Firefox problem

Zpráva

#16 Příspěvek od **Rudy** » 18 kvě 2015 21:36

Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Traum · #17 Příspěvek od **Traum** » 18 kvě 2015 21:51

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: Uzivatel
->Temp folder emptied: 10521636 bytes
->Temporary Internet Files folder emptied: 796800 bytes
->FireFox cache emptied: 10130231 bytes
->Flash cache emptied: 57822 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 579754 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36074 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 58470981 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 77,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: Uzivatel
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTM by OldTimer - Version 3.1.21.0 log created on 05182015_224203

Files moved on Reboot...
C:\Users\Uzivatel\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File C:\Windows\temp\etilqs_jTxXn26ftM3W1zSv2siE not found!
File C:\Windows\temp\etilqs_yT8xLebFOHSN6aE68DnD not found!

Registry entries deleted on Reboot...

Rsit log

Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2015-05-18 22:48:33
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 214 GB (86%) free of 250 GB
Total RAM: 3951 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:48:40, on 18. 5. 2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Uzivatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (file missing)
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6859 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k bthsvcs
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
taskeng.exe {71267C15-9A2E-4BE6-A993-4F4F0FE89704}
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
taskeng.exe {E35F0400-8F47-4AAE-97EE-B4F442334109}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\Uzivatel\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\12s65eys.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.188 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.188 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-11 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-11 565304]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-03-17 487424]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-04-23 8204056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07 1018056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Deskjet 5520 series (NET)]
C:\Program Files\HP\HP Deskjet 5520 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-10-28 49208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-16 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WDDMStatus.lnk]
C:\PROGRA~1\WESTER~1\WDSMAR~1\WDDRIV~1\WDDMST~1.EXE [2011-03-09 4236288]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-11 5515496]
""= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-18 22:48:33 ----D---- C:\rsit
2015-05-18 22:42:03 ----D---- C:\_OTM
2015-05-18 22:29:03 ----D---- C:\AdwCleaner
2015-05-18 10:24:22 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-18 10:24:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-05-16 22:26:58 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-16 22:26:58 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-16 22:10:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-16 22:10:02 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-16 22:10:02 ----A---- C:\Windows\system32\schannel.dll
2015-05-16 22:10:02 ----A---- C:\Windows\system32\certcli.dll
2015-05-16 22:09:55 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-16 22:09:55 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-16 22:09:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-16 22:09:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-16 22:09:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-16 22:09:55 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-16 22:09:54 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-16 22:09:54 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-16 22:09:54 ----A---- C:\Windows\system32\iernonce.dll
2015-05-16 22:09:54 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-16 22:09:53 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-16 22:09:53 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-16 22:09:53 ----A---- C:\Windows\system32\urlmon.dll
2015-05-16 22:09:53 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-16 22:09:52 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-16 22:09:52 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-16 22:09:52 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-16 22:09:52 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-16 22:09:52 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-16 22:09:51 ----A---- C:\Windows\system32\iesetup.dll
2015-05-16 22:09:51 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-16 22:09:50 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-16 22:09:50 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-16 22:09:50 ----A---- C:\Windows\system32\vbscript.dll
2015-05-16 22:09:50 ----A---- C:\Windows\system32\iertutil.dll
2015-05-16 22:09:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-16 22:09:49 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-16 22:09:49 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-16 22:09:49 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-16 22:09:49 ----A---- C:\Windows\system32\ieui.dll
2015-05-16 22:09:49 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-16 22:09:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-16 22:09:48 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-16 22:09:48 ----A---- C:\Windows\system32\jscript.dll
2015-05-16 22:09:48 ----A---- C:\Windows\system32\ieframe.dll
2015-05-16 22:09:47 ----A---- C:\Windows\system32\wininet.dll
2015-05-16 22:09:47 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-16 22:09:47 ----A---- C:\Windows\system32\jscript9.dll
2015-05-16 22:09:46 ----A---- C:\Windows\system32\msrating.dll
2015-05-16 22:09:46 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-16 22:09:46 ----A---- C:\Windows\system32\mshtml.dll
2015-05-16 22:06:47 ----A---- C:\Windows\system32\services.exe
2015-05-16 22:06:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-16 22:06:07 ----A---- C:\Windows\system32\win32k.sys
2015-05-16 22:06:07 ----A---- C:\Windows\system32\FntCache.dll
2015-05-16 22:06:07 ----A---- C:\Windows\system32\DWrite.dll
2015-05-16 22:05:47 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-16 22:05:47 ----A---- C:\Windows\system32\jnwmon.dll
2015-05-16 22:05:47 ----A---- C:\Windows\system32\InkEd.dll
2015-05-15 23:16:27 ----D---- C:\Program Files\trend micro
2015-05-09 14:28:32 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-09 14:28:32 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-09 14:28:31 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-09 14:28:31 ----A---- C:\Windows\system32\ntdll.dll
2015-05-09 14:28:30 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-09 14:28:30 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-09 14:28:30 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-09 14:28:30 ----A---- C:\Windows\system32\tdh.dll
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-09 14:28:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\wow64.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\winsrv.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-09 14:28:29 ----A---- C:\Windows\system32\srcore.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\sechost.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\logman.exe
2015-05-09 14:28:29 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\kernel32.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\kerberos.dll
2015-05-09 14:28:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-09 14:28:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-09 14:28:29 ----A---- C:\Windows\system32\conhost.exe
2015-05-09 14:28:29 ----A---- C:\Windows\system32\advapi32.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-09 14:28:28 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-09 14:28:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\wow64win.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\wdigest.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\typeperf.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\sspicli.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\srclient.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\smss.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\schannel(95).dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\secur32.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\rstrui.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\relog.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\lsass.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\diskperf.exe
2015-05-09 14:28:28 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\credssp.dll
2015-05-09 14:28:28 ----A---- C:\Windows\system32\auditpol.exe
2015-05-09 14:28:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-09 14:28:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-09 14:28:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-09 14:28:27 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-09 14:28:27 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-09 14:28:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-09 14:28:27 ----A---- C:\Windows\system32\msobjs.dll
2015-05-09 14:28:27 ----A---- C:\Windows\system32\msaudite.dll
2015-05-09 14:28:27 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-09 14:28:27 ----A---- C:\Windows\system32\adtschema.dll
2015-05-08 17:47:45 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-30 20:35:35 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-04-30 20:35:35 ----A---- C:\Windows\system32\poqexec.exe
2015-04-30 20:35:32 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-04-30 20:35:32 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-04-30 20:35:32 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-04-30 20:35:32 ----A---- C:\Windows\system32\shimeng.dll
2015-04-30 20:35:32 ----A---- C:\Windows\system32\sdbinst.exe
2015-04-30 20:35:32 ----A---- C:\Windows\system32\apphelp.dll
2015-04-30 20:35:32 ----A---- C:\Windows\system32\aelupsvc.dll
2015-04-29 21:37:11 ----A---- C:\Windows\system32\aswBoot.exe
2015-04-29 21:37:05 ----A---- C:\Windows\avastSS.scr
2015-04-24 19:30:37 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-04-24 19:30:37 ----A---- C:\Windows\system32\dwmcore.dll
2015-04-24 19:30:36 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-04-24 19:30:36 ----A---- C:\Windows\system32\dwmapi.dll
2015-04-24 19:30:24 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-04-24 19:30:24 ----A---- C:\Windows\system32\wpdshext.dll

======List of files/folders modified in the last 1 month======

2015-05-18 22:48:30 ----D---- C:\Windows\System32
2015-05-18 22:48:30 ----D---- C:\Windows\inf
2015-05-18 22:48:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-18 22:43:25 ----D---- C:\Windows\Temp
2015-05-18 22:42:31 ----D---- C:\Windows\system32\config
2015-05-18 22:40:18 ----D---- C:\Users\Uzivatel\AppData\Roaming\vlc
2015-05-18 20:53:23 ----SHD---- C:\System Volume Information
2015-05-18 19:35:54 ----D---- C:\Windows\rescache
2015-05-18 16:37:47 ----D---- C:\Windows
2015-05-18 15:29:02 ----D---- C:\Windows\Microsoft.NET
2015-05-18 15:28:56 ----RSD---- C:\Windows\assembly
2015-05-18 10:24:29 ----D---- C:\Users\Uzivatel\AppData\Roaming\Mozilla
2015-05-18 10:24:22 ----RD---- C:\Program Files (x86)
2015-05-17 23:59:56 ----D---- C:\Users\Uzivatel\AppData\Roaming\Adobe
2015-05-17 23:59:39 ----D---- C:\Windows\Prefetch
2015-05-17 23:58:17 ----SHD---- C:\Windows\Installer
2015-05-17 23:58:15 ----D---- C:\Windows\system32\Tasks
2015-05-17 23:57:43 ----D---- C:\Windows\SysWOW64
2015-05-17 23:57:42 ----D---- C:\Program Files (x86)\Adobe
2015-05-17 23:57:35 ----D---- C:\ProgramData\Adobe
2015-05-16 22:42:52 ----D---- C:\Windows\winsxs
2015-05-16 22:41:20 ----D---- C:\Windows\system32\catroot
2015-05-16 22:41:05 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-16 22:41:04 ----D---- C:\Windows\system32\en-US
2015-05-16 22:41:04 ----D---- C:\Program Files\Internet Explorer
2015-05-16 22:41:04 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-16 22:40:23 ----D---- C:\Windows\debug
2015-05-16 22:38:21 ----D---- C:\Program Files\Windows Journal
2015-05-16 22:38:17 ----D---- C:\Windows\system32\MRT
2015-05-16 22:35:56 ----A---- C:\Windows\system32\MRT.exe
2015-05-16 21:59:42 ----D---- C:\Windows\SoftwareDistribution
2015-05-16 21:55:55 ----D---- C:\Windows\system32\wbem
2015-05-16 21:55:13 ----D---- C:\Windows\Tasks
2015-05-16 21:55:13 ----D---- C:\Windows\system32\wfp
2015-05-16 21:55:13 ----D---- C:\Windows\system32\DriverStore
2015-05-16 21:55:13 ----D---- C:\Windows\system32\drivers\etc
2015-05-16 21:55:13 ----D---- C:\Windows\system32\catroot2
2015-05-16 21:55:09 ----SD---- C:\Windows\system32\GWX
2015-05-16 21:55:09 ----D---- C:\Windows\system32\Macromed
2015-05-16 21:55:08 ----D---- C:\Windows\system32\drivers
2015-05-16 21:55:08 ----D---- C:\Windows\system32\CodeIntegrity
2015-05-16 21:54:51 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-05-16 21:54:32 ----D---- C:\Windows\registration
2015-05-16 21:53:00 ----RD---- C:\Program Files
2015-05-12 11:46:36 ----D---- C:\Windows\system32\NDF
2015-05-09 15:17:07 ----D---- C:\Windows\AppPatch
2015-05-08 17:48:15 ----D---- C:\Program Files (x86)\VideoLAN
2015-04-24 19:39:23 ----D---- C:\Windows\system32\AdvancedInstallers
2015-04-24 11:55:45 ----D---- C:\Program Files\CCleaner
2015-04-23 23:04:37 ----D---- C:\Windows\system32\wdi

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-29 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-29 272248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-29 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-29 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-29 442264]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-29 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-29 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-29 137288]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-16 6862848]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-03-16 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2011-03-16 125456]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-03-17 505856]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-06-02 25912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-03-11 14464]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-03-07 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-03-16 203264]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-29 343336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe [2010-03-17 244736]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]
R2 WDFME;WD File Management Engine; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-16 268464]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe []
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-05-14 148080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-03-18 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

#18 Příspěvek od **Rudy** » 19 kvě 2015 17:40

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Traum · #19 Příspěvek od **Traum** » 19 kvě 2015 17:56

bohuzial nie ...

#20 Příspěvek od **Rudy** » 19 kvě 2015 19:03

Zkusíme ještě ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

Pomalu přestávám věřit tomu, že jde o virový problém. Poslední možnost je přímá pdopora Mozilly: https://support.mozilla.org/cs/

Traum · #21 Příspěvek od **Traum** » 19 kvě 2015 20:05

ComboFix 15-05-13.01 - Uzivatel . 05. 2015 20:54:15.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.3951.2764 [GMT 2:00]
Running from: c:\users\Uzivatel\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2015-04-19 to 2015-05-19 )))))))))))))))))))))))))))))))
.
.
2015-05-19 18:58 . 2015-05-19 18:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-18 08:24 . 2015-05-18 08:24 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2015-05-16 20:26 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-16 20:26 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-16 20:10 . 2015-05-05 01:29 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-16 20:10 . 2015-05-05 01:12 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-05-16 20:10 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll
2015-05-16 20:10 . 2015-04-18 02:56 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-05-16 20:06 . 2015-04-13 03:28 328704 ----a-w- c:\windows\system32\services.exe
2015-05-16 20:06 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
2015-05-16 20:06 . 2015-04-20 03:17 1179136 ----a-w- c:\windows\system32\FntCache.dll
2015-05-16 20:06 . 2015-04-20 02:56 1250816 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-05-16 20:06 . 2015-04-20 02:11 3204608 ----a-w- c:\windows\system32\win32k.sys
2015-05-15 21:16 . 2015-05-18 20:48 -------- d-----w- c:\program files\trend micro
2015-05-08 15:47 . 2015-05-16 20:14 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-05-08 15:47 . 2015-05-16 20:14 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-04-30 18:35 . 2015-02-18 07:06 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2015-04-30 18:35 . 2015-02-18 07:04 142336 ----a-w- c:\windows\system32\poqexec.exe
2015-04-30 18:35 . 2015-03-04 04:41 6656 ----a-w- c:\windows\system32\shimeng.dll
2015-04-30 18:35 . 2015-03-04 04:41 72192 ----a-w- c:\windows\system32\aelupsvc.dll
2015-04-30 18:35 . 2015-03-04 04:41 342016 ----a-w- c:\windows\system32\apphelp.dll
2015-04-30 18:35 . 2015-03-04 04:41 23552 ----a-w- c:\windows\system32\sdbinst.exe
2015-04-30 18:35 . 2015-03-04 04:11 5120 ----a-w- c:\windows\SysWow64\shimeng.dll
2015-04-30 18:35 . 2015-03-04 04:10 295936 ----a-w- c:\windows\SysWow64\apphelp.dll
2015-04-30 18:35 . 2015-03-04 04:10 20992 ----a-w- c:\windows\SysWow64\sdbinst.exe
2015-04-29 19:37 . 2015-04-29 19:37 364472 ----a-w- c:\windows\system32\aswBoot.exe
2015-04-29 19:37 . 2015-04-29 19:37 43112 ----a-w- c:\windows\avastSS.scr
2015-04-24 17:30 . 2015-03-14 03:21 1632768 ----a-w- c:\windows\system32\dwmcore.dll
2015-04-24 17:30 . 2015-03-14 03:04 1372160 ----a-w- c:\windows\SysWow64\dwmcore.dll
2015-04-24 17:30 . 2015-03-14 03:21 82944 ----a-w- c:\windows\system32\dwmapi.dll
2015-04-24 17:30 . 2015-03-14 03:04 67584 ----a-w- c:\windows\SysWow64\dwmapi.dll
2015-04-24 17:30 . 2015-01-29 03:19 2543104 ----a-w- c:\windows\system32\wpdshext.dll
2015-04-24 17:30 . 2015-01-29 03:02 2311168 ----a-w- c:\windows\SysWow64\wpdshext.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-16 20:35 . 2015-03-17 14:20 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-05 01:29 . 2015-05-16 20:10 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-05 01:12 . 2015-05-16 20:10 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-04-29 19:37 . 2015-03-18 17:41 272248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-04-29 19:37 . 2015-03-18 17:41 137288 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-04-29 19:37 . 2015-03-18 17:41 89944 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-04-29 19:37 . 2015-03-18 17:41 65736 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-04-29 19:37 . 2015-03-18 17:41 442264 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-04-29 19:37 . 2015-03-18 17:41 29168 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-04-29 19:37 . 2015-03-18 17:41 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-04-29 19:36 . 2015-03-18 17:41 1047320 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-04-27 19:23 . 2015-05-09 12:28 113664 ----a-w- c:\windows\system32\sechost.dll
2015-04-27 19:23 . 2015-05-09 12:28 341504 ----a-w- c:\windows\system32\schannel(95).dll
2015-04-27 19:05 . 2015-05-09 12:28 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-04-27 19:04 . 2015-05-09 12:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-03-25 03:24 . 2015-04-13 15:49 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:24 . 2015-04-13 15:49 37376 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:24 . 2015-04-13 15:49 35328 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:24 . 2015-04-13 15:49 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:24 . 2015-04-13 15:49 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:24 . 2015-04-13 15:49 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:24 . 2015-04-13 15:49 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:24 . 2015-04-13 15:49 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:23 . 2015-04-13 15:49 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:23 . 2015-04-13 15:49 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:23 . 2015-04-13 15:49 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-25 03:00 . 2015-04-13 15:49 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-03-25 03:00 . 2015-04-13 15:49 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-03-25 03:00 . 2015-04-13 15:49 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-03-25 03:00 . 2015-04-13 15:49 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-03-25 03:00 . 2015-04-13 15:49 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-03-23 03:25 . 2015-04-08 09:43 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:25 . 2015-04-08 09:43 769536 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:24 . 2015-04-08 09:43 419840 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:24 . 2015-04-08 09:43 957952 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:24 . 2015-04-08 09:43 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:24 . 2015-04-08 09:43 192000 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 03:24 . 2015-04-08 09:43 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:17 . 2015-04-08 09:43 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-03-17 17:21 . 2015-03-17 17:21 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2015-03-17 17:21 . 2015-03-17 17:21 942592 ----a-w- c:\windows\system32\jsIntl.dll
2015-03-17 17:21 . 2015-03-17 17:21 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2015-03-17 17:21 . 2015-03-17 17:21 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-03-17 17:21 . 2015-03-17 17:21 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2015-03-17 17:21 . 2015-03-17 17:21 81408 ----a-w- c:\windows\system32\icardie.dll
2015-03-17 17:21 . 2015-03-17 17:21 77312 ----a-w- c:\windows\system32\tdc.ocx
2015-03-17 17:21 . 2015-03-17 17:21 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2015-03-17 17:21 . 2015-03-17 17:21 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-03-17 17:21 . 2015-03-17 17:21 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2015-03-17 17:21 . 2015-03-17 17:21 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2015-03-17 17:21 . 2015-03-17 17:21 62464 ----a-w- c:\windows\system32\pngfilt.dll
2015-03-17 17:21 . 2015-03-17 17:21 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2015-03-17 17:21 . 2015-03-17 17:21 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2015-03-17 17:21 . 2015-03-17 17:21 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2015-03-17 17:21 . 2015-03-17 17:21 48640 ----a-w- c:\windows\system32\mshtmler.dll
2015-03-17 17:21 . 2015-03-17 17:21 48128 ----a-w- c:\windows\system32\imgutil.dll
2015-03-17 17:21 . 2015-03-17 17:21 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2015-03-17 17:21 . 2015-03-17 17:21 30208 ----a-w- c:\windows\system32\licmgr10.dll
2015-03-17 17:21 . 2015-03-17 17:21 247808 ----a-w- c:\windows\system32\msls31.dll
2015-03-17 17:21 . 2015-03-17 17:21 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2015-03-17 17:21 . 2015-03-17 17:21 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-03-17 17:21 . 2015-03-17 17:21 235520 ----a-w- c:\windows\system32\url.dll
2015-03-17 17:21 . 2015-03-17 17:21 235008 ----a-w- c:\windows\system32\elshyph.dll
2015-03-17 17:21 . 2015-03-17 17:21 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2015-03-17 17:21 . 2015-03-17 17:21 167424 ----a-w- c:\windows\system32\iexpress.exe
2015-03-17 17:21 . 2015-03-17 17:21 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2015-03-17 17:21 . 2015-03-17 17:21 147968 ----a-w- c:\windows\system32\occache.dll
2015-03-17 17:21 . 2015-03-17 17:21 143872 ----a-w- c:\windows\system32\wextract.exe
2015-03-17 17:21 . 2015-03-17 17:21 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2015-03-17 17:21 . 2015-03-17 17:21 13824 ----a-w- c:\windows\system32\mshta.exe
2015-03-17 17:21 . 2015-03-17 17:21 135680 ----a-w- c:\windows\system32\iepeers.dll
2015-03-17 17:21 . 2015-03-17 17:21 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2015-03-17 17:21 . 2015-03-17 17:21 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2015-03-17 17:21 . 2015-03-17 17:21 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2015-03-17 17:21 . 2015-03-17 17:21 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2015-03-17 17:21 . 2015-03-17 17:21 105984 ----a-w- c:\windows\system32\iesysprep.dll
2015-03-17 17:21 . 2015-03-17 17:21 101376 ----a-w- c:\windows\system32\inseng.dll
2015-03-17 17:14 . 2015-03-17 17:14 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2015-03-17 17:14 . 2015-03-17 17:14 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2015-03-17 17:14 . 2015-03-17 17:14 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2015-03-17 17:14 . 2015-03-17 17:14 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2015-03-17 17:14 . 2015-03-17 17:14 363008 ----a-w- c:\windows\system32\dxgi.dll
2015-03-17 17:14 . 2015-03-17 17:14 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2015-03-17 17:14 . 2015-03-17 17:14 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-03-17 17:14 . 2015-03-17 17:14 296960 ----a-w- c:\windows\system32\d3d10core.dll
2015-03-17 17:14 . 2015-03-17 17:14 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2015-03-17 17:14 . 2015-03-17 17:14 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-04-23 8204056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-05-11 5515496]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [x]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [x]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2015-05-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-08 20:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-04-29 19:37 722400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-03-17 487424]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.sk/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 195.160.182.1 62.169.168.82
FF - ProfilePath - c:\users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\12s65eys.default\
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-05-19 21:00:36
ComboFix-quarantined-files.txt 2015-05-19 19:00
.
Pre-Run: 223 943 913 472 bytes free
Post-Run: 223 778 148 352 bytes free
.
- - End Of File - - 1E9739A35D4550EC7208BFFD77FFD23F
A36C5E4F47E84449FF07ED3517B43A31

#22 Příspěvek od **Rudy** » 19 kvě 2015 20:25

Log je OK, virem to způsobeno není CF přejmenujte na uninstall a spusťte. CF se spustí a odinstaluje.

Traum · #23 Příspěvek od **Traum** » 19 kvě 2015 21:07

Tak zatial velmi pekne dakujem za kontrolu

... ak zistim kde soudruzi z NDR udelali chybu dam vediet ... s pozdravom

#24 Příspěvek od **Rudy** » 19 kvě 2015 21:38

Zatím není zač!

Traum · #25 Příspěvek od **Traum** » 20 kvě 2015 16:52

no ... problem vyrieseny stacilo vypnut hardwarovou akceleraciu ( kto mal vediet ze treba aj restartnut FF )

... ale zaujmave je ze ked som v minulosti pouzival 37 tak som ten problem nezaznamenal a teraz ked som ju na skusku nainstaloval tak jav sa objavil aj v nej ... ale nebol som asi jediny s podobnym problemom http://forum.mozilla.cz/viewtopic.php?f=3&t=13704 na vine je ten modry ...

#26 Příspěvek od **Rudy** » 20 kvě 2015 16:58

Ani mne to nenapadlo. Vypnutí se používá tehdy, pokud se sekají internetová videa v prohlížeči. Nový poznatek, děkuji.

VIRY.CZ

Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem

Re: Firefox problem