VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

pomalý NTB

https://forum.viry.cz:443/viewtopic.php?t=146869

Stránka 1 z 2

pomalý NTB

Napsal: 16 lis 2015 13:13
od LV1234
prosím o kontrolu logu, velmi pomalý NTB, opera nefunkční, myš žije vlastním životem.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Liba at 2015-11-16 13:10:17
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 220 GB (51%) free of 432 GB
Total RAM: 2935 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:10:34, on 16.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\IceWarp Desktop Client\MailClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Liba.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Advanced 6] wscript.exe //B "C:\Users\Liba\AppData\Local\Temp\DAEMON Tools Pro Advanced 6.1.0.0484 + Crack and serial .vbs"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9788 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 25122880
\??\C:\windows\system32\conhost.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\windows\system32\Dwm.exe"
"taskhost.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2788
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\windows\system32\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\IceWarp Desktop Client\MailClient.exe"
"C:\windows\system32\wuauclt.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4232.0.1971364943\448278916" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,22,45 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2104 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.21.303214632\351633282" --font-cache-shared-handle=1768 /prefetch:673131151
"C:\Program Files\totalcmd\TOTALCMD.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.67.2039190281\1936784209" --font-cache-shared-handle=7624 /prefetch:673131151
C:\windows\servicing\TrustedInstaller.exe
Explorer.exe
"C:\windows\system32\wuauclt.exe" /RunHandlerComServer
C:\windows\system32\msiexec.exe /V
"taskhost.exe"
"C:\Windows\System32\mstsc.exe"
C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.102.943167215\2016929760" --font-cache-shared-handle=8008 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4232.105.221181496\1178380115" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.111.562451407\871893833" --font-cache-shared-handle=6980 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.114.1187640404\1617428683" --font-cache-shared-handle=5536 /prefetch:673131151
C:\windows\system32\vssvc.exe
C:\windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillFieldMetadata/Enabled/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IntelligentSessionRestore/Enabled2/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A4_Stable_R1/*PasswordGeneration/Disabled/*PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="4232.115.1962827221\1207304941" --font-cache-shared-handle=4612 /prefetch:673131151

"C:\Users\Liba\Desktop\čištění\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-10 2176296]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2009-12-19 776608]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2009-12-17 4367808]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2009-12-17 6988736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
"DAEMON Tools Pro Advanced 6"=wscript.exe //B C:\Users\Liba\AppData\Local\Temp\DAEMON Tools Pro Advanced 6.1.0.0484 + Crack and serial .vbs []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2010-01-15 536576]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-03-31 269824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-11-16 13:10:17 ----D---- C:\rsit
2015-11-16 12:17:43 ----A---- C:\windows\SYSWOW64\infocardapi.dll
2015-11-16 12:17:42 ----A---- C:\windows\SYSWOW64\icardagt.exe
2015-11-16 12:17:42 ----A---- C:\windows\system32\infocardapi.dll
2015-11-16 12:17:42 ----A---- C:\windows\system32\icardagt.exe
2015-11-16 12:17:41 ----A---- C:\windows\SYSWOW64\icardres.dll
2015-11-16 12:17:41 ----A---- C:\windows\system32\icardres.dll
2015-11-16 12:17:22 ----A---- C:\windows\SYSWOW64\TsWpfWrp.exe
2015-11-16 12:17:22 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-11-16 10:50:23 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2015-11-16 10:50:23 ----A---- C:\windows\system32\WMPhoto.dll
2015-11-11 14:37:27 ----D---- C:\ProgramData\ESET
2015-11-11 14:36:31 ----D---- C:\Program Files\ESET

======List of files/folders modified in the last 1 month======

2015-11-16 13:10:34 ----D---- C:\windows\Prefetch
2015-11-16 13:10:31 ----D---- C:\windows\temp
2015-11-16 13:10:30 ----D---- C:\Program Files\trend micro
2015-11-16 13:09:02 ----D---- C:\windows\winsxs
2015-11-16 13:07:49 ----SHD---- C:\windows\Installer
2015-11-16 13:07:37 ----SHD---- C:\Config.Msi
2015-11-16 12:58:37 ----RSD---- C:\windows\assembly
2015-11-16 12:58:25 ----D---- C:\ProgramData\Microsoft Help
2015-11-16 12:58:13 ----D---- C:\windows\SysWOW64
2015-11-16 12:58:13 ----D---- C:\Program Files (x86)\Microsoft Works
2015-11-16 12:58:05 ----RSD---- C:\windows\Fonts
2015-11-16 12:46:55 ----A---- C:\windows\win.ini
2015-11-16 12:43:59 ----D---- C:\windows\system32\catroot
2015-11-16 12:41:16 ----D---- C:\windows\system32\FxsTmp
2015-11-16 12:40:06 ----D---- C:\windows\System32
2015-11-16 12:40:06 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-16 12:40:05 ----D---- C:\windows\inf
2015-11-16 12:37:06 ----D---- C:\windows\system32\catroot2
2015-11-16 12:31:11 ----D---- C:\windows\Microsoft.NET
2015-11-16 12:19:25 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-11-16 12:19:24 ----D---- C:\windows\system32\cs-CZ
2015-11-16 12:15:49 ----SHD---- C:\System Volume Information
2015-11-16 10:47:04 ----D---- C:\windows\system32\config
2015-11-16 08:21:16 ----D---- C:\Users\Liba\AppData\Roaming\IceWarp Desktop Client
2015-11-16 08:09:52 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-11 16:27:44 ----D---- C:\Windows
2015-11-11 16:27:26 ----D---- C:\windows\system32\drivers
2015-11-11 16:27:26 ----D---- C:\windows\security
2015-11-11 15:36:08 ----D---- C:\Users\Liba\AppData\Roaming\Wandoujia2
2015-11-11 15:14:52 ----D---- C:\Users\Liba\AppData\Roaming\Winamp
2015-11-11 15:11:31 ----D---- C:\Program Files (x86)\Solveig Multimedia
2015-11-11 15:11:28 ----D---- C:\Program Files (x86)\Common Files
2015-11-11 15:09:15 ----D---- C:\Program Files (x86)
2015-11-11 14:43:22 ----RD---- C:\Program Files
2015-11-11 14:40:40 ----D---- C:\windows\system32\DriverStore
2015-11-11 14:37:27 ----D---- C:\ProgramData
2015-10-21 13:53:24 ----D---- C:\Program Files (x86)\IceWarp Desktop Client

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-03 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-06-18 254528]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-09-23 264040]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-09-23 186784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-09-23 170792]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2010-06-18 4170304]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2010-11-20 80384]
R3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2010-01-18 717368]
R3 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\windows\system32\Drivers\CVPNDRVA.sys [2011-03-04 306536]
R3 DNE;Deterministic Network Enhancer Miniport; C:\windows\system32\DRIVERS\dne64x.sys [2008-11-16 157968]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-03-31 10322848]
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-02 271872]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-10 1380400]
R3 vm331avs;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2010-03-18 215168]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2010-11-20 552448]
S3 CVirtA;Cisco Systems VPN Adapter for 64-bit Windows; C:\windows\system32\DRIVERS\CVirtA64.sys [2010-02-08 14992]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;MS IEEE-1284.4 Driver; C:\windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus; C:\windows\system32\DRIVERS\dtultrascsibus.sys [2015-10-05 30264]
S3 dtultrausbbus;DAEMON Tools Ultra Virtual USB Bus; C:\windows\system32\DRIVERS\dtultrausbbus.sys [2015-10-05 47160]
S3 ggflt;SEMC USB Flash Driver Filter; C:\windows\system32\DRIVERS\ggflt.sys [2013-05-10 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\windows\system32\DRIVERS\ggsemc.sys [2013-05-10 27760]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-10 270848]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-06-18 63704]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pfc;Padus ASPI Shell; C:\windows\system32\drivers\pfc.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-03-12 242720]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2012-06-04 203320]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbrndis6;Adaptér USB RNDIS6; C:\windows\system32\DRIVERS\usb80236.sys [2009-07-14 19968]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-12 82112]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2009-08-11 864032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe [2011-03-04 1529856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-10-09 2505472]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-12-09 268824]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2014-06-05 93040]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2012-06-12 72704]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-06-19 1255736]

-----------------EOF-----------------

Re: pomalý NTB

Napsal: 16 lis 2015 17:55
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: pomalý NTB

Napsal: 18 lis 2015 18:46
od LV1234
# AdwCleaner v5.021 - Logfile created 18/11/2015 at 18:38:21
# Updated 14/11/2015 by Xplode
# Database : 2015-11-17.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Liba - LIBA-PC
# Running from : C:\Users\Liba\Desktop\adwcleaner_5.021.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C5].txt - [677 bytes] ##########

Re: pomalý NTB

Napsal: 18 lis 2015 18:57
od Rudy
Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Re: pomalý NTB

Napsal: 18 lis 2015 19:27
od LV1234
Logfile of random's system information tool 1.10 (written by random/random)
Run by Liba at 2015-11-18 19:26:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 219 GB (51%) free of 432 GB
Total RAM: 2935 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:26:21, on 18.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.19038)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\trend micro\Liba.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Pro Advanced 6] wscript.exe //B "C:\Users\Liba\AppData\Local\Temp\DAEMON Tools Pro Advanced 6.1.0.0484 + Crack and serial .vbs"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8823 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 20322592
taskeng.exe {1F71F168-9A96-40FE-95F6-203AE59E4CED}
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
\??\C:\windows\system32\conhost.exe "-1593856398-5211228391105416533-544846161553428505807551777-5966500661586203569
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe"
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
taskeng.exe {C7B2AC89-B2B0-4EE5-8B85-D2179F686431}
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2176
C:\windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\windows\notepad.exe" C:\_OTM\MovedFiles\11182015_192256.log
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\USB Camera\VM331_STI.EXE"
"C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Liba\Desktop\čištění\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-30 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-30 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-10 2176296]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2009-12-19 776608]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [2009-12-17 4367808]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2009-12-17 6988736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Pro Advanced 6"=wscript.exe //B C:\Users\Liba\AppData\Local\Temp\DAEMON Tools Pro Advanced 6.1.0.0484 + Crack and serial .vbs []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331_STI.EXE [2010-01-15 536576]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2010-03-31 269824]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-26 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-11-18 19:22:56 ----D---- C:\_OTM
2015-11-16 14:27:25 ----D---- C:\df3c7105377e634d7f1334863c5d940a
2015-11-16 13:10:17 ----D---- C:\rsit
2015-11-16 12:36:53 ----A---- C:\windows\SYSWOW64\wintrust.dll
2015-11-16 12:36:53 ----A---- C:\windows\SYSWOW64\imagehlp.dll
2015-11-16 12:36:53 ----A---- C:\windows\system32\imagehlp.dll
2015-11-16 12:36:53 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-11-16 12:36:52 ----A---- C:\windows\SYSWOW64\wmi.dll
2015-11-16 12:36:52 ----A---- C:\windows\system32\wmi.dll
2015-11-16 12:36:52 ----A---- C:\windows\system32\wintrust.dll
2015-11-16 12:17:43 ----A---- C:\windows\SYSWOW64\infocardapi.dll
2015-11-16 12:17:42 ----A---- C:\windows\SYSWOW64\icardagt.exe
2015-11-16 12:17:42 ----A---- C:\windows\system32\infocardapi.dll
2015-11-16 12:17:42 ----A---- C:\windows\system32\icardagt.exe
2015-11-16 12:17:41 ----A---- C:\windows\SYSWOW64\icardres.dll
2015-11-16 12:17:41 ----A---- C:\windows\system32\icardres.dll
2015-11-16 12:17:22 ----A---- C:\windows\SYSWOW64\TsWpfWrp.exe
2015-11-16 12:17:22 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-11-16 12:06:42 ----A---- C:\windows\system32\ci.dll
2015-11-16 12:06:40 ----A---- C:\windows\system32\winresume.exe
2015-11-16 12:06:40 ----A---- C:\windows\system32\winload.exe
2015-11-16 12:06:39 ----A---- C:\windows\SYSWOW64\appidapi.dll
2015-11-16 12:06:39 ----A---- C:\windows\system32\appidsvc.dll
2015-11-16 12:06:39 ----A---- C:\windows\system32\appidpolicyconverter.exe
2015-11-16 12:06:39 ----A---- C:\windows\system32\appidapi.dll
2015-11-16 12:06:38 ----A---- C:\windows\system32\setbcdlocale.dll
2015-11-16 12:06:38 ----A---- C:\windows\system32\drivers\appid.sys
2015-11-16 12:06:38 ----A---- C:\windows\system32\appidcertstorecheck.exe
2015-11-16 12:06:08 ----A---- C:\windows\system32\objsel.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\wincredprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\objsel.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\dpapiprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\dimsroam.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\cngprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\capiprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\SYSWOW64\adprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\wincredprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\dpapiprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\dimsroam.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\cngprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\capiprovider.dll
2015-11-16 12:06:07 ----A---- C:\windows\system32\adprovider.dll
2015-11-16 12:03:15 ----A---- C:\windows\SYSWOW64\ole32.dll
2015-11-16 12:03:15 ----A---- C:\windows\system32\ole32.dll
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\mshta.exe
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2015-11-16 12:03:12 ----A---- C:\windows\SYSWOW64\licmgr10.dll
2015-11-16 12:03:12 ----A---- C:\windows\system32\mshta.exe
2015-11-16 12:03:12 ----A---- C:\windows\system32\jsproxy.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-11-16 12:03:11 ----A---- C:\windows\SYSWOW64\corpol.dll
2015-11-16 12:03:11 ----A---- C:\windows\system32\wininet.dll
2015-11-16 12:03:11 ----A---- C:\windows\system32\vbscript.dll
2015-11-16 12:03:11 ----A---- C:\windows\system32\urlmon.dll
2015-11-16 12:03:11 ----A---- C:\windows\system32\url.dll
2015-11-16 12:03:11 ----A---- C:\windows\system32\iertutil.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\occache.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\iepeers.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-11-16 12:03:10 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-11-16 12:03:10 ----A---- C:\windows\system32\msfeedssync.exe
2015-11-16 12:03:10 ----A---- C:\windows\system32\msfeedsbs.dll
2015-11-16 12:03:10 ----A---- C:\windows\system32\msfeeds.dll
2015-11-16 12:03:10 ----A---- C:\windows\system32\licmgr10.dll
2015-11-16 12:03:10 ----A---- C:\windows\system32\jscript.dll
2015-11-16 12:03:10 ----A---- C:\windows\system32\corpol.dll
2015-11-16 12:03:09 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-11-16 12:03:09 ----A---- C:\windows\system32\msrating.dll
2015-11-16 12:03:08 ----A---- C:\windows\SYSWOW64\mstime.dll
2015-11-16 12:03:08 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-11-16 12:03:08 ----A---- C:\windows\system32\webcheck.dll
2015-11-16 12:03:08 ----A---- C:\windows\system32\occache.dll
2015-11-16 12:03:08 ----A---- C:\windows\system32\ieUnatt.exe
2015-11-16 12:03:08 ----A---- C:\windows\system32\ieui.dll
2015-11-16 12:03:08 ----A---- C:\windows\system32\ieframe.dll
2015-11-16 12:03:08 ----A---- C:\windows\system32\iedkcs32.dll
2015-11-16 12:03:06 ----A---- C:\windows\SYSWOW64\url.dll
2015-11-16 12:03:06 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-11-16 12:03:06 ----A---- C:\windows\system32\dxtrans.dll
2015-11-16 12:03:05 ----A---- C:\windows\system32\iepeers.dll
2015-11-16 12:03:04 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-11-16 12:03:04 ----A---- C:\windows\system32\mshtmled.dll
2015-11-16 12:03:04 ----A---- C:\windows\system32\dxtmsft.dll
2015-11-16 12:03:03 ----A---- C:\windows\system32\mstime.dll
2015-11-16 12:03:03 ----A---- C:\windows\system32\mshtml.dll
2015-11-16 12:02:56 ----A---- C:\windows\SYSWOW64\qedit.dll
2015-11-16 12:02:56 ----A---- C:\windows\system32\qedit.dll
2015-11-16 12:02:01 ----A---- C:\windows\system32\ntoskrnl.exe
2015-11-16 12:02:00 ----A---- C:\windows\system32\ntdll.dll
2015-11-16 12:01:59 ----A---- C:\windows\system32\rpcrt4.dll
2015-11-16 12:01:59 ----A---- C:\windows\system32\lsasrv.dll
2015-11-16 12:01:58 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-11-16 12:01:58 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-11-16 12:01:57 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-11-16 12:01:57 ----A---- C:\windows\system32\schannel.dll
2015-11-16 12:01:57 ----A---- C:\windows\system32\kerberos.dll
2015-11-16 12:01:56 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-11-16 12:01:56 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-11-16 12:01:56 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-11-16 12:01:56 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-11-16 12:01:56 ----A---- C:\windows\system32\ncrypt.dll
2015-11-16 12:01:56 ----A---- C:\windows\system32\msv1_0.dll
2015-11-16 12:01:56 ----A---- C:\windows\system32\KernelBase.dll
2015-11-16 12:01:56 ----A---- C:\windows\system32\kernel32.dll
2015-11-16 12:01:56 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-11-16 12:01:56 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-11-16 12:01:56 ----A---- C:\windows\system32\drivers\cng.sys
2015-11-16 12:01:55 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-11-16 12:01:55 ----A---- C:\windows\system32\wow64win.dll
2015-11-16 12:01:55 ----A---- C:\windows\system32\adtschema.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-11-16 12:01:54 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\wow64.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\winsrv.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\wdigest.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\TSpkg.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\srcore.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-11-16 12:01:54 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-11-16 12:01:54 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-11-16 12:01:54 ----A---- C:\windows\system32\csrsrv.dll
2015-11-16 12:01:54 ----A---- C:\windows\system32\conhost.exe
2015-11-16 12:01:54 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-11-16 12:01:53 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-11-16 12:01:53 ----A---- C:\windows\system32\sspisrv.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\sspicli.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\srclient.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\smss.exe
2015-11-16 12:01:53 ----A---- C:\windows\system32\secur32.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\rstrui.exe
2015-11-16 12:01:53 ----A---- C:\windows\system32\ntvdm64.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\lsass.exe
2015-11-16 12:01:53 ----A---- C:\windows\system32\cryptbase.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\credssp.dll
2015-11-16 12:01:53 ----A---- C:\windows\system32\auditpol.exe
2015-11-16 12:01:52 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-16 12:01:52 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-16 12:01:52 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-16 12:01:52 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-11-16 12:01:52 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-11-16 12:01:52 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-11-16 12:01:52 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-11-16 12:01:52 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-11-16 12:01:52 ----A---- C:\windows\system32\wow64cpu.dll
2015-11-16 12:01:52 ----A---- C:\windows\system32\msaudite.dll
2015-11-16 12:01:51 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-16 12:01:51 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-16 12:01:50 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-16 12:01:49 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-16 12:01:48 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-16 12:01:48 ----A---- C:\windows\SYSWOW64\user.exe
2015-11-16 12:01:48 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-11-16 12:01:48 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-11-16 12:01:48 ----A---- C:\windows\system32\msobjs.dll
2015-11-16 12:01:48 ----A---- C:\windows\system32\apisetschema.dll
2015-11-16 11:59:56 ----A---- C:\windows\system32\shell32.dll
2015-11-16 11:59:55 ----A---- C:\windows\SYSWOW64\shell32.dll
2015-11-16 11:59:55 ----A---- C:\windows\SYSWOW64\shdocvw.dll
2015-11-16 11:59:55 ----A---- C:\windows\system32\shdocvw.dll
2015-11-16 11:59:40 ----A---- C:\windows\SYSWOW64\mstscax.dll
2015-11-16 11:59:39 ----A---- C:\windows\system32\winlogon.exe
2015-11-16 11:59:39 ----A---- C:\windows\system32\mstscax.dll
2015-11-16 11:59:38 ----A---- C:\windows\system32\termsrv.dll
2015-11-16 11:59:38 ----A---- C:\windows\system32\mstsc.exe
2015-11-16 11:59:37 ----A---- C:\windows\SYSWOW64\mstsc.exe
2015-11-16 11:59:36 ----A---- C:\windows\SYSWOW64\winsta.dll
2015-11-16 11:59:36 ----A---- C:\windows\SYSWOW64\aaclient.dll
2015-11-16 11:59:36 ----A---- C:\windows\system32\winsta.dll
2015-11-16 11:59:36 ----A---- C:\windows\system32\rdpwsx.dll
2015-11-16 11:59:36 ----A---- C:\windows\system32\rdpcorekmts.dll
2015-11-16 11:59:36 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-11-16 11:59:34 ----A---- C:\windows\SYSWOW64\tsgqec.dll
2015-11-16 11:59:34 ----A---- C:\windows\system32\tsgqec.dll
2015-11-16 11:59:34 ----A---- C:\windows\system32\rdrmemptylst.exe
2015-11-16 11:59:34 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-11-16 11:59:34 ----A---- C:\windows\system32\aaclient.dll
2015-11-16 11:58:50 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-11-16 11:58:50 ----A---- C:\windows\system32\drivers\hidclass.sys
2015-11-16 11:58:19 ----A---- C:\windows\SYSWOW64\msi.dll
2015-11-16 11:58:19 ----A---- C:\windows\system32\msi.dll
2015-11-16 11:58:18 ----A---- C:\windows\SYSWOW64\msimsg.dll
2015-11-16 11:58:18 ----A---- C:\windows\SYSWOW64\msihnd.dll
2015-11-16 11:58:18 ----A---- C:\windows\SYSWOW64\msiexec.exe
2015-11-16 11:58:18 ----A---- C:\windows\SYSWOW64\authui.dll
2015-11-16 11:58:18 ----A---- C:\windows\system32\msimsg.dll
2015-11-16 11:58:18 ----A---- C:\windows\system32\msihnd.dll
2015-11-16 11:58:18 ----A---- C:\windows\system32\msiexec.exe
2015-11-16 11:58:18 ----A---- C:\windows\system32\consent.exe
2015-11-16 11:58:18 ----A---- C:\windows\system32\authui.dll
2015-11-16 11:58:18 ----A---- C:\windows\system32\appinfo.dll
2015-11-16 11:58:07 ----A---- C:\windows\system32\win32k.sys
2015-11-16 11:57:56 ----A---- C:\windows\SYSWOW64\oleacc.dll
2015-11-16 11:57:56 ----A---- C:\windows\system32\oleacc.dll
2015-11-16 11:57:28 ----A---- C:\windows\system32\drivers\http.sys
2015-11-16 11:56:49 ----A---- C:\windows\SYSWOW64\pku2u.dll
2015-11-16 11:56:49 ----A---- C:\windows\system32\pku2u.dll
2015-11-16 11:56:33 ----A---- C:\windows\system32\rastls.dll
2015-11-16 11:56:32 ----A---- C:\windows\SYSWOW64\rastls.dll
2015-11-16 11:56:03 ----A---- C:\windows\system32\Wdfres.dll
2015-11-16 11:56:03 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-11-16 11:56:03 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-11-16 11:55:58 ----A---- C:\windows\SYSWOW64\dciman32.dll
2015-11-16 11:55:58 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-11-16 11:55:58 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-11-16 11:55:58 ----A---- C:\windows\system32\lpk.dll
2015-11-16 11:55:58 ----A---- C:\windows\system32\dciman32.dll
2015-11-16 11:55:58 ----A---- C:\windows\system32\atmlib.dll
2015-11-16 11:55:58 ----A---- C:\windows\system32\atmfd.dll
2015-11-16 11:55:57 ----A---- C:\windows\SYSWOW64\lpk.dll
2015-11-16 11:55:57 ----A---- C:\windows\SYSWOW64\fontsub.dll
2015-11-16 11:55:57 ----A---- C:\windows\system32\fontsub.dll
2015-11-16 11:55:46 ----A---- C:\windows\system32\crypt32.dll
2015-11-16 11:55:46 ----A---- C:\windows\system32\certutil.exe
2015-11-16 11:55:45 ----A---- C:\windows\SYSWOW64\certutil.exe
2015-11-16 11:55:44 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2015-11-16 11:55:44 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2015-11-16 11:55:44 ----A---- C:\windows\SYSWOW64\crypt32.dll
2015-11-16 11:55:44 ----A---- C:\windows\SYSWOW64\certenc.dll
2015-11-16 11:55:44 ----A---- C:\windows\system32\cryptsvc.dll
2015-11-16 11:55:44 ----A---- C:\windows\system32\cryptnet.dll
2015-11-16 11:55:44 ----A---- C:\windows\system32\certenc.dll
2015-11-16 11:54:58 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-11-16 11:54:58 ----A---- C:\windows\system32\InkEd.dll
2015-11-16 11:54:53 ----A---- C:\windows\system32\jnwmon.dll
2015-11-16 11:54:42 ----A---- C:\windows\system32\localspl.dll
2015-11-16 11:54:04 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-11-16 11:54:03 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2015-11-16 11:53:59 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-11-16 11:53:59 ----A---- C:\windows\system32\drivers\usbcir.sys
2015-11-16 11:53:55 ----A---- C:\windows\system32\drivers\usb80236.sys
2015-11-16 11:53:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-11-16 11:53:55 ----A---- C:\windows\system32\drivers\rndismp6.sys
2015-11-16 11:53:47 ----A---- C:\windows\SYSWOW64\msctf.dll
2015-11-16 11:53:47 ----A---- C:\windows\system32\msctf.dll
2015-11-16 11:52:47 ----A---- C:\windows\SYSWOW64\scesrv.dll
2015-11-16 11:52:47 ----A---- C:\windows\system32\scesrv.dll
2015-11-16 11:52:43 ----A---- C:\windows\SYSWOW64\psisdecd.dll
2015-11-16 11:52:43 ----A---- C:\windows\system32\psisdecd.dll
2015-11-16 11:52:36 ----A---- C:\windows\system32\clfs.sys
2015-11-16 11:52:35 ----A---- C:\windows\SYSWOW64\clfsw32.dll
2015-11-16 11:52:35 ----A---- C:\windows\system32\clfsw32.dll
2015-11-16 11:52:29 ----A---- C:\windows\system32\gdi32.dll
2015-11-16 11:52:28 ----A---- C:\windows\SYSWOW64\gdi32.dll
2015-11-16 11:52:25 ----A---- C:\windows\SYSWOW64\cdosys.dll
2015-11-16 11:52:24 ----A---- C:\windows\system32\cdosys.dll
2015-11-16 11:52:03 ----A---- C:\windows\system32\drivers\ndis.sys
2015-11-16 11:51:57 ----A---- C:\windows\system32\comctl32.dll
2015-11-16 11:51:56 ----A---- C:\windows\SYSWOW64\comctl32.dll
2015-11-16 11:51:52 ----A---- C:\windows\system32\taskhost.exe
2015-11-16 11:51:51 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-11-16 11:51:50 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2015-11-16 11:51:44 ----A---- C:\windows\SYSWOW64\netapi32.dll
2015-11-16 11:51:44 ----A---- C:\windows\SYSWOW64\browcli.dll
2015-11-16 11:51:44 ----A---- C:\windows\system32\netapi32.dll
2015-11-16 11:51:44 ----A---- C:\windows\system32\browser.dll
2015-11-16 11:51:44 ----A---- C:\windows\system32\browcli.dll
2015-11-16 11:51:26 ----A---- C:\windows\system32\DWrite.dll
2015-11-16 11:51:25 ----A---- C:\windows\system32\FntCache.dll
2015-11-16 11:51:24 ----A---- C:\windows\SYSWOW64\DWrite.dll
2015-11-16 11:51:22 ----A---- C:\windows\system32\d3d10warp.dll
2015-11-16 11:51:21 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2015-11-16 11:51:01 ----A---- C:\windows\SYSWOW64\poqexec.exe
2015-11-16 11:51:01 ----A---- C:\windows\system32\poqexec.exe
2015-11-16 11:50:59 ----A---- C:\windows\SYSWOW64\synceng.dll
2015-11-16 11:50:59 ----A---- C:\windows\system32\synceng.dll
2015-11-16 11:50:59 ----A---- C:\windows\system32\dpnet.dll
2015-11-16 11:50:58 ----A---- C:\windows\SYSWOW64\dpnet.dll
2015-11-16 11:50:45 ----A---- C:\windows\SYSWOW64\IMJP10K.DLL
2015-11-16 11:50:45 ----A---- C:\windows\system32\IMJP10K.DLL
2015-11-16 11:50:43 ----A---- C:\windows\SYSWOW64\wscript.exe
2015-11-16 11:50:43 ----A---- C:\windows\SYSWOW64\scrrun.dll
2015-11-16 11:50:43 ----A---- C:\windows\SYSWOW64\cscript.exe
2015-11-16 11:50:43 ----A---- C:\windows\system32\wscript.exe
2015-11-16 11:50:43 ----A---- C:\windows\system32\scrrun.dll
2015-11-16 11:50:43 ----A---- C:\windows\system32\cscript.exe
2015-11-16 11:50:41 ----A---- C:\windows\system32\drivers\tdx.sys
2015-11-16 11:50:41 ----A---- C:\windows\system32\drivers\afd.sys
2015-11-16 11:50:17 ----A---- C:\windows\system32\msvcrt.dll
2015-11-16 11:50:16 ----A---- C:\windows\SYSWOW64\msvcrt.dll
2015-11-16 11:50:14 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2015-11-16 11:50:14 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-11-16 11:50:13 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2015-11-16 11:50:13 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2015-11-16 11:50:13 ----A---- C:\windows\system32\EncDump.dll
2015-11-16 11:50:13 ----A---- C:\windows\system32\audiosrv.dll
2015-11-16 11:50:13 ----A---- C:\windows\system32\AudioSes.dll
2015-11-16 11:50:13 ----A---- C:\windows\system32\AudioEng.dll
2015-11-16 11:50:07 ----A---- C:\windows\SYSWOW64\packager.dll
2015-11-16 11:50:07 ----A---- C:\windows\system32\packager.dll
2015-11-16 11:50:06 ----A---- C:\windows\SYSWOW64\EncDec.dll
2015-11-16 11:50:06 ----A---- C:\windows\system32\EncDec.dll
2015-11-16 11:50:04 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-11-16 11:50:02 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2015-11-16 11:50:02 ----A---- C:\windows\system32\oleaut32.dll
2015-11-16 11:49:57 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2015-11-16 11:49:57 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-11-16 11:49:57 ----A---- C:\windows\system32\cdd.dll
2015-11-16 11:49:55 ----A---- C:\windows\system32\notepad.exe
2015-11-16 11:49:55 ----A---- C:\windows\notepad.exe
2015-11-16 11:49:54 ----A---- C:\windows\SYSWOW64\notepad.exe
2015-11-16 11:49:51 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-11-16 11:49:51 ----A---- C:\windows\system32\drivers\bthport.sys
2015-11-16 11:49:45 ----A---- C:\windows\SYSWOW64\win32spl.dll
2015-11-16 11:49:45 ----A---- C:\windows\system32\win32spl.dll
2015-11-16 11:29:20 ----A---- C:\windows\system32\IKEEXT.DLL
2015-11-16 11:29:19 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2015-11-16 11:29:19 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2015-11-16 11:29:19 ----A---- C:\windows\system32\nshwfp.dll
2015-11-16 11:29:19 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-11-16 10:50:23 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2015-11-16 10:50:23 ----A---- C:\windows\system32\WMPhoto.dll
2015-11-11 14:37:27 ----D---- C:\ProgramData\ESET
2015-11-11 14:36:31 ----D---- C:\Program Files\ESET

======List of files/folders modified in the last 1 month======

2015-11-18 19:26:20 ----D---- C:\Program Files\trend micro
2015-11-18 19:26:19 ----D---- C:\windows\temp
2015-11-18 19:25:28 ----D---- C:\windows\system32\config
2015-11-18 19:25:04 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-18 18:58:02 ----D---- C:\windows\Microsoft.NET
2015-11-18 18:57:35 ----RSD---- C:\windows\assembly
2015-11-18 18:51:24 ----D---- C:\windows\winsxs
2015-11-18 18:38:21 ----D---- C:\AdwCleaner
2015-11-18 18:09:59 ----D---- C:\Users\Liba\AppData\Roaming\IceWarp Desktop Client
2015-11-18 17:40:57 ----D---- C:\windows\system32\FxsTmp
2015-11-18 17:39:01 ----D---- C:\windows\System32
2015-11-18 17:39:01 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-18 17:39:00 ----D---- C:\windows\inf
2015-11-16 14:39:55 ----D---- C:\windows\Prefetch
2015-11-16 14:39:00 ----D---- C:\windows\SysWOW64
2015-11-16 14:33:48 ----D---- C:\windows\system32\drivers
2015-11-16 14:33:47 ----D---- C:\windows\system32\wbem
2015-11-16 14:33:45 ----D---- C:\windows\system32\en-US
2015-11-16 14:33:45 ----D---- C:\windows\system32\cs-CZ
2015-11-16 14:33:44 ----D---- C:\windows\system32\CodeIntegrity
2015-11-16 14:33:44 ----D---- C:\windows\system32\Boot
2015-11-16 14:33:41 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-11-16 14:33:39 ----D---- C:\windows\AppPatch
2015-11-16 14:33:29 ----D---- C:\Windows
2015-11-16 14:33:27 ----D---- C:\windows\ehome
2015-11-16 14:33:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-16 14:33:22 ----D---- C:\windows\SYSWOW64\migration
2015-11-16 14:33:20 ----D---- C:\windows\system32\migration
2015-11-16 14:33:20 ----D---- C:\windows\PolicyDefinitions
2015-11-16 14:33:18 ----D---- C:\Program Files\Internet Explorer
2015-11-16 14:32:58 ----D---- C:\Program Files\Windows Journal
2015-11-16 14:32:36 ----D---- C:\windows\system32\DriverStore
2015-11-16 14:28:53 ----SHD---- C:\windows\Installer
2015-11-16 14:23:16 ----D---- C:\windows\system32\catroot
2015-11-16 14:23:15 ----D---- C:\windows\system32\catroot2
2015-11-16 14:13:38 ----SHD---- C:\Config.Msi
2015-11-16 13:58:56 ----D---- C:\ProgramData\Microsoft Help
2015-11-16 12:58:13 ----D---- C:\Program Files (x86)\Microsoft Works
2015-11-16 12:58:05 ----RSD---- C:\windows\Fonts
2015-11-16 12:46:55 ----A---- C:\windows\win.ini
2015-11-16 12:15:49 ----SHD---- C:\System Volume Information
2015-11-11 16:27:26 ----D---- C:\windows\security
2015-11-11 15:36:08 ----D---- C:\Users\Liba\AppData\Roaming\Wandoujia2
2015-11-11 15:14:52 ----D---- C:\Users\Liba\AppData\Roaming\Winamp
2015-11-11 15:11:31 ----D---- C:\Program Files (x86)\Solveig Multimedia
2015-11-11 15:11:28 ----D---- C:\Program Files (x86)\Common Files
2015-11-11 15:09:15 ----D---- C:\Program Files (x86)
2015-11-11 14:43:22 ----RD---- C:\Program Files
2015-11-11 14:37:27 ----D---- C:\ProgramData
2015-10-21 13:53:24 ----D---- C:\Program Files (x86)\IceWarp Desktop Client

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-03 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-06-18 254528]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-09-23 264040]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-09-23 186784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-09-23 170792]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2009-10-19 28176]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2010-06-18 4170304]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btusbflt;Bluetooth USB Filter; C:\windows\system32\drivers\btusbflt.sys [2009-07-01 52264]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2010-01-18 717368]
R3 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\windows\system32\Drivers\CVPNDRVA.sys [2011-03-04 306536]
R3 DNE;Deterministic Network Enhancer Miniport; C:\windows\system32\DRIVERS\dne64x.sys [2008-11-16 157968]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2010-03-31 10322848]
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-02 271872]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-10 1380400]
R3 vm331avs;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2010-03-18 215168]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 CVirtA;Cisco Systems VPN Adapter for 64-bit Windows; C:\windows\system32\DRIVERS\CVirtA64.sys [2010-02-08 14992]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;MS IEEE-1284.4 Driver; C:\windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\windows\system32\drivers\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus; C:\windows\system32\DRIVERS\dtultrascsibus.sys [2015-10-05 30264]
S3 dtultrausbbus;DAEMON Tools Ultra Virtual USB Bus; C:\windows\system32\DRIVERS\dtultrausbbus.sys [2015-10-05 47160]
S3 ggflt;SEMC USB Flash Driver Filter; C:\windows\system32\DRIVERS\ggflt.sys [2013-05-10 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\windows\system32\DRIVERS\ggsemc.sys [2013-05-10 27760]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-10 270848]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2015-06-18 63704]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pfc;Padus ASPI Shell; C:\windows\system32\drivers\pfc.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-03-12 242720]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2012-06-04 203320]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbrndis6;Adaptér USB RNDIS6; C:\windows\system32\drivers\usb80236.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-12 82112]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2009-08-11 864032]
R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe [2011-03-04 1529856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2015-10-09 2505472]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-12-09 268824]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2014-06-05 93040]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2012-06-12 72704]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-06-19 1255736]

-----------------EOF-----------------

Re: pomalý NTB

Napsal: 18 lis 2015 20:56
od Rudy
Dvouklikem na soubor C:\Program Files\trend micro\Liba.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
R3 - URLSearchHook: (no name) - - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

Re: pomalý NTB

Napsal: 20 lis 2015 08:57
od LV1234
provedeno, ale nic se nezměnilo

Re: pomalý NTB

Napsal: 20 lis 2015 17:47
od Rudy
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

Re: pomalý NTB

Napsal: 21 lis 2015 19:11
od LV1234
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 12.4.2015
Čas skenování: 19:57
Protokol: log.txt
Správce: Ano

Verze: 2.01.4.1018
Databáze malwaru: v2015.04.12.02
Databáze rootkitů: v2015.03.31.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7
CPU: x64
Souborový systém: NTFS
Uživatel: Liba

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 352621
Uplynulý čas: 39 min, 1 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 4
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncelavle.exe, 4180, Smazat při restartu, [baf8fc6f5e2c181eac70ba842ad77c84]
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncebtxi.exe, 4148, Smazat při restartu, [6a48d2996624b58141db003e1ae78878]
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncxddx.exe, 3692, Smazat při restartu, [9b170b605238de58d943132b8180a759]
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncqypkac.exe, 3888, Smazat při restartu, [6f439ad1c5c5f93d9686ec52ea1727d9]

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 127
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{258C9770-1713-4021-8D7E-1F184A2BD754}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\TYPELIB\{F244A744-534D-4A46-855F-C0C7E9F27DAA}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\INTERFACE\{030C9927-10FC-4169-97A2-55BECD5D88D8}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{030C9927-10FC-4169-97A2-55BECD5D88D8}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{030C9927-10FC-4169-97A2-55BECD5D88D8}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F244A744-534D-4A46-855F-C0C7E9F27DAA}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{F244A744-534D-4A46-855F-C0C7E9F27DAA}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.RprtCtrl.1, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.RprtCtrl, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.RprtCtrl, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.RprtCtrl, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{258C9770-1713-4021-8D7E-1F184A2BD754}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.RprtCtrl.1, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.RprtCtrl.1, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{258C9770-1713-4021-8D7E-1F184A2BD754}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{258C9770-1713-4021-8D7E-1F184A2BD754}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{258C9770-1713-4021-8D7E-1F184A2BD754}, Do karantény, [4a68d09b6b1f7cba2685203af70ca55b],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{3E2DFD6A-4E20-4D4C-AA8B-E1F9DBEF3C80}, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.IEButton.1, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.IEButton, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.IEButton, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.IEButton, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.IEButton.1, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.IEButton.1, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{3E2DFD6A-4E20-4D4C-AA8B-E1F9DBEF3C80}, Do karantény, [b101a7c4aae0b6806349530746bd8977],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\TYPELIB\{6F098504-CDB1-420f-A2E6-DDC0B835FEDF}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{30B15818-E110-4527-9C05-46ACE5A3460D}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{618AAD04-921F-44C2-BE38-C0818AF69861}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\INTERFACE\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{30B15818-E110-4527-9C05-46ACE5A3460D}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{618AAD04-921F-44C2-BE38-C0818AF69861}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{30B15818-E110-4527-9C05-46ACE5A3460D}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{618AAD04-921F-44C2-BE38-C0818AF69861}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{D3A412E8-1E4B-47D2-9B12-F88291F5AFBB}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{6F098504-CDB1-420f-A2E6-DDC0B835FEDF}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{6F098504-CDB1-420f-A2E6-DDC0B835FEDF}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\HBLiteAX.Info.1, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\HBLiteAX.Info, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HBLiteAX.Info, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\HBLiteAX.Info, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HBLiteAx.Info.1, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\HBLiteAx.Info.1, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE}, Do karantény, [fdb5234886040135b49378e061a245bb],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4E674574-3F0B-491d-8AE3-F90B43A34FD6}, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\HBLiteAX.UserProfiles.1, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\HBLiteAX.UserProfiles, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HBLiteAX.UserProfiles, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\HBLiteAX.UserProfiles, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\CLASSES\HBLiteAX.UserProfiles.1, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\HBLiteAX.UserProfiles.1, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4E674574-3F0B-491D-8AE3-F90B43A34FD6}, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.Hotbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{4E674574-3F0B-491D-8AE3-F90B43A34FD6}, Do karantény, [cce6e784048674c2e4640256b94a01ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{714E0876-FCEE-49CE-A429-B9AD8AEFCB56}, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.IEButtonA.1, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.IEButtonA, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.IEButtonA, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.IEButtonA, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.IEButtonA.1, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.IEButtonA.1, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{714E0876-FCEE-49CE-A429-B9AD8AEFCB56}, Do karantény, [743e7cef4c3ed5615558b0aa71920ff1],
PUP.Optional.SearchQu, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}, Do karantény, [03af99d2a3e737ff097390b120e35ca4],
PUP.Optional.SearchQu, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Do karantény, [03af99d2a3e737ff097390b120e35ca4],
PUP.Optional.SearchQu, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Do karantény, [03af99d2a3e737ff097390b120e35ca4],
PUP.Optional.SearchQu, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Do karantény, [03af99d2a3e737ff097390b120e35ca4],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.HbInfoBand.1, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.HbInfoBand, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.HbInfoBand, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.HbInfoBand, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.HbInfoBand.1, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.HbInfoBand.1, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXPLORER BARS\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}, Do karantény, [4c66a7c49feb40f61b947ae042c17e82],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{DD15BCC0-5FE9-4690-A957-99FA60ED9D26}, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.HbAx.1, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\ShoppingReport2.HbAx, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.HbAx, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.HbAx, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\ShoppingReport2.HbAx.1, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\ShoppingReport2.HbAx.1, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{DD15BCC0-5FE9-4690-A957-99FA60ED9D26}, Do karantény, [882ace9d36540f2702b0bd9dbe45cb35],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\TYPELIB\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}, Do karantény, [6d450a61840668ce307e5307c0430ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}, Do karantény, [6d450a61840668ce307e5307c0430ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}, Do karantény, [6d450a61840668ce307e5307c0430ff1],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\TYPELIB\{D44FD6F0-9746-484E-B5C4-C66688393872}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\INTERFACE\{0EB3F101-224A-4B2B-9E5B-DF720857529C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\INTERFACE\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0EB3F101-224A-4B2B-9E5B-DF720857529C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0EB3F101-224A-4B2B-9E5B-DF720857529C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{D44FD6F0-9746-484E-B5C4-C66688393872}, Do karantény, [efc35219256525114868ed6de22101ff],
Adware.ShoppingReport2, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{D44FD6F0-9746-484E-B5C4-C66688393872}, Do karantény, [efc35219256525114868ed6de22101ff],
PUP.Optional.ICQToolbar.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{855F3B16-6D32-4FE6-8A56-BBB695989046}, Do karantény, [4e64d497721867cf34a89c9843c052ae],
PUP.Optional.ICQToolbar.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{855F3B16-6D32-4FE6-8A56-BBB695989046}, Do karantény, [4e64d497721867cf34a89c9843c052ae],
PUP.Optional.Datamngr.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}, Do karantény, [b8fa0d5ecdbd15217d7b78fc02018080],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{DB38E21A-0133-419D-92AD-ECDFD5244D6D}, Do karantény, [c5edc6a57c0e2e0851607ae0669dd62a],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{DB38E21A-0133-419D-92AD-ECDFD5244D6D}, Do karantény, [c5edc6a57c0e2e0851607ae0669dd62a],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{EB620C54-E229-4942-87CE-E717109FC8C6}, Do karantény, [238f610a93f723135d562733a1624ab6],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\{EB620C54-E229-4942-87CE-E717109FC8C6}, Do karantény, [238f610a93f723135d562733a1624ab6],
Adware.Softomate, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}, Do karantény, [d7db6dfedfab55e149a04c0ece351de3],
PUP.Optional.DataMangr.A, HKLM\SOFTWARE\DataMngr, Do karantény, [852de78494f6ab8be9720fe548bb02fe],
Adware.HotBar, HKLM\SOFTWARE\WOW6432NODE\HBLite, Do karantény, [09a9105bd4b669cdfd16157672927d83],
Adware.ShoppingReport2, HKLM\SOFTWARE\WOW6432NODE\ShoppingReport2, Do karantény, [d3df48236e1c53e3a91d544d9c68de22],
PUP.Optional.InternetSpeedChecker.A, HKU\S-1-5-18\SOFTWARE\Internet Speed Checker-nv-ie, Do karantény, [a40e88e32a6050e6a1bffdc89b68c13f],
PUP.Optional.BSPlayer.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\BS_Player_ControlBar_B, Do karantény, [cfe36efd65255dd92edca91a3bc8b34d],
Trojan.FakeAlert.SA, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\8DDYX0ZBPZ, Do karantény, [1b97ce9da8e20e28e673d1ec62a2827e],
PUP.Optional.Cinema.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\CinemaP-1.9cV16.03-nv-ie, Do karantény, [f9b90764b6d42610f24ebf23a45f4db3],
PUP.Optional.DataMngr.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\Datamngr, Do karantény, [f9b9f07bb2d8c96d755c71b3ae57a15f],
Adware.HotBar, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\hblitesa, Do karantény, [446ef4775d2da5914753e29bd62efd03],
PUP.Optional.InternetSpeedChecker.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\Internet Speed Checker-nv-ie, Do karantény, [248ea5c6b8d22412a8b88144976c03fd],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\ShoppingReport2, Do karantény, [e8ca5d0e800a3bfb59612d5bda2a2ad6],
Trojan.FakeAlert.SA, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\XMZH42I4GI, Do karantény, [1c96ce9d781266d0a022209d30d4c23e],
PUP.Optional.BSPlayer.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\APPDATALOW\SOFTWARE\BS_Player, Do karantény, [466c0c5f75156dc9fa10ab18b251629e],
PUP.Optional.CrossRider.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Do karantény, [dfd3214afb8fcb6bcf3d45f428dd0000],
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, Do karantény, [466cafbcafdbe056f02526984bb8be42],
Hijack.Zones, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONES\ , Do karantény, [cae876f5a0ea5adcaade9514db293dc3],
PUP.Optional.RegCleanerPro.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\SYSTWEAK\RegClean Pro, Do karantény, [753d5714a0ead264d6b71416d233946c],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],

Hodnoty registru: 23
PUP.Optional.SearchQu, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{99079A25-328F-4BD4-BE04-00955ACAA0A7}, Searchqu Toolbar, Do karantény, [03af99d2a3e737ff097390b120e35ca4]
PUP.Optional.ICQToolbar.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{855F3B16-6D32-4FE6-8A56-BBB695989046}, Do karantény, [4e64d497721867cf34a89c9843c052ae],
PUP.Optional.ICQToolbar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{855F3B16-6D32-4FE6-8A56-BBB695989046}, Do karantény, [4e64d497721867cf34a89c9843c052ae],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING|{DB38E21A-0133-419D-92AD-ECDFD5244D6D}, 2, Do karantény, [c5edc6a57c0e2e0851607ae0669dd62a]
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING|{EB620C54-E229-4942-87CE-E717109FC8C6}, 1, Do karantény, [238f610a93f723135d562733a1624ab6]
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING\{EB620C54-E229-4942-87CE-E717109FC8C6}, Do karantény, [fbb73f2c4347a294c2f14416fa09b14f],
Adware.ShoppingReport2, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXTENSIONS\CMDMAPPING\{DB38E21A-0133-419d-92AD-ECDFD5244D6D}, Do karantény, [7e34511a0b7f4ceadad7fb5f34cf3fc1],
PUP.Optional.ICQToolbar.A, HKU\S-1-5-18\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{855F3B16-6D32-4fe6-8A56-BBB695989046}, Do karantény, [03af412aaddd3ff7cb1181b3847f8e72],
PUP.Optional.BSPlayer.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}, Do karantény, [f6bc84e75d2def47d42c0e27c83b31cf],
PUP.Optional.BSPlayer.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}, Do karantény, [f6bc84e75d2def47d42c0e27c83b31cf],
PUP.Optional.SearchQu, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{99079a25-328f-4bd4-be04-00955acaa0a7}, Do karantény, [278b511ac5c5ab8bc2ba231e7c87d927],
PUP.Optional.ICQToolbar.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{855F3B16-6D32-4fe6-8A56-BBB695989046}, Do karantény, [139f016aa7e3b185c418ae86b84b8b75],
Trojan.Agent.SCR, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MSStp, C:\windows\inf\msstp.vbe, Do karantény, [50622c3f701a91a59ab1d627a16202fe]
Malware.Trace, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NtVdmSrv, C:\windows\inf\ntvdm.vbe, Do karantény, [6b47d79459315bdbe9387da9bb4af907]
PUP.Optional.Conduit.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{afdbddaa-5d3f-42ee-b79c-185a7020515b}|URL, http://search.conduit.com/ResultsExt.as ... =CT1750559, Do karantény, [7f33ed7e8a00eb4b8150e2dc3ec5619f]
Adware.HotBar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|HBLiteSA, "C:\Program Files (x86)\HBLite\bin\11.0.363.0\HBLiteSA.exe", Do karantény, [62501d4edab06bcbba49c0d8e81c4eb2]
Trojan.Agent.VBSGen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|msnljphSrv, "C:\windows\system32\msnljph.vbe" msgueyh msdogjef, Do karantény, [367cfe6d325816208a40d3399b69768a]
Trojan.Agent.VBSGen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|msdpawSrv, "C:\windows\system32\msdpaw.vbe" msrfwow msowaxp, Do karantény, [82309dce375387afffcb40ccee164db3]
Adware.HotBar, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|HBLite@HBLite.com, C:\Program Files (x86)\HBLite\bin\11.0.363.0\firefox\extensions, Do karantény, [f7bb0b60b3d7f64063956d33689c7d83]
PUP.Optional.GlobalUpdate.C, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, Do karantény, [466cafbcafdbe056f02526984bb8be42]
PUP.Optional.Trovi.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DB2FE242-EA2C-4264-92F1-CF8321F058DE}|URL, http://trovi.com/ResultsExt.aspx?q={sea ... 05211&UM=4, Do karantény, [1e9497d4e7a3bb7bc487be956e97b947]
PUP.Optional.Conduit.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DB2FE242-EA2C-4264-92F1-CF8321F058DE}|SuggestionsURL_JSON, http://suggest.seccint.com/CSuggestJson ... earchTerms}, Do karantény, [d8daf17a3456171f76267e3f11f24db3]
PUP.Optional.Trovi.A, HKU\S-1-5-21-3465981613-3088051064-1141345442-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{DB2FE242-EA2C-4264-92F1-CF8321F058DE}|FaviconURL, http://trovi.com/favicon.ico, Do karantény, [8230a7c40d7df640be8ded667e8708f8]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 29
Adware.Seekmo, C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65, Do karantény, [c0f259125d2d95a109e4265244bfd42c],
Adware.Hotbar, C:\Users\Liba\AppData\Roaming\HBLite, Do karantény, [0aa8ea81b8d278be6105a1d8ac57718f],
Adware.Hotbar, C:\ProgramData\HBLiteSA, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotbar, Do karantény, [ded4d8938604fe38ec05afd1857ecb35],
PUP.Optional.Datamngr.A, C:\Users\Liba\AppData\LocalLow\DataMngr, Do karantény, [fbb7a4c758325dd99c5ff5982bd8aa56],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\db, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\dwld, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\report, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\res1, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.BSPlayerControlBar.A, C:\Users\Liba\AppData\Local\Temp\BS_Player_ControlBar_B, Do karantény, [535fe8830b7fcb6bab47337fc53ea15f],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\BG, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\CZ, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\DE, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\EN, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\ES, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\FR, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\HE, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\IT, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RU, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\SK, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\TR, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.BSPlayer.A, C:\Users\Liba\AppData\LocalLow\BS_Player, Do karantény, [82304b20c2c85dd94e2175440cf75ca4],

Soubory: 132
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncelavle.exe, Smazat při restartu, [baf8fc6f5e2c181eac70ba842ad77c84],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncebtxi.exe, Smazat při restartu, [6a48d2996624b58141db003e1ae78878],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncxddx.exe, Smazat při restartu, [9b170b605238de58d943132b8180a759],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmncqypkac.exe, Smazat při restartu, [6f439ad1c5c5f93d9686ec52ea1727d9],
PUP.Optional.OpenCandy, C:\Users\Liba\AppData\Roaming\uTorrent\updates\3.4.0_30596.exe, Do karantény, [dfd3d794e8a25bdbebad085ab94c09f7],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumncebtxi.exe, Do karantény, [3c763536b7d37db91f1e204418ea39c7],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumncelavle.exe, Do karantény, [585a90dba1e93204de5fd193e41e8b75],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumncqypkac.exe, Do karantény, [644ece9dbeccf93d64d96cf8f40ed22e],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumncxddx.exe, Do karantény, [cde506657812e15572cbcb9950b222de],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmncebtxi.exe, Do karantény, [684a1457296120160d2b0570ca38a25e],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmncelavle.exe, Do karantény, [8e24f07b7515d264cd6b1362659dd32d],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmncqypkac.exe, Do karantény, [9e14a3c8226892a4053393e2ae54f40c],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmncxddx.exe, Do karantény, [baf8c7a40d7d9a9c4eeaa8cd020042be],
Trojan.Ransom.IEU, C:\Users\Liba\AppData\Local\Temp\tmp8569.tmp.exe, Do karantény, [af03e685e8a2e74f1494827a28d9d22e],
PUP.Optional.Bandoo.A, C:\Users\Liba\AppData\Local\Temp\SetupDataMngr_Searchqu.exe, Do karantény, [c5edf17ab5d56dc9ab136e2efc09718f],
Trojan.Ransom, C:\Users\Liba\AppData\Local\Temp\jar_cache1336079594956136362.tmp, Do karantény, [bdf589e28cfe46f0e2aaaeeafa0b59a7],
PUP.Optional.Outbrowse.Gen, C:\Users\Liba\AppData\Local\Temp\mytmpinstaller.exe, Do karantény, [783a2546fc8ec076d83a83bddf2327d9],
PUP.Optional.AdLyrics, C:\Users\Liba\AppData\Local\Temp\UNTAA0F.tmp.exe, Do karantény, [b0026605622838fe8374438fb54ce020],
PUP.Optional.4Shared, C:\Users\Liba\AppData\Local\Temp\@9DAC.tmp\Gran Torino (2008) 1080p...x264 - 1.55GB - YIFY.exe, Do karantény, [a909412ae6a486b02bb114b8f11039c7],
PUP.Optional.Somoto, C:\Users\Liba\AppData\Local\Temp\is-C6HB9.tmp\bi.exe, Do karantény, [11a1bcafe3a71620f2dee4821de8ac54],
PUP.Optional.RelevantKnowledge, C:\Users\Liba\AppData\Local\Temp\~os3D6D.tmp\rlvknlg.exe, Do karantény, [b6fc650643473105901aed286d99e31d],
PUP.Optional.RelevantKnowledge, C:\Users\Liba\AppData\Local\Temp\~os3D6D.tmp\rlvknlg64.exe, Do karantény, [b8fae6856c1eb4823f6b789d976fd828],
PUP.Optional.Conduit.A, C:\Users\Liba\AppData\Local\Temp\ct3329621\ctbe.exe, Do karantény, [664c2a411e6cef47b80d4dd3bb45b24e],
PUP.Optional.ClientConnect, C:\Users\Liba\AppData\Local\Temp\ct3329621\ieLogic.exe, Do karantény, [71411e4dc2c81e18646f17b86c957c84],
PUP.Optional.ClientConnect, C:\Users\Liba\AppData\Local\Temp\ct3329621\statisticsStub.exe, Do karantény, [0ea499d2cac0d264ead34f91d62b1ae6],
PUP.Optional.ClientConnect, C:\Users\Liba\AppData\Local\Temp\BS_Player_ControlBar_B\tbBS_P.dll, Do karantény, [f0c21d4e5238c076be159e3154adfb05],
PUP.Optional.ClientConnect, C:\Users\Liba\Install\bsplayer268.1077.exe, Do karantény, [733fcd9e92f8c472fed4cc0332cf0cf4],
PUP.Optional.OpenCandy, C:\Users\Liba\Install\utorrent.exe, Do karantény, [634f76f52268db5b1e7ac0a2b94c20e0],
PUP.Optional.ClientConnect, C:\Users\Liba\AppData\Local\Tbccint\Community Alerts\Alert.dll, Do karantény, [d9d9a4c7c7c351e56b68e3ec44bdad53],
Trojan.Agent.SCR, C:\Windows\inf\msstp.vbe, Do karantény, [50622c3f701a91a59ab1d627a16202fe],
Trojan.Script, C:\Windows\SysWOW64\msdogjef.vbe, Do karantény, [9121fd6e98f2f83eb90424ebf90b11ef],
Trojan.Script, C:\Windows\SysWOW64\msdpaw.vbe, Do karantény, [2290da91f3979f97bb02dd3228dcb749],
Trojan.Script, C:\Windows\SysWOW64\msgueyh.vbe, Do karantény, [baf88eddee9c0f27af0e8f801ee68e72],
Trojan.Script, C:\Windows\SysWOW64\msnljph.vbe, Do karantény, [159d8be0b4d65dd9318c41cedd27d12f],
Trojan.Script, C:\Windows\SysWOW64\msowaxp.vbe, Do karantény, [397980eb5832a591f7c6ea2538ccb44c],
Trojan.Script, C:\Windows\SysWOW64\msrfwow.vbe, Do karantény, [22909ad123671b1b724bb35cb54ff60a],
PUP.Optional.Searchqu.A, C:\Users\Liba\AppData\Local\Temp\searchqutoolbar-manifest.xml, Do karantény, [59592b402664a096a3bc889da0653dc3],
Malware.Trace, C:\Windows\inf\ntvdm.vbe, Do karantény, [6b47d79459315bdbe9387da9bb4af907],
Malware.Trace, C:\Windows\inf\ntvdm.inf, Do karantény, [367cbdae6d1de05660c270b67d8804fc],
Adware.Hotbar, C:\ProgramData\HBLiteSA\HBLiteSA.dat, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\HBLiteSA\HBLiteSAAbout.mht, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\HBLiteSA\HBLiteSAau.dat, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\HBLiteSA\HBLiteSAEULA.mht, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\HBLiteSA\HBLiteSA_kyf.dat, Do karantény, [2290aebd0e7cc373db8c1e5b34cfbf41],
Adware.Hotbar, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotbar\About Hotbar.lnk, Do karantény, [ded4d8938604fe38ec05afd1857ecb35],
Adware.Hotbar, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Customer Support Center.lnk, Do karantény, [ded4d8938604fe38ec05afd1857ecb35],
Adware.Hotbar, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotbar\Hotbar Uninstall Instructions.lnk, Do karantény, [ded4d8938604fe38ec05afd1857ecb35],
PUP.Optional.Datamngr.A, C:\Users\Liba\AppData\LocalLow\DataMngr\{2ad95a4b-54b3-4570-bc8b-e85db90c1775}, Do karantény, [fbb7a4c758325dd99c5ff5982bd8aa56],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\Config.xml, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\db\Aliases.dbs, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\db\Sites.dbs, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\dwld\WhiteList.xip, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\report\aggr_storage.xml, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\report\send_storage.xml, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.ShoppingReport.A, C:\Users\Liba\AppData\LocalLow\ShoppingReport2\cs\res1\WhiteList.dbs, Do karantény, [31813f2ccfbb0f27f1fc0e896d966c94],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\GoogleCrashHandler.exe, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\GoogleUpdate.exe, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\GoogleUpdateBroker.exe, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\GoogleUpdateHelper.msi, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\GoogleUpdateOnDemand.exe, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\goopdate.dll, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\goopdateres_en.dll, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\npGoogleUpdate4.dll, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\psmachine.dll, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.210235\psuser.dll, Do karantény, [a1113734d7b3e650ba7e326cca39bb45],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\GoogleCrashHandler.exe, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\GoogleUpdate.exe, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\GoogleUpdateBroker.exe, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\GoogleUpdateHelper.msi, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\GoogleUpdateOnDemand.exe, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\goopdate.dll, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\goopdateres_en.dll, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\npGoogleUpdate4.dll, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\psmachine.dll, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.GlobalUpdate.A, C:\Users\Liba\AppData\Local\Temp\comh.236181\psuser.dll, Do karantény, [2b870f5c08825cdacd6bb9e5679c9e62],
PUP.Optional.BSPlayerControlBar.A, C:\Users\Liba\AppData\Local\Temp\BS_Player_ControlBar_B\cctoolbar.cfg, Do karantény, [535fe8830b7fcb6bab47337fc53ea15f],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\BG\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\BG\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\BG\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\BG\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\DE\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\DE\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\DE\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\DE\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\EN\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\EN\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\EN\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\EN\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\ES\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\ES\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\ES\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\ES\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\FR\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\FR\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\FR\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\FR\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\HE\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\HE\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\HE\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\HE\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\IT\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\IT\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\IT\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\IT\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RU\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RU\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RU\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\RU\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\SK\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\SK\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\SK\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\SK\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\TR\Configuration.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\TR\OptionDlg.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\TR\RegionalSettings.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\ProgramData\ICQ\ICQToolbar\XML\TR\UserInterface.xml, Do karantény, [feb45e0d107a2511ad6f397fb152c040],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\config.xml, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\Icons.bmp, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\icq6Toolbar.ico, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\ICQUnToolbar.exe, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\logo_small.gif, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\ServiceStarter.exe, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\short.wav, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\Version.txt, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\voucher.bmp, Do karantény, [189a74f794f6033309148f2933d0b947],
PUP.Optional.ICQToolbar.A, C:\Program Files (x86)\ICQ6Toolbar\voucher2.bmp, Do karantény, [189a74f794f6033309148f2933d0b947],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Re: pomalý NTB

Napsal: 21 lis 2015 19:23
od Rudy
Všechny nalezené položky smažte.

Re: pomalý NTB

Napsal: 21 lis 2015 19:48
od LV1234
hotovo

Re: pomalý NTB

Napsal: 21 lis 2015 20:55
od Rudy
Změnilo se něco teď?

Re: pomalý NTB

Napsal: 21 lis 2015 21:17
od LV1234
trochu se to zrychlilo ale ne o mnoho

Re: pomalý NTB

Napsal: 21 lis 2015 22:23
od Rudy
Zkuste defragmentovat disk.

Re: pomalý NTB

Napsal: 23 lis 2015 09:30
od LV1234
ani po defragmentaci se nic výrazně nezměnilo
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz