Problém s výkonem

Zpráva

T72 · #1 Příspěvek od **T72** » 03 kvě 2016 21:04

Zdravím. Pc je poslední dobou nějaké pomalé, prosím o kontrolu logu.

Logfile of random's system information tool 1.10 (written by random/random)
Run by PC at 2016-05-03 22:00:37
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 39 GB (24%) free of 160 GB
Total RAM: 3326 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:00:40, on 3.5.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\PC\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Users\PC\Downloads\RSIT.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe" /S
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\PC\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\PC\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Action! service (ACTION_SVC) - Unknown owner - C:\Program Files\Mirillis\Action!\action_svc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: BugreportW - Unknown owner - C:\Program Files\yesbnd\phodaing.exe (file missing)
O23 - Service: Cegush Helper (cegushHelpersrv) - Unknown owner - C:\Program Files\Cegush\cegushHelpersrv.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe

--
End of file - 5732 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\system32\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000Core.job - C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000UA.job - C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F

prefs.js - "browser.startup.homepage" - "http://www.yessearches.com/?ts=AHEqAX8t ... ode=ffseng"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@caminova.com/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.80.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.80.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\components\
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class

C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\searchplugins\
DD1B66D4.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-12 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2016-05-03 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-12 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2016-05-03 7391632]
"RivaTunerStartupDaemon"=D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe [2009-02-15 24576]
"Wondershare Helper Compact.exe"=C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe []
"DelaypluginInstall"=C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe []
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Google Update"=C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
"cz.seznam.software.autoupdate"=C:\Users\PC\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\PC\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"msacm.ac3filter"=ac3filter.acm
"VIDC.FICV"=ficvdec_x86.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"vidc.XVID"=xvidvfw.dll
"msacm.avis"=ff_acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 month======

2016-05-03 20:58:27 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2016-05-03 20:58:24 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-05-03 20:58:10 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-03 20:58:00 ----A---- C:\Windows\avastSS.scr
2016-05-03 20:51:52 ----D---- C:\Program Files\yesbnd
2016-05-03 20:42:54 ----D---- C:\Program Files\Seznam.cz
2016-05-03 20:42:06 ----D---- C:\Users\PC\AppData\Roaming\Seznam.cz
2016-05-03 20:27:22 ----D---- C:\Users\PC\AppData\Roaming\dlg
2016-05-03 20:24:55 ----D---- C:\Program Files\Microsoft Silverlight
2016-05-03 20:23:55 ----D---- C:\Program Files\Cegush
2016-04-27 12:13:55 ----D---- C:\Program Files\Mozilla Firefox
2016-04-06 14:25:43 ----A---- C:\Windows\system32\iasdatastore.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sdohlp.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sbeio.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sbe.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\psisdecd.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\msorcl32.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iasrecst.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iashost.exe
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iasads.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\EncDec.dll
2016-04-06 14:24:50 ----A---- C:\Windows\system32\advapi32.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\smss.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntdll.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-06 14:23:55 ----A---- C:\Windows\system32\ole32.dll
2016-04-06 14:23:55 ----A---- C:\Windows\system32\kernel32.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\ucrtbase.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-06 14:22:57 ----A---- C:\Windows\system32\seclogon.dll
2016-04-06 14:22:43 ----A---- C:\Windows\system32\atmlib.dll
2016-04-06 14:22:43 ----A---- C:\Windows\system32\atmfd.dll
2016-04-06 14:21:31 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-04-06 14:21:03 ----A---- C:\Windows\system32\olepro32.dll
2016-04-06 14:21:03 ----A---- C:\Windows\system32\oleaut32.dll
2016-04-06 14:21:03 ----A---- C:\Windows\system32\asycfilt.dll
2016-04-06 14:12:43 ----A---- C:\Windows\system32\win32k.sys
2016-04-06 14:12:14 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-04-06 14:10:48 ----A---- C:\Windows\system32\kerberos.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\vbscript.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\jscript.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\urlmon.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\mshta.exe
2016-04-06 14:09:48 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-06 14:09:48 ----A---- C:\Windows\system32\iertutil.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\wininet.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\url.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\msfeedssync.exe
2016-04-06 14:09:47 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\jscript9.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\ieui.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-06 14:09:45 ----A---- C:\Windows\system32\ieframe.dll
2016-04-06 14:09:44 ----A---- C:\Windows\system32\mshtml.dll

======List of files/folders modified in the last 1 month======

2016-05-03 22:00:41 ----D---- C:\Windows\temp
2016-05-03 22:00:39 ----D---- C:\Program Files\trend micro
2016-05-03 21:50:38 ----D---- C:\FRST
2016-05-03 21:32:02 ----D---- C:\ProgramData\NVIDIA
2016-05-03 21:29:53 ----SHD---- C:\Windows\Installer
2016-05-03 21:29:45 ----D---- C:\Program Files\QuickTime
2016-05-03 21:29:40 ----D---- C:\Windows\System32
2016-05-03 21:13:49 ----D---- C:\Windows\inf
2016-05-03 21:07:11 ----D---- C:\Windows\system32\drivers
2016-05-03 21:00:18 ----SHD---- C:\System Volume Information
2016-05-03 20:58:31 ----D---- C:\Windows\system32\Tasks
2016-05-03 20:58:13 ----D---- C:\Windows\winsxs
2016-05-03 20:58:09 ----D---- C:\Windows
2016-05-03 20:58:07 ----D---- C:\ProgramData\AVAST Software
2016-05-03 20:51:52 ----D---- C:\Program Files
2016-05-03 20:43:58 ----D---- C:\Windows\Tasks
2016-05-03 20:27:56 ----D---- C:\Windows\Prefetch
2016-05-03 20:25:36 ----SD---- C:\ProgramData\Microsoft
2016-04-29 10:26:11 ----D---- C:\Users\PC\AppData\Roaming\vlc
2016-04-28 08:59:42 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-04-27 13:52:55 ----D---- C:\Users\PC\AppData\Roaming\TS3Client
2016-04-24 21:19:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-21 21:51:46 ----D---- C:\Windows\system32\catroot2
2016-04-21 15:05:04 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-21 12:32:59 ----D---- C:\ProgramData\VSO
2016-04-17 19:16:13 ----D---- C:\Users\PC\AppData\Roaming\Skype
2016-04-13 19:28:01 ----D---- C:\Program Files\Opera
2016-04-12 10:06:46 ----D---- C:\Windows\Debug
2016-04-08 10:19:31 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-04-06 19:39:49 ----D---- C:\Windows\Microsoft.NET
2016-04-06 19:39:10 ----RSD---- C:\Windows\assembly
2016-04-06 19:22:52 ----D---- C:\Windows\rescache
2016-04-06 15:02:10 ----D---- C:\Windows\system32\cs-CZ
2016-04-06 15:02:10 ----D---- C:\Program Files\Windows Collaboration
2016-04-06 15:02:09 ----D---- C:\Program Files\Windows Mail
2016-04-06 15:02:09 ----D---- C:\Program Files\Windows Journal
2016-04-06 15:02:09 ----D---- C:\Program Files\Common Files\System
2016-04-06 15:02:08 ----D---- C:\Windows\system32\XPSViewer
2016-04-06 15:02:08 ----D---- C:\Windows\system32\migration
2016-04-06 15:02:08 ----D---- C:\Program Files\Internet Explorer
2016-04-06 14:26:10 ----D---- C:\Windows\system32\catroot
2016-04-06 14:19:54 ----D---- C:\Windows\system32\MRT
2016-04-06 14:13:27 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-03 58776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-03 221368]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-03 35096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2016-05-03 64272]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-03 815792]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-03 449640]
R1 SASDIFSV;SASDIFSV; \??\D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-03 32792]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-03 91168]
R3 aswStmXP;Avast StreamFilter Driver; C:\Windows\system32\drivers\aswStmXP.sys [2016-05-03 187208]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-02-26 8939296]
R3 RivaTuner32;RivaTuner32; \??\D:\Program Files\RivaTuner v2.23\RivaTuner32.sys [2009-02-15 9088]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Alwil Software\Avast5\ng\vbox\VBoxAswDrv.sys []
S3 a7m5rmvb;a7m5rmvb; C:\Windows\system32\drivers\a7m5rmvb.sys []
S3 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2016-05-03 67216]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 Pcouffin;Low level access layer for CD devices; C:\Windows\System32\Drivers\Pcouffin.sys []
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\D:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [2010-11-01 14416]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; D:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-07-23 142648]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2016-05-03 243296]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 WsAppService;Wondershare Application Framework Service; C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe [2015-12-02 382464]
S2 BugreportW;BugreportW; C:\Program Files\yesbnd\phodaing.exe {154DFF63-3402-4815-941A-AAD63AE8B428} []
S2 cegushHelpersrv;Cegush Helper; C:\Program Files\Cegush\cegushHelpersrv.exe [2016-05-02 302272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-26 1260320]
S3 ACTION_SVC;Action! service; C:\Program Files\Mirillis\Action!\action_svc.exe [2014-10-25 16064]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-08 269504]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe []
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-27 146888]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-12 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 03 kvě 2016 21:23

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

T72 · #3 Příspěvek od **T72** » 04 kvě 2016 16:36

# AdwCleaner v5.008 - Logfile created 18/09/2015 at 20:40:36
# Updated 18/09/2015 by Xplode
# Database : 2015-09-17.3 [Server]
# Operating system : Windows Vista (TM) Home Premium Service Pack 2 (x86)
# Username : PC - PC-PC
# Running from : C:\Users\PC\Desktop\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\{BC9FCCF7-E686-494B-8C9B-55C9A39A7CA9}
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies

***** [ Files ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Key Deleted : HKLM\SOFTWARE\Classes\pc-mechanic
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchffv2@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E716F183-5AD7-11DC-9670-00508DC0D496}
[-] Value Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks [{855F3B16-6D32-4FE6-8A56-BBB695989046}]
[-] Key Deleted : HKU\.DEFAULT\Software\IM
[-] Key Deleted : HKU\.DEFAULT\Software\ImInstaller
[-] Key Deleted : HKU\.DEFAULT\Software\WNLT
[-] Key Deleted : HKLM\SOFTWARE\do-searchSoftware
[-] Key Deleted : HKLM\SOFTWARE\FFPluginHp
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\do-search uninstall
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\do-search uninstall
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
[-] Data Restored : HKU\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]

***** [ Web browsers ] *****

[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.alias", "do-search");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.iconURL", "hxxp://do-search.com/favicon.ico");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.name", "do-search");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.ptid", "cor");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.uid", "SAMSUNGXHD642JJ_S1AFJ90S206264");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.searchengine.url", "hxxp://do-search.com/web/?type=ds&ts=1433342111&z=556b31ed300c7487a8d3053gbz9c2cecaz2o8g0o3e&from=cor&uid=SAMSUNGXHD642JJ_S1AFJ90S206264&q={searchTerms}")[...]
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "do-search");
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\dd36shv9.default\prefs.js] [Preference] Deleted : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
[-] [C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://do-search.com/?type=hp&ts=1433342111&z=556b31ed300c7487a8d3053gbz9c2cecaz2o8g0o3e&from=cor&uid=SAMSUNGXHD642JJ_S1AFJ90S206264
[-] [C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://do-search.com/webfavicon.ico
[-] [C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://do-search.com/?type=hp&ts=1433342111&z=556b31ed300c7487a8d3053gbz9c2cecaz2o8g0o3e&from=cor&uid=SAMSUNGXHD642JJ_S1AFJ90S206264

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4941 bytes] ##########
# AdwCleaner v5.115 - Log soubor vytvořen 04/05/2016 o 17:31:17
# Aktualizováno 01/05/2016 by Xplode
# Databáze : 2016-05-04.2 [Server]
# Operační systém : Windows Vista (TM) Home Premium Service Pack 2 (X86)
# Jméno uživatele : PC - PC-PC
# Spuštěno z : C:\Users\PC\Desktop\adwcleaner_5.115.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****

[-] Služba smazáno : BugreportW

***** [ Složky ] *****

[-] Složka smazáno : C:\Program Files\yesbnd
[-] Složka smazáno : C:\Program Files\Cegush
[-] Složka smazáno : C:\Windows\system32\Codec
[-] Složka smazáno : C:\Users\PC\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108

***** [ Soubory ] *****

***** [ DLLs ] *****

***** [ WMI ] *****

***** [ Zástupci ] *****

***** [ Naplánované úkoly ] *****

[-] Úkol smazáno : Cegush Helper

***** [ Registr ] *****

[-] Klávesa smazáno : HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Klávesa smazáno : HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Klávesa smazáno : HKCU\Software\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Klávesa smazáno : HKCU\Software\dobreprogramy
[-] Klávesa smazáno : HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I
[-] Klávesa smazáno : HKCU\Software\madFlac
[-] Klávesa smazáno : HKLM\SOFTWARE\yessearchesSoftware
[-] Klávesa smazáno : HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Klávesa smazáno : HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Klávesa smazáno : HKLM\SOFTWARE\{G6276374-DEEE-4AAA-A355-9016A2F98A2D}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PCSU-SL_is1
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Smart Driver Updater_is1
[-] Klávesa smazáno : HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1484727336-25265518-3277325258-1000\Software\IB Updater
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1484727336-25265518-3277325258-1000\Software\ICQ\ICQToolbar
[-] Hodnota smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[#] Hodnota smazáno : HKU\S-1-5-21-1484727336-25265518-3277325258-1000\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]

***** [ Webové prohlížeče ] *****

*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [8015 bytes] - [18/09/2015 20:40:36]
C:\AdwCleaner\AdwCleaner[S1].txt - [9456 bytes] - [18/09/2015 20:38:26]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [8161 bytes] ##########

#4 Příspěvek od **Rudy** » 04 kvě 2016 19:32

Dejte nový log RSIT.

T72 · #5 Příspěvek od **T72** » 05 kvě 2016 19:49

Logfile of random's system information tool 1.10 (written by random/random)
Run by PC at 2016-05-05 20:46:09
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 71 GB (45%) free of 160 GB
Total RAM: 3326 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:46:14, on 5.5.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PC\Downloads\RSIT.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe" /S
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Action! service (ACTION_SVC) - Unknown owner - C:\Program Files\Mirillis\Action!\action_svc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: Cegush Helper (cegushHelpersrv) - Unknown owner - C:\Program Files\Cegush\cegushHelpersrv.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe

--
End of file - 4760 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\system32\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000Core.job - C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000UA.job - C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w2b5fv7q.default-1444136383592

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@caminova.com/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.80.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.80.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\components\
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-12 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2016-05-03 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-12 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2016-05-03 7391632]
"RivaTunerStartupDaemon"=D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe [2009-02-15 24576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Google Update"=C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28 144200]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"msacm.ac3filter"=ac3filter.acm
"VIDC.FICV"=ficvdec_x86.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"vidc.XVID"=xvidvfw.dll
"msacm.avis"=ff_acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 month======

2016-05-05 08:56:25 ----D---- C:\Program Files\Mozilla Firefox
2016-05-04 19:19:03 ----D---- C:\Users\PC\AppData\Roaming\Brain Workshop
2016-05-03 20:58:27 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2016-05-03 20:58:24 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-05-03 20:58:10 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-03 20:58:00 ----A---- C:\Windows\avastSS.scr
2016-05-03 20:42:54 ----D---- C:\Program Files\Seznam.cz
2016-05-03 20:42:06 ----D---- C:\Users\PC\AppData\Roaming\Seznam.cz
2016-05-03 20:27:22 ----D---- C:\Users\PC\AppData\Roaming\dlg
2016-05-03 20:24:55 ----D---- C:\Program Files\Microsoft Silverlight
2016-04-06 14:25:43 ----A---- C:\Windows\system32\iasdatastore.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sdohlp.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sbeio.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\sbe.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\psisdecd.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\msorcl32.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iasrecst.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iashost.exe
2016-04-06 14:25:42 ----A---- C:\Windows\system32\iasads.dll
2016-04-06 14:25:42 ----A---- C:\Windows\system32\EncDec.dll
2016-04-06 14:24:50 ----A---- C:\Windows\system32\advapi32.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\smss.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-04-06 14:24:49 ----A---- C:\Windows\system32\ntdll.dll
2016-04-06 14:24:49 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-06 14:23:55 ----A---- C:\Windows\system32\ole32.dll
2016-04-06 14:23:55 ----A---- C:\Windows\system32\kernel32.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\ucrtbase.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-06 14:23:35 ----A---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-06 14:22:57 ----A---- C:\Windows\system32\seclogon.dll
2016-04-06 14:22:43 ----A---- C:\Windows\system32\atmlib.dll
2016-04-06 14:22:43 ----A---- C:\Windows\system32\atmfd.dll
2016-04-06 14:21:31 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-04-06 14:21:03 ----A---- C:\Windows\system32\olepro32.dll
2016-04-06 14:21:03 ----A---- C:\Windows\system32\oleaut32.dll
2016-04-06 14:21:03 ----A---- C:\Windows\system32\asycfilt.dll
2016-04-06 14:12:43 ----A---- C:\Windows\system32\win32k.sys
2016-04-06 14:12:14 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-04-06 14:10:48 ----A---- C:\Windows\system32\kerberos.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\vbscript.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-06 14:09:49 ----A---- C:\Windows\system32\jscript.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\urlmon.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\mshta.exe
2016-04-06 14:09:48 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-06 14:09:48 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-06 14:09:48 ----A---- C:\Windows\system32\iertutil.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\wininet.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\url.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-06 14:09:47 ----A---- C:\Windows\system32\msfeedssync.exe
2016-04-06 14:09:47 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\jscript9.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\ieui.dll
2016-04-06 14:09:46 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-06 14:09:45 ----A---- C:\Windows\system32\ieframe.dll
2016-04-06 14:09:44 ----A---- C:\Windows\system32\mshtml.dll

======List of files/folders modified in the last 1 month======

2016-05-05 20:46:14 ----D---- C:\Windows\Prefetch
2016-05-05 20:46:11 ----D---- C:\Windows\temp
2016-05-05 20:46:11 ----D---- C:\Program Files\trend micro
2016-05-05 12:09:29 ----D---- C:\ProgramData\NVIDIA
2016-05-05 12:09:24 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-05-05 09:55:06 ----SHD---- C:\System Volume Information
2016-05-05 09:01:33 ----D---- C:\Program Files
2016-05-04 17:33:06 ----D---- C:\Windows
2016-05-04 17:31:24 ----D---- C:\Windows\System32
2016-05-04 17:29:56 ----D---- C:\AdwCleaner
2016-05-04 13:47:16 ----D---- C:\ProgramData
2016-05-04 12:56:31 ----D---- C:\ProgramData\VSO
2016-05-04 12:56:20 ----D---- C:\Windows\inf
2016-05-03 21:50:38 ----D---- C:\FRST
2016-05-03 21:29:53 ----SHD---- C:\Windows\Installer
2016-05-03 21:29:45 ----D---- C:\Program Files\QuickTime
2016-05-03 21:07:11 ----D---- C:\Windows\system32\drivers
2016-05-03 20:58:31 ----D---- C:\Windows\system32\Tasks
2016-05-03 20:58:13 ----D---- C:\Windows\winsxs
2016-05-03 20:58:07 ----D---- C:\ProgramData\AVAST Software
2016-05-03 20:43:58 ----D---- C:\Windows\Tasks
2016-05-03 20:25:36 ----SD---- C:\ProgramData\Microsoft
2016-04-29 10:26:11 ----D---- C:\Users\PC\AppData\Roaming\vlc
2016-04-27 13:52:55 ----D---- C:\Users\PC\AppData\Roaming\TS3Client
2016-04-24 21:19:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-21 21:51:46 ----D---- C:\Windows\system32\catroot2
2016-04-21 15:05:04 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-17 19:16:13 ----D---- C:\Users\PC\AppData\Roaming\Skype
2016-04-13 19:28:01 ----D---- C:\Program Files\Opera
2016-04-12 10:06:46 ----D---- C:\Windows\Debug
2016-04-08 10:19:31 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-04-06 19:39:49 ----D---- C:\Windows\Microsoft.NET
2016-04-06 19:39:10 ----RSD---- C:\Windows\assembly
2016-04-06 19:22:52 ----D---- C:\Windows\rescache
2016-04-06 15:02:10 ----D---- C:\Windows\system32\cs-CZ
2016-04-06 15:02:10 ----D---- C:\Program Files\Windows Collaboration
2016-04-06 15:02:09 ----D---- C:\Program Files\Windows Mail
2016-04-06 15:02:09 ----D---- C:\Program Files\Windows Journal
2016-04-06 15:02:09 ----D---- C:\Program Files\Common Files\System
2016-04-06 15:02:08 ----D---- C:\Windows\system32\XPSViewer
2016-04-06 15:02:08 ----D---- C:\Windows\system32\migration
2016-04-06 15:02:08 ----D---- C:\Program Files\Internet Explorer
2016-04-06 14:26:10 ----D---- C:\Windows\system32\catroot
2016-04-06 14:19:54 ----D---- C:\Windows\system32\MRT
2016-04-06 14:13:27 ----A---- C:\Windows\system32\mrt.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-03 58776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-03 221368]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-03 35096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2016-05-03 64272]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-03 815792]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-03 449640]
R1 SASDIFSV;SASDIFSV; \??\D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-03 32792]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-03 91168]
R3 aswStmXP;Avast StreamFilter Driver; C:\Windows\system32\drivers\aswStmXP.sys [2016-05-03 187208]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-02-26 8939296]
R3 RivaTuner32;RivaTuner32; \??\D:\Program Files\RivaTuner v2.23\RivaTuner32.sys [2009-02-15 9088]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Alwil Software\Avast5\ng\vbox\VBoxAswDrv.sys []
S3 amq7znf4;amq7znf4; C:\Windows\system32\drivers\amq7znf4.sys []
S3 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2016-05-03 67216]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 Pcouffin;Low level access layer for CD devices; C:\Windows\System32\Drivers\Pcouffin.sys []
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\D:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [2010-11-01 14416]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; D:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-07-23 142648]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2016-05-03 243296]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 WsAppService;Wondershare Application Framework Service; C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe [2015-12-02 382464]
S2 cegushHelpersrv;Cegush Helper; C:\Program Files\Cegush\cegushHelpersrv.exe {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-26 1260320]
S3 ACTION_SVC;Action! service; C:\Program Files\Mirillis\Action!\action_svc.exe [2014-10-25 16064]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-08 269504]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe []
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-05 146888]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-12 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

#6 Příspěvek od **Rudy** » 05 kvě 2016 20:38

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1484727336-25265518-3277325258-1000UA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

T72 · #7 Příspěvek od **T72** » 06 kvě 2016 21:37

Logfile of random's system information tool 1.10 (written by random/random)
Run by PC at 2016-05-06 22:35:41
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 72 GB (45%) free of 160 GB
Total RAM: 3326 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:35:48, on 6.5.2016
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16749)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\PC\Downloads\RSIT.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe" /S
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: WSWSVCUchrome - (no CLSID) - (no file)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - D:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Action! service (ACTION_SVC) - Unknown owner - C:\Program Files\Mirillis\Action!\action_svc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: Cegush Helper (cegushHelpersrv) - Unknown owner - C:\Program Files\Cegush\cegushHelpersrv.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe

--
End of file - 4818 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\system32\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w2b5fv7q.default-1444136383592

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@caminova.com/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.80.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.80.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2897]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2955]
"Description"=RealJukebox Netscape Plugin
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1675]
"Description"=6.0.12.1675
"Path"=D:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\components\
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-12 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2016-05-03 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-12 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2016-05-03 7391632]
"RivaTunerStartupDaemon"=D:\Program Files\RivaTuner v2.23\RivaTunerWrapper.exe [2009-02-15 24576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Google Update"=C:\Users\PC\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28 144200]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=0
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.lhacm"=lhacm.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"msacm.ac3filter"=ac3filter.acm
"VIDC.FICV"=ficvdec_x86.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"vidc.XVID"=xvidvfw.dll
"msacm.avis"=ff_acm.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 month======

2016-05-06 22:30:42 ----D---- C:\_OTM
2016-05-05 08:56:25 ----D---- C:\Program Files\Mozilla Firefox
2016-05-04 19:19:03 ----D---- C:\Users\PC\AppData\Roaming\Brain Workshop
2016-05-03 20:58:27 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2016-05-03 20:58:24 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-05-03 20:58:10 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-03 20:58:00 ----A---- C:\Windows\avastSS.scr
2016-05-03 20:42:54 ----D---- C:\Program Files\Seznam.cz
2016-05-03 20:42:06 ----D---- C:\Users\PC\AppData\Roaming\Seznam.cz
2016-05-03 20:27:22 ----D---- C:\Users\PC\AppData\Roaming\dlg
2016-05-03 20:24:55 ----D---- C:\Program Files\Microsoft Silverlight

======List of files/folders modified in the last 1 month======

2016-05-06 22:35:46 ----D---- C:\Program Files\trend micro
2016-05-06 22:35:40 ----D---- C:\Windows\temp
2016-05-06 22:34:30 ----D---- C:\Windows\Prefetch
2016-05-06 22:33:29 ----D---- C:\ProgramData\NVIDIA
2016-05-06 22:30:43 ----D---- C:\Windows\Tasks
2016-05-06 22:26:09 ----D---- C:\Windows\inf
2016-05-06 17:40:03 ----D---- C:\Windows
2016-05-05 12:09:24 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-05-05 09:55:06 ----SHD---- C:\System Volume Information
2016-05-05 09:01:33 ----D---- C:\Program Files
2016-05-04 17:31:24 ----D---- C:\Windows\System32
2016-05-04 17:29:56 ----D---- C:\AdwCleaner
2016-05-04 13:47:16 ----D---- C:\ProgramData
2016-05-04 12:56:31 ----D---- C:\ProgramData\VSO
2016-05-03 21:50:38 ----D---- C:\FRST
2016-05-03 21:29:53 ----SHD---- C:\Windows\Installer
2016-05-03 21:29:45 ----D---- C:\Program Files\QuickTime
2016-05-03 21:07:11 ----D---- C:\Windows\system32\drivers
2016-05-03 20:58:31 ----D---- C:\Windows\system32\Tasks
2016-05-03 20:58:13 ----D---- C:\Windows\winsxs
2016-05-03 20:58:07 ----D---- C:\ProgramData\AVAST Software
2016-05-03 20:25:36 ----SD---- C:\ProgramData\Microsoft
2016-04-29 10:26:11 ----D---- C:\Users\PC\AppData\Roaming\vlc
2016-04-27 13:52:55 ----D---- C:\Users\PC\AppData\Roaming\TS3Client
2016-04-24 21:19:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-21 21:51:46 ----D---- C:\Windows\system32\catroot2
2016-04-21 15:05:04 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-17 19:16:13 ----D---- C:\Users\PC\AppData\Roaming\Skype
2016-04-13 19:28:01 ----D---- C:\Program Files\Opera
2016-04-12 10:06:46 ----D---- C:\Windows\Debug
2016-04-08 10:19:31 ----A---- C:\Windows\system32\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-03 58776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-03 221368]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-10-29 721904]
R1 ASPI32;ASPI32; C:\Windows\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-03 35096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2016-05-03 64272]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-03 815792]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-03 449640]
R1 SASDIFSV;SASDIFSV; \??\D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-03 32792]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-03 91168]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-02-26 8939296]
R3 RivaTuner32;RivaTuner32; \??\D:\Program Files\RivaTuner v2.23\RivaTuner32.sys [2009-02-15 9088]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Alwil Software\Avast5\ng\vbox\VBoxAswDrv.sys []
S3 ae2y4g3d;ae2y4g3d; C:\Windows\system32\drivers\ae2y4g3d.sys []
S3 aswStmXP;Avast StreamFilter Driver; C:\Windows\system32\drivers\aswStmXP.sys [2016-05-03 187208]
S3 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2016-05-03 67216]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\D:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2009-12-09 16608]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-27 2149912]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 Pcouffin;Low level access layer for CD devices; C:\Windows\System32\Drivers\Pcouffin.sys []
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\D:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [2010-11-01 14416]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; D:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-07-23 142648]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2016-05-03 243296]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R2 WsAppService;Wondershare Application Framework Service; C:\Program Files\Wondershare\WAF\2.1.5.0\WsAppService.exe [2015-12-02 382464]
S2 cegushHelpersrv;Cegush Helper; C:\Program Files\Cegush\cegushHelpersrv.exe {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-26 1260320]
S3 ACTION_SVC;Action! service; C:\Program Files\Mirillis\Action!\action_svc.exe [2014-10-25 16064]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-08 269504]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Alwil Software\Avast5\ng\vbox\AvastVBoxSVC.exe []
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-05 146888]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2014-04-12 772296]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

#8 Příspěvek od **Rudy** » 07 kvě 2016 17:27

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

T72 · #9 Příspěvek od **T72** » 08 kvě 2016 18:09

Systém zdá se běhá rychleji, děkuji za pomoc.

#10 Příspěvek od **Rudy** » 08 kvě 2016 18:17

Nemáte zač!

VIRY.CZ

Problém s výkonem

Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem

Re: Problém s výkonem