Logfile of random's system information tool 1.10 (written by random/random)
Run by Smidaci at 2015-07-24 17:25:30
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 30 GB (25%) free of 122 GB
Total RAM: 4095 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:25:31, on 24.7.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files\trend micro\Smidaci.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Disc Soft Bus Service - Disc Soft Ltd - C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WinRST - Unknown owner - C:\Program Files (x86)\WinRST\WinRST.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7649 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2dc
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
taskeng.exe {DD22B171-7A98-4C9C-B46A-6D2D75D1E588}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\System.bundle"
\??\C:\Windows\system32\conhost.exe "1384808231893498888-1143528186-1816964749-85853504910164043613817983921622057685
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\TheMovieDB.bundle"
\??\C:\Windows\system32\conhost.exe "-367431231-10013549511122089945-261868852387474165-2084118949231978262-1109432826
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\system32\sppsvc.exe
taskeng.exe {36542EAF-081B-460E-96FB-F22DCDD447E5}
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Users\Smidaci\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {31EE2951-718A-44B0-9B5D-12BAE910F118}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Smidaci\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Smidaci\AppData\Roaming\Mozilla\Firefox\Profiles\h8136swd.default-1410290679118
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-20 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20 559624]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Plex Media Server"=C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [2011-11-26 2699344]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-07-24 2245120]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-20 6109776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-24 17:22:16 ----D---- C:\rsit
2015-07-24 17:22:16 ----D---- C:\Program Files\trend micro
2015-07-22 21:35:59 ----SHD---- C:\Config.Msi
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmfd.dll
2015-07-20 10:46:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\urlmon.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieui.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieframe.dll
2015-07-20 10:46:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-20 10:46:54 ----A---- C:\Windows\system32\mshtml.dll
2015-07-20 10:46:53 ----A---- C:\Windows\system32\iertutil.dll
2015-07-20 10:26:27 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-20 10:26:27 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups2.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wucltux.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-20 10:26:16 ----A---- C:\Windows\system32\win32k.sys
2015-07-20 10:26:15 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-20 10:26:15 ----A---- C:\Windows\system32\gdi32.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\iernonce.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-20 10:26:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\iesetup.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-20 10:26:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-07-20 10:26:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-20 10:25:59 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-20 10:25:57 ----A---- C:\Windows\system32\wininet.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\msrating.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\wdigest.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\cryptbase.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\TSpkg.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspisrv.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\ncrypt.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\lsass.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\adtschema.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\crypt32.dll
2015-07-20 10:24:29 ----A---- C:\Windows\system32\ole32.dll
2015-07-20 10:24:28 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\authui.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\consent.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\appinfo.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\invagent.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\generaltel.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\devinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-20 10:24:00 ----A---- C:\Windows\system32\appraiser.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aepdu.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aeinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\acmigration.dll
2015-07-20 10:06:31 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-07-20 10:06:27 ----A---- C:\Windows\system32\aswBoot.exe
2015-07-20 10:06:23 ----A---- C:\Windows\avastSS.scr
2015-07-08 10:41:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-06-29 07:48:08 ----D---- C:\Program Files (x86)\CamStudio 2.7
======List of files/folders modified in the last 1 month======
2015-07-24 17:25:30 ----D---- C:\Windows\Temp
2015-07-24 17:24:53 ----D---- C:\Windows\System32
2015-07-24 17:24:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-24 17:24:52 ----D---- C:\Windows\inf
2015-07-24 17:23:27 ----D---- C:\Windows\system32\config
2015-07-24 17:22:16 ----RD---- C:\Program Files
2015-07-24 17:20:38 ----D---- C:\ProgramData\boost_interprocess
2015-07-24 17:20:17 ----AD---- C:\Windows
2015-07-24 17:19:39 ----D---- C:\AdwCleaner
2015-07-22 21:37:25 ----D---- C:\Program Files\Recuva
2015-07-22 21:37:06 ----SHD---- C:\Windows\Installer
2015-07-22 21:37:06 ----D---- C:\Program Files (x86)\Common Files
2015-07-22 21:36:57 ----RD---- C:\Program Files (x86)
2015-07-22 21:36:47 ----D---- C:\Windows\SysWOW64
2015-07-22 21:36:30 ----SHD---- C:\System Volume Information
2015-07-22 12:52:44 ----D---- C:\Windows\winsxs
2015-07-21 21:43:59 ----D---- C:\Windows\Minidump
2015-07-21 21:43:59 ----D---- C:\Windows\debug
2015-07-21 15:52:57 ----D---- C:\Windows\rescache
2015-07-21 11:45:46 ----D---- C:\Windows\system32\catroot2
2015-07-21 11:38:46 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-21 11:38:46 ----SD---- C:\Windows\system32\GWX
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\system32\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\system32\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\PolicyDefinitions
2015-07-21 11:38:46 ----D---- C:\Program Files\Internet Explorer
2015-07-21 11:38:46 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-21 11:38:45 ----D---- C:\Windows\system32\drivers
2015-07-21 11:38:44 ----SD---- C:\Windows\system32\CompatTel
2015-07-21 11:38:44 ----D---- C:\Windows\system32\wbem
2015-07-21 11:38:44 ----D---- C:\Windows\system32\appraiser
2015-07-21 11:38:44 ----D---- C:\Windows\AppPatch
2015-07-20 22:27:48 ----D---- C:\ProgramData\Microsoft Help
2015-07-20 22:22:51 ----D---- C:\Windows\system32\MRT
2015-07-20 11:02:17 ----D---- C:\Windows\SYSWOW64\vbox
2015-07-20 11:02:17 ----D---- C:\Windows\system32\vbox
2015-07-20 10:45:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-20 10:13:12 ----SHD---- C:\$RECYCLE.BIN
2015-07-20 10:06:34 ----D---- C:\Windows\system32\Tasks
2015-07-09 08:48:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-06 18:28:38 ----D---- C:\Users\Smidaci\AppData\Roaming\Skype
2015-07-06 13:24:19 ----D---- C:\ProgramData\Skype
2015-07-06 13:24:13 ----RD---- C:\Program Files (x86)\Skype
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-01 20:30:37 ----D---- C:\Users\Smidaci\AppData\Roaming\XnView
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-07-20 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-07-20 274808]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-07-20 115152]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2009-07-06 13368]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-07-20 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-07-20 1048856]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-07-20 447944]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-07-20 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-07-20 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-07-20 150160]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-07-20 273824]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-28 10278912]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-28 368640]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 dtscsibus;DAEMON Tools Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtscsibus.sys [2014-01-23 29696]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-10 1222144]
S1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 X6va025;X6va025; \??\C:\Windows\SysWOW64\Drivers\X6va025 []
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-20 79976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-08-06 361984]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-20 146600]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-24 66872]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-20 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S2 WinRST;WinRST; C:\Program Files (x86)\WinRST\WinRST.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2014-01-23 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-20 268976]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Disc Soft Bus Service;Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [2013-05-23 632352]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-26 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu - zpomaluje se internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu - zpomaluje se internet
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu - zpomaluje se internet
# AdwCleaner v3.309 - Report created 25/07/2015 at 11:07:43
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Smidaci - SMIDACI-PC
# Running from : C:\Users\Smidaci\Desktop\adwcleaner_3.309.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17909
-\\ Mozilla Firefox v39.0 (x86 cs)
[ File : C:\Users\Smidaci\AppData\Roaming\Mozilla\Firefox\Profiles\h8136swd.default-1410290679118\prefs.js ]
[ File : C:\Users\VoKu\AppData\Roaming\Mozilla\Firefox\Profiles\72ewc7pj.default\prefs.js ]
*************************
AdwCleaner[R1].txt - [6346 octets] - [11/09/2014 05:29:51]
AdwCleaner[R2].txt - [1106 octets] - [24/07/2015 17:18:33]
AdwCleaner[R3].txt - [1175 octets] - [25/07/2015 11:04:13]
AdwCleaner[R4].txt - [1295 octets] - [25/07/2015 11:07:06]
AdwCleaner[S1].txt - [5490 octets] - [11/09/2014 05:30:23]
AdwCleaner[S2].txt - [1170 octets] - [24/07/2015 17:19:38]
AdwCleaner[S3].txt - [1237 octets] - [25/07/2015 11:04:51]
AdwCleaner[S4].txt - [1217 octets] - [25/07/2015 11:07:43]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1277 octets] ##########
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Smidaci - SMIDACI-PC
# Running from : C:\Users\Smidaci\Desktop\adwcleaner_3.309.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17909
-\\ Mozilla Firefox v39.0 (x86 cs)
[ File : C:\Users\Smidaci\AppData\Roaming\Mozilla\Firefox\Profiles\h8136swd.default-1410290679118\prefs.js ]
[ File : C:\Users\VoKu\AppData\Roaming\Mozilla\Firefox\Profiles\72ewc7pj.default\prefs.js ]
*************************
AdwCleaner[R1].txt - [6346 octets] - [11/09/2014 05:29:51]
AdwCleaner[R2].txt - [1106 octets] - [24/07/2015 17:18:33]
AdwCleaner[R3].txt - [1175 octets] - [25/07/2015 11:04:13]
AdwCleaner[R4].txt - [1295 octets] - [25/07/2015 11:07:06]
AdwCleaner[S1].txt - [5490 octets] - [11/09/2014 05:30:23]
AdwCleaner[S2].txt - [1170 octets] - [24/07/2015 17:19:38]
AdwCleaner[S3].txt - [1237 octets] - [25/07/2015 11:04:51]
AdwCleaner[S4].txt - [1217 octets] - [25/07/2015 11:07:43]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1277 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu - zpomaluje se internet
Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Program Files (x86)\Skype\Toolbars
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
:services
X6va025
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu - zpomaluje se internet
Logfile of random's system information tool 1.10 (written by random/random)
Run by Smidaci at 2015-07-25 20:29:29
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 34 GB (28%) free of 122 GB
Total RAM: 4095 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:29:30, on 25.7.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\trend micro\Smidaci.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Disc Soft Bus Service - Disc Soft Ltd - C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WinRST - Unknown owner - C:\Program Files (x86)\WinRST\WinRST.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7739 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
taskeng.exe {4A59E2CC-E6C2-4540-AFB1-4BA8E5A43A53}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe"
"taskhost.exe"
"C:\Windows\system32\GWX\GWX.exe"
taskeng.exe {83453621-1961-441A-BC2F-0C72078E291F}
"C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
C:\Windows\system32\AUDIODG.EXE 0x6bc
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\System.bundle"
\??\C:\Windows\system32\conhost.exe "-14769819541316219993-1516184473-4409549952073053866-638933783-16115838031361279622
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2303957841-3669098053-2568940452-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2303957841-3669098053-2568940452-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\TheMovieDB.bundle"
\??\C:\Windows\system32\conhost.exe "1111857776478424288689993082460844773-1848521985-1565107984-2082400831-33797473
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:132332 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Smidaci\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Smidaci\AppData\Roaming\Mozilla\Firefox\Profiles\h8136swd.default-1410290679118
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-20 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20 559624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Plex Media Server"=C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [2011-11-26 2699344]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2009-06-14 380928]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-07-24 2245120]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-20 6109776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-25 20:16:50 ----D---- C:\_OTM
2015-07-24 17:22:16 ----D---- C:\rsit
2015-07-24 17:22:16 ----D---- C:\Program Files\trend micro
2015-07-22 21:35:59 ----SHD---- C:\Config.Msi
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmfd.dll
2015-07-20 10:46:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\urlmon.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieui.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieframe.dll
2015-07-20 10:46:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-20 10:46:54 ----A---- C:\Windows\system32\mshtml.dll
2015-07-20 10:46:53 ----A---- C:\Windows\system32\iertutil.dll
2015-07-20 10:26:27 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-20 10:26:27 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups2.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wucltux.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-20 10:26:16 ----A---- C:\Windows\system32\win32k.sys
2015-07-20 10:26:15 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-20 10:26:15 ----A---- C:\Windows\system32\gdi32.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\iernonce.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-20 10:26:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\iesetup.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-20 10:26:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-07-20 10:26:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-20 10:25:59 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-20 10:25:57 ----A---- C:\Windows\system32\wininet.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\msrating.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\wdigest.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\cryptbase.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\TSpkg.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspisrv.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\ncrypt.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\lsass.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\adtschema.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\crypt32.dll
2015-07-20 10:24:29 ----A---- C:\Windows\system32\ole32.dll
2015-07-20 10:24:28 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\authui.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\consent.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\appinfo.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\invagent.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\generaltel.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\devinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-20 10:24:00 ----A---- C:\Windows\system32\appraiser.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aepdu.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aeinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\acmigration.dll
2015-07-20 10:06:31 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-07-20 10:06:27 ----A---- C:\Windows\system32\aswBoot.exe
2015-07-20 10:06:23 ----A---- C:\Windows\avastSS.scr
2015-07-08 10:41:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-06-29 07:48:08 ----D---- C:\Program Files (x86)\CamStudio 2.7
======List of files/folders modified in the last 1 month======
2015-07-25 20:29:30 ----D---- C:\Windows\Temp
2015-07-25 20:28:43 ----D---- C:\ProgramData\boost_interprocess
2015-07-25 20:25:30 ----D---- C:\Windows\System32
2015-07-25 20:25:30 ----D---- C:\Windows\inf
2015-07-25 20:25:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-25 11:11:23 ----D---- C:\Windows\system32\config
2015-07-25 11:07:44 ----D---- C:\AdwCleaner
2015-07-25 10:56:20 ----SD---- C:\Windows\system32\GWX
2015-07-24 17:22:16 ----RD---- C:\Program Files
2015-07-24 17:20:17 ----AD---- C:\Windows
2015-07-22 21:37:25 ----D---- C:\Program Files\Recuva
2015-07-22 21:37:06 ----SHD---- C:\Windows\Installer
2015-07-22 21:37:06 ----D---- C:\Program Files (x86)\Common Files
2015-07-22 21:36:57 ----RD---- C:\Program Files (x86)
2015-07-22 21:36:47 ----D---- C:\Windows\SysWOW64
2015-07-22 21:36:30 ----SHD---- C:\System Volume Information
2015-07-22 12:52:44 ----D---- C:\Windows\winsxs
2015-07-21 21:43:59 ----D---- C:\Windows\Minidump
2015-07-21 21:43:59 ----D---- C:\Windows\debug
2015-07-21 15:52:57 ----D---- C:\Windows\rescache
2015-07-21 11:45:46 ----D---- C:\Windows\system32\catroot2
2015-07-21 11:38:46 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\system32\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\system32\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\PolicyDefinitions
2015-07-21 11:38:46 ----D---- C:\Program Files\Internet Explorer
2015-07-21 11:38:46 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-21 11:38:45 ----D---- C:\Windows\system32\drivers
2015-07-21 11:38:44 ----SD---- C:\Windows\system32\CompatTel
2015-07-21 11:38:44 ----D---- C:\Windows\system32\wbem
2015-07-21 11:38:44 ----D---- C:\Windows\system32\appraiser
2015-07-21 11:38:44 ----D---- C:\Windows\AppPatch
2015-07-20 22:27:48 ----D---- C:\ProgramData\Microsoft Help
2015-07-20 22:22:51 ----D---- C:\Windows\system32\MRT
2015-07-20 11:02:17 ----D---- C:\Windows\SYSWOW64\vbox
2015-07-20 11:02:17 ----D---- C:\Windows\system32\vbox
2015-07-20 10:45:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-20 10:13:12 ----SHD---- C:\$RECYCLE.BIN
2015-07-20 10:06:34 ----D---- C:\Windows\system32\Tasks
2015-07-09 08:48:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-06 18:28:38 ----D---- C:\Users\Smidaci\AppData\Roaming\Skype
2015-07-06 13:24:19 ----D---- C:\ProgramData\Skype
2015-07-06 13:24:13 ----RD---- C:\Program Files (x86)\Skype
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-01 20:30:37 ----D---- C:\Users\Smidaci\AppData\Roaming\XnView
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-07-20 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-07-20 274808]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-07-20 115152]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2009-07-06 13368]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-07-20 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-07-20 1048856]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-07-20 447944]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-07-20 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-07-20 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-07-20 150160]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-07-20 273824]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-28 10278912]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-28 368640]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 dtscsibus;DAEMON Tools Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtscsibus.sys [2014-01-23 29696]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-10 1222144]
S1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-20 79976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-08-06 361984]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-20 146600]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-24 66872]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-20 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S2 WinRST;WinRST; C:\Program Files (x86)\WinRST\WinRST.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2014-01-23 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-20 268976]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Disc Soft Bus Service;Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [2013-05-23 632352]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-26 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by Smidaci at 2015-07-25 20:29:29
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 34 GB (28%) free of 122 GB
Total RAM: 4095 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:29:30, on 25.7.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files\trend micro\Smidaci.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Plex Media Server] "C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Disc Soft Bus Service - Disc Soft Ltd - C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WinRST - Unknown owner - C:\Program Files (x86)\WinRST\WinRST.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7739 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
taskeng.exe {4A59E2CC-E6C2-4540-AFB1-4BA8E5A43A53}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe"
"taskhost.exe"
"C:\Windows\system32\GWX\GWX.exe"
taskeng.exe {83453621-1961-441A-BC2F-0C72078E291F}
"C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe"
C:\Windows\system32\AUDIODG.EXE 0x6bc
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\System.bundle"
\??\C:\Windows\system32\conhost.exe "-14769819541316219993-1516184473-4409549952073053866-638933783-16115838031361279622
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2303957841-3669098053-2568940452-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2303957841-3669098053-2568940452-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\Framework.bundle\Contents\Resources\Versions\2\Python/bootstrap.py" "C:\Users\Smidaci\AppData\Local\Plex Media Server\Plug-ins\TheMovieDB.bundle"
\??\C:\Windows\system32\conhost.exe "1111857776478424288689993082460844773-1848521985-1565107984-2082400831-33797473
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:132332 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Smidaci\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Smidaci\AppData\Roaming\Mozilla\Firefox\Profiles\h8136swd.default-1410290679118
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-20 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20 559624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Plex Media Server"=C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [2011-11-26 2699344]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2009-06-14 380928]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-07-24 2245120]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-06 642216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-20 6109776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-07-25 20:16:50 ----D---- C:\_OTM
2015-07-24 17:22:16 ----D---- C:\rsit
2015-07-24 17:22:16 ----D---- C:\Program Files\trend micro
2015-07-22 21:35:59 ----SHD---- C:\Config.Msi
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmlib.dll
2015-07-21 11:45:59 ----A---- C:\Windows\system32\atmfd.dll
2015-07-20 10:46:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-20 10:46:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\urlmon.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieui.dll
2015-07-20 10:46:55 ----A---- C:\Windows\system32\ieframe.dll
2015-07-20 10:46:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-20 10:46:54 ----A---- C:\Windows\system32\mshtml.dll
2015-07-20 10:46:53 ----A---- C:\Windows\system32\iertutil.dll
2015-07-20 10:26:27 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-20 10:26:27 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups2.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wups.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wudriver.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wucltux.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapp.exe
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wuapi.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-07-20 10:26:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-20 10:26:16 ----A---- C:\Windows\system32\win32k.sys
2015-07-20 10:26:15 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-20 10:26:15 ----A---- C:\Windows\system32\gdi32.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9diag.dll
2015-07-20 10:26:14 ----A---- C:\Windows\system32\jscript9.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-07-20 10:26:08 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-20 10:26:07 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-07-20 10:26:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-20 10:26:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\iernonce.dll
2015-07-20 10:26:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-07-20 10:26:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-07-20 10:26:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-07-20 10:26:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-20 10:26:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-20 10:26:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\iesetup.dll
2015-07-20 10:26:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-20 10:26:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-07-20 10:26:00 ----A---- C:\Windows\system32\vbscript.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-20 10:25:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-20 10:25:59 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-20 10:25:59 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-20 10:25:58 ----A---- C:\Windows\system32\jscript.dll
2015-07-20 10:25:57 ----A---- C:\Windows\system32\wininet.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\msrating.dll
2015-07-20 10:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\wdigest.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\schannel.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-20 10:24:40 ----A---- C:\Windows\system32\cryptbase.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\TSpkg.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspisrv.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\sspicli.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\secur32.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\ncrypt.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msobjs.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\msaudite.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\lsass.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\credssp.dll
2015-07-20 10:24:39 ----A---- C:\Windows\system32\auditpol.exe
2015-07-20 10:24:39 ----A---- C:\Windows\system32\adtschema.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\wintrust.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-20 10:24:33 ----A---- C:\Windows\system32\crypt32.dll
2015-07-20 10:24:29 ----A---- C:\Windows\system32\ole32.dll
2015-07-20 10:24:28 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\msi.dll
2015-07-20 10:24:15 ----A---- C:\Windows\system32\authui.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msimsg.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msihnd.dll
2015-07-20 10:24:14 ----A---- C:\Windows\system32\msiexec.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\consent.exe
2015-07-20 10:24:14 ----A---- C:\Windows\system32\appinfo.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\invagent.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\generaltel.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\devinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-20 10:24:00 ----A---- C:\Windows\system32\appraiser.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aepdu.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\aeinv.dll
2015-07-20 10:24:00 ----A---- C:\Windows\system32\acmigration.dll
2015-07-20 10:06:31 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-07-20 10:06:27 ----A---- C:\Windows\system32\aswBoot.exe
2015-07-20 10:06:23 ----A---- C:\Windows\avastSS.scr
2015-07-08 10:41:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-06-29 07:48:08 ----D---- C:\Program Files (x86)\CamStudio 2.7
======List of files/folders modified in the last 1 month======
2015-07-25 20:29:30 ----D---- C:\Windows\Temp
2015-07-25 20:28:43 ----D---- C:\ProgramData\boost_interprocess
2015-07-25 20:25:30 ----D---- C:\Windows\System32
2015-07-25 20:25:30 ----D---- C:\Windows\inf
2015-07-25 20:25:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-25 11:11:23 ----D---- C:\Windows\system32\config
2015-07-25 11:07:44 ----D---- C:\AdwCleaner
2015-07-25 10:56:20 ----SD---- C:\Windows\system32\GWX
2015-07-24 17:22:16 ----RD---- C:\Program Files
2015-07-24 17:20:17 ----AD---- C:\Windows
2015-07-22 21:37:25 ----D---- C:\Program Files\Recuva
2015-07-22 21:37:06 ----SHD---- C:\Windows\Installer
2015-07-22 21:37:06 ----D---- C:\Program Files (x86)\Common Files
2015-07-22 21:36:57 ----RD---- C:\Program Files (x86)
2015-07-22 21:36:47 ----D---- C:\Windows\SysWOW64
2015-07-22 21:36:30 ----SHD---- C:\System Volume Information
2015-07-22 12:52:44 ----D---- C:\Windows\winsxs
2015-07-21 21:43:59 ----D---- C:\Windows\Minidump
2015-07-21 21:43:59 ----D---- C:\Windows\debug
2015-07-21 15:52:57 ----D---- C:\Windows\rescache
2015-07-21 11:45:46 ----D---- C:\Windows\system32\catroot2
2015-07-21 11:38:46 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\system32\en-US
2015-07-21 11:38:46 ----D---- C:\Windows\system32\cs-CZ
2015-07-21 11:38:46 ----D---- C:\Windows\PolicyDefinitions
2015-07-21 11:38:46 ----D---- C:\Program Files\Internet Explorer
2015-07-21 11:38:46 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-21 11:38:45 ----D---- C:\Windows\system32\drivers
2015-07-21 11:38:44 ----SD---- C:\Windows\system32\CompatTel
2015-07-21 11:38:44 ----D---- C:\Windows\system32\wbem
2015-07-21 11:38:44 ----D---- C:\Windows\system32\appraiser
2015-07-21 11:38:44 ----D---- C:\Windows\AppPatch
2015-07-20 22:27:48 ----D---- C:\ProgramData\Microsoft Help
2015-07-20 22:22:51 ----D---- C:\Windows\system32\MRT
2015-07-20 11:02:17 ----D---- C:\Windows\SYSWOW64\vbox
2015-07-20 11:02:17 ----D---- C:\Windows\system32\vbox
2015-07-20 10:45:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-20 10:13:12 ----SHD---- C:\$RECYCLE.BIN
2015-07-20 10:06:34 ----D---- C:\Windows\system32\Tasks
2015-07-09 08:48:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-06 18:28:38 ----D---- C:\Users\Smidaci\AppData\Roaming\Skype
2015-07-06 13:24:19 ----D---- C:\ProgramData\Skype
2015-07-06 13:24:13 ----RD---- C:\Program Files (x86)\Skype
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-07-01 20:30:37 ----D---- C:\Users\Smidaci\AppData\Roaming\XnView
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-07-20 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-07-20 274808]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-07-20 115152]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2009-07-06 13368]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-07-20 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-07-20 1048856]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-07-20 447944]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-07-20 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-07-20 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-07-20 150160]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-07-20 273824]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-07-28 10278912]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-07-28 368640]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 dtscsibus;DAEMON Tools Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtscsibus.sys [2014-01-23 29696]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-07-10 1222144]
S1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-20 79976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-07-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-08-06 361984]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-20 146600]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-24 66872]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-07-20 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S2 WinRST;WinRST; C:\Program Files (x86)\WinRST\WinRST.exe []
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2014-01-23 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-20 268976]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Disc Soft Bus Service;Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [2013-05-23 632352]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-26 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119675
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu - zpomaluje se internet
Dvouklikem na soubor spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?