-01-27 07:40:23 ----D---- C:\Windows\Prefetch
2019-01-27 07:39:23 ----D---- C:\Windows\system32\catroot2
2019-01-26 22:27:28 ----SHD---- C:\Windows\Installer
2019-01-26 18:30:00 ----D---- C:\Windows\system32\drivers
2019-01-26 18:28:21 ----D---- C:\ProgramData\NVIDIA
2019-01-26 18:25:26 ----D---- C:\Windows\system32\catroot
2019-01-26 18:23:44 ----D---- C:\Windows\system32\DriverStore
2019-01-26 18:07:39 ----A---- C:\Windows\system32\RTNUninst32.dll
2019-01-26 18:04:08 ----D---- C:\Program Files\VIA
2019-01-26 16:10:33 ----D---- C:\Program Files\NVIDIA Corporation
2019-01-26 15:58:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2019-01-26 15:58:54 ----A---- C:\Windows\system32\nvd3dum.dll
2019-01-26 15:58:52 ----A---- C:\Windows\system32\nvapi.dll
2019-01-26 15:42:53 ----D---- C:\ProgramData\ProductData
2019-01-26 15:36:53 ----D---- C:\Program Files\IObit
2019-01-17 20:43:44 ----D---- C:\Tom
2019-01-17 20:18:51 ----D---- C:\Windows\Minidump
2019-01-17 20:12:39 ----HD---- C:\ProgramData
2019-01-17 20:12:39 ----D---- C:\Program Files
2019-01-14 21:59:11 ----D---- C:\Program Files\Common Files\AV
2019-01-14 21:58:25 ----D---- C:\Program Files\Kaspersky Lab
2019-01-14 21:47:36 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2019-01-13 18:49:47 ----A---- C:\url_setting_definitions.txt
2019-01-09 08:02:07 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2019-01-09 07:43:03 ----D---- C:\ProgramData\Package Cache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 14392]
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2018-05-07 46440]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2018-05-07 23304]
R0 cm_km;AO Kaspersky Lab Cryptographic Module x86 (56 bit); C:\Windows\system32\DRIVERS\cm_km.sys [2018-01-27 178368]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2019-01-26 106296]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2018-02-20 151240]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2018-12-10 63688]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2009-08-04 11296]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2018-07-08 147880]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2018-05-07 35840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 389632]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO32.SYS [2019-01-26 23840]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2018-12-10 102152]
R1 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2018-12-10 76880]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2019-01-14 680232]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2019-01-14 876320]
R1 klim6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2018-02-12 49344]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2017-05-30 45520]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2017-11-07 75488]
R1 klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2018-12-10 152896]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2018-02-24 168640]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2018-07-08 132448]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2018-05-07 59000]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35088]
R3 AmUStor;Al USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2019-01-26 75200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2019-01-14 173152]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2018-01-15 51400]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2017-12-11 76328]
R3 kltap;Kaspersky Security Data Escort Adapter; C:\Windows\system32\DRIVERS\kltap.sys [2018-02-12 45496]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2019-01-26 39960]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 13216]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2019-01-26 169472]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2019-01-26 171312]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2019-01-26 913344]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-10-19 31288]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2019-01-26 575696]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-08-20 717296]
S1 SASDIFSV;SASDIFSV; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV.SYS []
S1 SASKUTIL;SASKUTIL; \??\C:\Users\Janka\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL.SYS []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP-Bus-Filtertreiber; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cpuz132;cpuz132; \??\C:\Program Files\CPUID\PC Wizard 2010\pcwiz32.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-05-21 89984]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt []
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-09-02 41240]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-09-02 39192]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-12 41752]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2019-01-14 40776]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\Windows\system32\drivers\mwac.sys []
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 59904]
S3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561AV.SYS [2007-10-12 490776]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-02-21 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\D:\NTGLM7X.sys []
S3 sisagp;SIS AGP-Bus-Filter; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2015-05-21 184192]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2017-08-30 23040]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-02-21 49664]
S3 usbscan;USB-Scannertreiber; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;VIA AGP-Bus-Filter; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;VIA C7-Prozessortreiber; C:\Windows\system32\drivers\viac7.sys [2018-11-11 53248]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S4 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-12-28 96896]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [2019-01-08 438384]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2019-01-21 103728]
R2 AVP19.0.0;Kaspersky Anti-Virus Service 19.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe [2018-02-28 619640]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [2009-08-24 406016]
R2 KSDE3.0.0;Kaspersky Secure Connection Service 3.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [2018-02-28 617016]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$VIAGOGODB;SQL Server (VIAGOGODB); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-11-14 677312]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-05-21 743688]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2019-01-26 36496]
S2 AntiVirMailService;Avira Email-Schutz; C:\Program Files\Avira\Antivirus\avmailc7.exe [2018-09-06 895056]
S2 AntiVirSchedulerService;Avira Planer; C:\Program Files\Avira\Antivirus\sched.exe [2018-09-06 226000]
S2 AntiVirService;Avira Echtzeit-Scanner; C:\Program Files\Avira\Antivirus\avguard.exe [2018-09-06 226000]
S2 AntiVirWebService;Avira Webschutz; C:\Program Files\Avira\Antivirus\avwebg7.exe [2018-09-06 1148568]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-09 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 104960]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 295192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;ASP.NET-Zustandsdienst; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

#7 Příspěvek od **Rudy** » 28 led 2019 21:10

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\kleaner.tmp

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce18769b-c7fa-42d2-860d-17c4662c70ad}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT. V PC jsou 2 antiviry (AVP a Avira). Jeden z nich odinstalujte.

VIRY.CZ

Prosim o pomoc pocitac je velmi pomaly

Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly

Re: Prosim o pomoc pocitac je velmi pomaly