VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Strata priečinkov a hesiel

https://forum.viry.cz:443/viewtopic.php?t=143187

Stránka 1 z 1

Strata priečinkov a hesiel

Napsal: 23 úno 2015 23:02
od Idea
Zdravím. Chcela by som Vás poprosiť o radu.
V prvom rade chcem pripomenúť, že tieto problémy sa mi začali s notebookom diať po tom, čo som si doň vložila USB so skrytým priečinkom, v ktorom boli videoklipy. Notebook začal sekať, programy prestali pracovať. Ako klasické riešenie som použila reštartovanie notebooku. Po reštartovaní mi vyhodilo Príprava pracovnej plochy a po zapnutí som už nemala žiadne priečinky a všetky heslá boli stratené. Mala som nastavené automatické prihlasovanie, čo si však notebook už nezapamätal. S diskom D nie je žiaden problém, všetko ostalo ako pred tým. Len systémové veci sa akokeby dali do základných nastavení. Bojím sa, či nie je možné, aby sa mi niekto nabúral do notebooku.
Za odpoveď dopredu ďakujem. Prajem pekný deň.
S pozdravom Ľubomíra

Logfile of random's system information tool 1.10 (written by random/random)
Run by HP at 2015-02-23 22:48:28
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 53 GB (44%) free of 120 GB
Total RAM: 2039 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:48:46, on 23. 2. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\HP.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocník pri prihlasovaní v konte Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [BMISR] C:\Program Files (x86)\KYE\FaceCam 1000X\Genius_Utility.exe
O4 - HKCU\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\3.2.0\ViProtocol.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater3.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unknown owner - C:\Windows\system32\DRIVERS\xaudio64.exe (file missing)

--
End of file - 8242 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-7877-6514679d4b44 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\DRIVERS\xaudio64.exe
WLIDSvcM.exe 1108
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\Windows\system32\conhost.exe "-172595342242833691418440527181266018470-168706062216832037582039993627915443157
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --flag-switches-begin --flag-switches-end
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials=UMA-Uniformity-Trial-100-Percent/group_01/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="4060.22.1243286298\800888162" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials=UMA-Uniformity-Trial-100-Percent/group_01/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --enable-gpu-rasterization --disable-gpu-compositing --channel="4060.49.1508203136\1769231019" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4060.50.1445543575\1401063532" --ppapi-flash-args --lang=sk --ignored=" --type=renderer " /prefetch:-632637702

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials=UMA-Uniformity-Trial-100-Percent/group_01/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --enable-gpu-rasterization --disable-gpu-compositing --channel="4060.51.1061255138\1387711387" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi-broker --channel="4060.52.1289976775\43686128" --lang=sk /prefetch:845217598
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials=UMA-Uniformity-Trial-100-Percent/group_01/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --enable-gpu-rasterization --disable-gpu-compositing --channel="4060.53.699206407\188087798" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4060.54.1608809163\706829096" --disable-d3d11 --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Windows\system32\config\systemprofile\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159" --gpu-driver-bug-workarounds=1,6,18,39,42 --gpu-vendor-id=0x8086 --gpu-device-id=0x27ae --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.1930 --ignored=" --type=renderer " /prefetch:822062411
"C:\Windows\system32\config\systemprofile\Documents\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 385560]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 363544]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-06-16 901632]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\Sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-11-11 287800]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2014-12-18 3667472]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2014-10-07 2662424]
"BMISR"=C:\Program Files (x86)\KYE\FaceCam 1000X\Genius_Utility.exe [2012-03-26 217088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 261120]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-23 22:48:30 ----D---- C:\Program Files\trend micro
2015-02-23 22:48:28 ----D---- C:\rsit
2015-02-22 18:13:39 ----D---- C:\Windows\SYSWOW64\cache
2015-02-22 18:13:10 ----D---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Adobe
2015-02-22 18:12:53 ----D---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Identities
2015-02-14 11:15:07 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-14 11:15:06 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-14 11:15:06 ----A---- C:\Windows\system32\jscript9.dll
2015-02-14 11:15:00 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-13 11:21:54 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-02-13 11:21:54 ----A---- C:\Windows\system32\wdi.dll
2015-02-13 11:21:54 ----A---- C:\Windows\system32\powertracker.dll
2015-02-13 11:21:54 ----A---- C:\Windows\system32\perftrack.dll
2015-02-13 11:21:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-02-13 11:21:23 ----A---- C:\Windows\system32\mstscax.dll
2015-02-13 11:21:21 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-02-13 11:20:34 ----A---- C:\Windows\system32\schannel.dll
2015-02-13 11:20:33 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-13 11:20:33 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-13 11:20:32 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-13 11:20:32 ----A---- C:\Windows\system32\wdigest.dll
2015-02-13 11:20:32 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-13 11:20:32 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-13 11:20:32 ----A---- C:\Windows\system32\kerberos.dll
2015-02-13 11:20:31 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-13 11:20:30 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-13 11:20:29 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-13 11:20:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-13 11:20:20 ----A---- C:\Windows\system32\credssp.dll
2015-02-13 11:20:19 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-13 11:19:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-13 11:19:15 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-13 11:19:15 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-13 11:19:15 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-13 11:19:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-13 11:19:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-13 11:19:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-13 11:19:13 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-13 11:19:13 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-13 11:19:13 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-13 11:19:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-13 11:19:13 ----A---- C:\Windows\system32\iernonce.dll
2015-02-13 11:19:13 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-13 11:19:12 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-13 11:19:12 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-13 11:19:10 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-13 11:19:10 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-13 11:19:10 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-13 11:19:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-13 11:19:10 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-13 11:19:10 ----A---- C:\Windows\system32\urlmon.dll
2015-02-13 11:19:10 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-13 11:19:10 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-13 11:19:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-13 11:19:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-13 11:19:09 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-13 11:19:09 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-13 11:19:09 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-13 11:19:08 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-13 11:19:07 ----A---- C:\Windows\system32\iesetup.dll
2015-02-13 11:19:07 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-13 11:19:05 ----A---- C:\Windows\system32\iertutil.dll
2015-02-13 11:19:04 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-13 11:19:03 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-13 11:19:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-13 11:19:03 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-13 11:19:02 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-13 11:19:02 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-13 11:19:00 ----A---- C:\Windows\system32\ieui.dll
2015-02-13 11:19:00 ----A---- C:\Windows\system32\ieframe.dll
2015-02-13 11:19:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-13 11:18:59 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-13 11:18:59 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-13 11:18:58 ----A---- C:\Windows\system32\vbscript.dll
2015-02-13 11:18:57 ----A---- C:\Windows\system32\wininet.dll
2015-02-13 11:18:56 ----A---- C:\Windows\system32\msrating.dll
2015-02-13 11:18:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-13 11:18:54 ----A---- C:\Windows\system32\mshtml.dll
2015-02-13 11:18:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-13 11:18:08 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-13 11:17:52 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-13 11:17:52 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-13 11:17:52 ----A---- C:\Windows\system32\adtschema.dll
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-13 11:17:51 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\sspicli.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\secur32.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\msobjs.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\msaudite.dll
2015-02-13 11:17:51 ----A---- C:\Windows\system32\lsass.exe
2015-02-13 11:17:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-13 11:17:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-13 11:17:51 ----A---- C:\Windows\system32\auditpol.exe
2015-02-13 11:16:48 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-13 11:16:48 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-13 11:16:48 ----A---- C:\Windows\system32\wintrust.dll
2015-02-13 11:16:48 ----A---- C:\Windows\system32\crypt32.dll
2015-02-13 11:16:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-13 11:16:08 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-13 11:14:22 ----A---- C:\Windows\system32\scesrv.dll
2015-02-13 11:14:21 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-13 11:12:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-13 11:12:09 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-13 11:12:08 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-13 11:12:07 ----A---- C:\Windows\system32\srcore.dll
2015-02-13 11:12:06 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-13 11:12:06 ----A---- C:\Windows\system32\srclient.dll
2015-02-13 11:12:06 ----A---- C:\Windows\system32\rstrui.exe
2015-02-13 11:09:53 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2015-02-23 22:48:30 ----D---- C:\Program Files
2015-02-23 22:47:12 ----D---- C:\Windows\Temp
2015-02-23 22:19:11 ----D---- C:\Windows\system32\config
2015-02-23 22:07:10 ----D---- C:\ProgramData\MFAData
2015-02-22 18:21:59 ----D---- C:\Windows\System32
2015-02-22 18:21:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-22 18:21:58 ----D---- C:\Windows\inf
2015-02-22 18:13:39 ----D---- C:\Windows\SysWOW64
2015-02-22 18:13:04 ----SD---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft
2015-02-22 18:08:58 ----RD---- C:\Users
2015-02-21 08:40:07 ----SHD---- C:\Windows\Installer
2015-02-14 14:03:45 ----SHD---- C:\System Volume Information
2015-02-14 11:51:27 ----D---- C:\Windows\winsxs
2015-02-14 11:51:17 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-14 11:51:16 ----D---- C:\Windows\system32\en-US
2015-02-14 10:31:21 ----D---- C:\Windows\system32\catroot2
2015-02-14 10:27:09 ----D---- C:\Program Files\Internet Explorer
2015-02-14 10:27:08 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-02-14 10:27:06 ----D---- C:\Windows\system32\sk-SK
2015-02-14 10:27:03 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-14 10:27:00 ----D---- C:\Windows\tracing
2015-02-14 10:26:58 ----D---- C:\Windows\system32\drivers
2015-02-13 11:41:38 ----D---- C:\ProgramData\Microsoft Help
2015-02-13 11:26:57 ----D---- C:\Windows\system32\MRT
2015-02-13 11:26:40 ----A---- C:\Windows\system32\MRT.exe
2015-02-13 11:21:35 ----D---- C:\Windows\system32\catroot
2015-02-09 10:45:44 ----RD---- C:\Program Files (x86)
2015-02-09 10:45:36 ----D---- C:\Windows\Tasks
2015-02-05 10:49:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-01-28 19:28:26 ----D---- C:\Windows\Microsoft.NET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-11-18 203544]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2014-07-18 313624]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2014-10-05 124184]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-18 31512]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [2013-09-03 56336]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-18 153368]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2014-12-08 260888]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-08-28 243480]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-10-10 274200]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-09-18 50976]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 17024]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio64.sys [2007-07-10 10240]
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys [2007-06-20 292864]
R3 HBtnKey;HP Hotkey Device; C:\Windows\system32\DRIVERS\cpqbttn.sys [2010-02-24 19000]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 18432]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys [2007-06-20 1478656]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-09-23 6180832]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-06-16 275968]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys [2007-06-20 740352]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2014-12-18 3432976]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2014-12-18 298080]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 uCamMonitor;CamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2011-07-15 106496]
R2 vToolbarUpdater3.2.0;vToolbarUpdater3.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\3.2.0\ToolbarUpdater.exe [2014-09-18 1843736]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio64.exe [2007-07-10 412672]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-25 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-01-12 227896]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-25 116648]
S3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-07-04 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Re: Strata priečinkov a hesiel

Napsal: 24 úno 2015 17:32
od Rudy
Zdravím!
Zkontrolujeme log. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz