mám trochu větší problém s odinstalováním viru "Cinema". ZDe je můj log. (Snad jsem zatím nic neskazil
)Logfile of random's system information tool 1.10 (written by random/random)
Run by Filip at 2015-09-15 20:13:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (36%) free of 114 GB
Total RAM: 8120 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:13:40, on 15.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-10.exe
C:\Users\Filip\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
E:\Program Files\AVAST Software\Avast\AvastUI.exe
E:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
E:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
E:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "E:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "E:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GalaxyClient] E:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
O4 - HKCU\..\Run: [BingSvc] C:\Users\Filip\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Application Hosting service (Application Hosting) - Unknown owner - C:\ProgramData\Application Hosting\Application Hosting.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - E:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - E:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - E:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - E:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10007 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"E:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\ProgramData\Application Hosting\Application Hosting.exe"
taskeng.exe {FDE2A607-8904-448F-A91D-B96C51180596}
taskeng.exe {523BA606-5E66-403D-B188-18687FC303C1}
C:\Windows\System32\svchost.exe -k utcsvc
"E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe"
"C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-6.exe" /rawdata=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
"C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-1-6.exe" /rawdata=r8YsdP7fGAzaNpc6jovK+8wBr5UNpvsld9ZxYSOpgG0KZLyYIDfa6ROJHyXYoXB3nAysevcYRLHNvopE4gGcvrItf2bsJCpWoF69sKwXPEs9bYIuMJb+zqZn5TEyMLZCzjM3DZ1SYNKAM1UalnhK9GLGllJ17UucuvJMLsJiOCAWZHr8DBhA19NXL+/8mHtFEOYchOkHI1DSzw4eZAkiLIbQx5Zxjx1gcdG8Fdjrt/a+k2+f4eMUUeLc7BXMYsY/dGa4c8jFHZ1sIMGLLUv8zEX0QltY8Cc2eJlMosncihJzK5/4Pcjq3F8/TH0z3DB+UWhd4We++dYEhm6ZVsQ6GqpXHEfRHyOXojZ7KUPYsXhkfk7cAk1bUKTPv9pkheAyZ5CLShMpD2csLmx0IT0qRu0nC/radpIC6fe5l8tl2G6JvnPnUY/gmr/XLr33Z7BnJ5qumIARghqGIpQ+tGYBm0HFn6RGwFa0aPVC0S3yROKr+TL4MLQSVBqrpWyDjYfycuHvzLOfiFYMekhrFE4xsV0dRqIdVnJSiU2i8ci3Bl/UkXgz1x6gRih7p4osPHFQB+Q3CgxFeQvXzOBgM7D3PjTXmoHtKGR3BQ0eJN4/5JvnQHXPBaUjKnvMP6KZlczlrNpx84u1Rwh5hzv0cfEvb86lxNuAb6D5Epc4dB00m4i0mvMpeg/CGMDlypYGhiTdOhYfUlL2nqLQeBZP3N49tCBHMbn955xApWA8qSrKvtiwYUBkwTL1VmRfgWteviyeyn+YVP5HBLOHqe1ksYwHYw7Sk+JaZfkMzBkc/uZqi/UYk8b9MQXpaANuQTYngHflKXabWWghiVSHQBwEfe87UXR7emkfZaLAyZ4Ol1n34ymaOvMjKYNO8OD75SAFjeV1j0OQZjL/aiCIcrH09kTBeR5CdABX716wpYxxcoRqj+jduA1keYofCzgDl8Xs6rb6adp+31EWOXaf9T16WWLD8+bpDU1fjs6dpExi4qPZLYGtHQnb/54oPzPAEnnoxlMaoRBEpA2EVzXlgeYwLsTHJUSCee68i0fr2W5m6Ba++KHYAOeS2NkaKX4wOELhWz3EmOUsKkxMAX8UCrS8w/5w6S6pHM1DKP+zLYrQwMnLrMDRQlIFi2WQX6OaCuh2/5AvzeOOyQ0irkhkgr4QayuT5+AejvvbsUD4d6iXbu7BRBQ1wUYYfiPIAHCdreDAQqxM5eLbko8cYaY73UGxYJf+zKsBojX3nmWp+FDTYt82qszuqpAENBPPYUXuZVrJm6NuQ0zdrrjHmEe4AnvDfQH7VQAdNJ66G28SQU8zja43vGTwA2xa5yEqNCcGUd0Y96Jj8LTlCgMHyurEJ3tjOwVoRQ==
"C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-10.exe" /rawdata=RoaTPfitp7ViO+mk4H6qlV7hu9rHbp5pZmcMqDSRPDwxbx8cCk9JKhFAMcv8sb5LKx0YzSggqzMmum3jeukjOhegXyDuha38Eqg6lehplx2pcK4hAq8QgbSaSpAmP2u0PaphQLHgfwLy5YyAAxCwsua0E1TR+hi20qIG9asOdttmdbLumsGY1BXOw/b8B2JjKfmGBW6pLr+9SXpm3wNviS2KUkdFgB/W+mzgIuetX64UB+0i270Nvw0hvfrzqeXQ77+tOMHrPgrr8H46pDy0s1Hgzslb8pfRu2vqeEVghkKXJ8bWsgaHbNWOTVlOckwQSg/6HiP1lKZyusu8CmPEF8eNbtmfHSokYZjWFSsxaW4SfHYDPWbBI5Z4GvV8H5VseFQd1tRVpH2JGJtoT1NZQP8v/zZdGgPjuRC9GvN5ZUFjUJ5tATIwx/RA5T0H5ZwLM1a826SWd3UBBFOWXsr2cDwA5hlJjuklDKDInfZI4X43ODDPbyHNPhUa4nd6wEhWfk/tcg8ZzzYm8OwjtrV59uzZyamQSmIkXscM4LybXm/sZjJYmDXyGBg0r7C73AqxhXnzwrfWaHG1Kuta9eVJ+ESbhcFxOrvn/7+WyXjq/pybdWkxmki/yNBpeYiIAXW957/6XH4qsd9dqEUl2v0qF1SCv4ZChrFSD3dWeo6LAN/HMeaDhXUwph2iLqP9u8t6n4Hnp+7eyuPj9vCPviJVi96UGkDmXiNxkmjmvksbbfB9jOeMnTNEJ7BZ7/QffgZm+vDJC3oQMGIFoIDxuo8yuhkX+IQHgXYSHjHZp9BkIOfEpR3SAqUrqwd5Om3QlqjUHEpaStgPn+APpiegY6dP8w==
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe"
"C:\Users\Filip\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"E:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"E:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
ngservice.exe pipeserver
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\GWX\GWX.exe"
"E:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"E:\Program Files (x86)\GalaxyClient\GalaxyClient.exe" /runWithoutUpdating
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"E:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe" --type=gpu-process --channel="4144.0.558602674\923446334" --no-sandbox --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=disable --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x679a --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=disable /prefetch:822062411
"E:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe" --type=renderer --no-sandbox --disable-direct-write --enable-deferred-image-decoding --lang=en-US --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=disable --device-scale-factor=1 --font-cache-shared-mem-suffix=4144 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4144.1.1153027205\338901809" /prefetch:673131151
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="3164.0.63714908\990799733" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3164 "\\.\pipe\gecko-crash-server-pipe.3164" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --proxy-stub-channel=Flash6088.5ABCD388.23636 --host-broker-channel=Flash6088.5ABCD388.19935 --host-pid=6088 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --channel=6124.002FF3C4.2116510779 --proxy-stub-channel=Flash6088.5ABCD388.23636 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" --host-npapi-version=28 --type=renderer
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Filip\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-1-6.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-1-6.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-1-7.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-1-7.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-10_user.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-10.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-3.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-3.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-4.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-4.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-5.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-5.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-5_user.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-5.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-6.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-6.exe /rawdata=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
C:\Windows\tasks\641bfb50-07ae-4738-8781-db23fe98a7a4-7.job - C:\Program Files (x86)\CinemaP-1.9cV15.09\641bfb50-07ae-4738-8781-db23fe98a7a4-7.exe /rawdata=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
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\nIrEUZSHJVa.job - C:\Users\Filip\AppData\Roaming\nIrEUZSHJVa.exe --c=WA9Im/padA5hJvpFeRexiKL/kGJxYKNjP+OMH8GGHvGdEqrHiFojTFhjXoFtPmtpWezKxU1dRoyicJ1WJ7uPS7+5DIGjY9W/ep86KaY0HWVq3x3qA7ojRGqVYMDTZCEObFTIbLIieyO9rFKOMki4NDZi8YZvG3oQAfgSi0ow2dUrtd9UXfxkQxwlg3TyJHgHXF6Ls5QIo9jk5AXLbHs8IAfqAp6N6XYaYQXSrlI8OIdt62rhcUgBw+wlxc8OWsLQaiqUKy0JDXgod74v9Kd3F7p/FvgQLiMT/CdAt6Da8GQ+IEV61z5SwlkND+kNXcmZuyFo5Hsvv2yFz2nT/WWoWg==
=========Mozilla firefox=========
ProfilePath - C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\hn2jyqbh.default
prefs.js - "browser.search.useDBForOrder" - true
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@live.heroesandgenerals.com/npretox]
"Description"=Heroes & Generals downloader
"Path"=E:\Program Files (x86)\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=E:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\hn2jyqbh.default\extensions\
AVJYFVOD75109374@HCDE39471360.com
C:\Users\Filip\AppData\Roaming\Mozilla\Firefox\Profiles\hn2jyqbh.default\searchplugins\
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 551848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - E:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-21 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 212904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-21 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-12-06 7506136]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=E:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"GalaxyClient"=E:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [2015-09-09 7693880]
"BingSvc"=C:\Users\Filip\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-04-07 144008]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"AvastUI.exe"=E:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-04-21 5512912]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-09-15 20:13:37 ----D---- C:\rsit
2015-09-15 20:13:37 ----D---- C:\Program Files\trend micro
2015-09-15 19:39:06 ----A---- C:\Windows\ntbtlog.txt
2015-09-15 19:09:47 ----A---- C:\autoexec.bat
2015-09-15 18:36:45 ----D---- C:\Windows\rescache
2015-09-15 17:31:29 ----D---- C:\Program Files (x86)\3964cf05-419e-489b-9c0b-fc2b48c1f12e
2015-09-15 17:31:25 ----D---- C:\Program Files (x86)\globalUpdate
2015-09-15 17:31:22 ----D---- C:\Program Files (x86)\CinemaP-1.9cV15.09
2015-09-15 17:30:35 ----D---- C:\Users\Filip\AppData\Roaming\Opera Software
2015-09-15 17:30:05 ----D---- C:\Program Files (x86)\Opera
2015-09-15 17:29:52 ----D---- C:\ProgramData\Application Hosting
2015-09-10 16:10:01 ----A---- C:\Windows\system32\FNTCACHE.DAT
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-09 14:35:35 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-09 14:35:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 14:35:35 ----A---- C:\Windows\system32\iernonce.dll
2015-09-09 14:35:35 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-09 14:35:35 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-09 14:35:35 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-09 14:35:34 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-09 14:35:34 ----A---- C:\Windows\system32\urlmon.dll
2015-09-09 14:35:34 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 14:35:34 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-09 14:35:34 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 14:35:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-09 14:35:34 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-09 14:35:33 ----A---- C:\Windows\system32\iesetup.dll
2015-09-09 14:35:33 ----A---- C:\Windows\system32\iertutil.dll
2015-09-09 14:35:33 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-09 14:35:32 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-09 14:35:32 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-09 14:35:32 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-09 14:35:32 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-09 14:35:32 ----A---- C:\Windows\system32\vbscript.dll
2015-09-09 14:35:32 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-09 14:35:32 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-09 14:35:32 ----A---- C:\Windows\system32\ieui.dll
2015-09-09 14:35:32 ----A---- C:\Windows\system32\ieframe.dll
2015-09-09 14:35:32 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\wininet.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\jscript9.dll
2015-09-09 14:35:31 ----A---- C:\Windows\system32\jscript.dll
2015-09-09 14:35:30 ----A---- C:\Windows\system32\msrating.dll
2015-09-09 14:35:30 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-09 14:35:30 ----A---- C:\Windows\system32\mshtml.dll
2015-09-09 14:35:00 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-09-09 14:35:00 ----A---- C:\Windows\system32\jnwmon.dll
2015-09-09 14:35:00 ----A---- C:\Windows\system32\InkEd.dll
2015-09-09 14:34:58 ----A---- C:\Windows\system32\schedsvc.dll
2015-09-09 14:29:51 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-09 14:29:51 ----A---- C:\Windows\system32\tzres.dll
2015-09-09 14:29:50 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-09 14:29:50 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-09 14:29:50 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-09 14:29:50 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-09 14:24:53 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-09 14:24:53 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-09 14:24:52 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\wow64.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\winsrv.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\wdigest.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\tdh.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\sspicli.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\srcore.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\smss.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\schannel.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\rstrui.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\ntdll.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\lsass.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\kernel32.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\kerberos.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-09 14:24:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-09 14:24:52 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-09 14:24:52 ----A---- C:\Windows\system32\conhost.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\auditpol.exe
2015-09-09 14:24:52 ----A---- C:\Windows\system32\advapi32.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 14:24:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-09 14:24:51 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\wow64win.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\srclient.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\secur32.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\msobjs.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\msaudite.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-09 14:24:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-09 14:24:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-09 14:24:51 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\credssp.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-09 14:24:51 ----A---- C:\Windows\system32\adtschema.dll
2015-09-09 14:24:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-09 14:24:19 ----A---- C:\Windows\system32\consent.exe
2015-09-09 14:24:19 ----A---- C:\Windows\system32\authui.dll
2015-09-09 14:24:19 ----A---- C:\Windows\system32\appinfo.dll
2015-09-09 14:24:17 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-09 14:24:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-09 14:24:17 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-09 14:24:17 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-09 14:24:17 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-09 14:24:17 ----A---- C:\Windows\system32\msxml6.dll
2015-09-09 14:24:17 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-09 14:24:17 ----A---- C:\Windows\system32\msxml3.dll
2015-09-09 14:24:11 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-09-09 14:24:11 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-09-09 14:24:11 ----A---- C:\Windows\system32\drivers\appid.sys
2015-09-09 14:24:11 ----A---- C:\Windows\system32\appidsvc.dll
2015-09-09 14:24:11 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 14:24:11 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 14:24:11 ----A---- C:\Windows\system32\appidapi.dll
2015-09-09 14:24:00 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-09 14:24:00 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-09 14:24:00 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-09 14:24:00 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-09 14:24:00 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-09 14:24:00 ----A---- C:\Windows\system32\win32k.sys
2015-09-09 14:24:00 ----A---- C:\Windows\system32\lpk.dll
2015-09-09 14:24:00 ----A---- C:\Windows\system32\fontsub.dll
2015-09-09 14:24:00 ----A---- C:\Windows\system32\dciman32.dll
2015-09-09 14:24:00 ----A---- C:\Windows\system32\atmlib.dll
2015-09-09 14:24:00 ----A---- C:\Windows\system32\atmfd.dll
2015-09-09 14:23:57 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-09 14:23:57 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-09 14:23:57 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-09 14:23:57 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-09 14:23:57 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wups2.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wups.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wudriver.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wucltux.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wuaueng.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wuapp.exe
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wuapi.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 14:23:57 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-05 09:46:45 ----ASH---- C:\pagefile.sys
2015-08-29 18:55:27 ----D---- C:\Users\Filip\AppData\Roaming\InstallShield
2015-08-28 18:27:49 ----D---- C:\Program Files (x86)\GUM76D9.tmp
2015-08-27 21:43:03 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-27 21:18:35 ----D---- C:\Windows\E10DB5DAE57640EAA7FC1CB2A7B283A6.TMP
2015-08-25 12:58:01 ----D---- C:\Users\Filip\AppData\Roaming\OBS
2015-08-25 12:57:57 ----D---- C:\Program Files\OBS
2015-08-25 12:57:56 ----D---- C:\Program Files (x86)\OBS
2015-08-24 23:05:52 ----D---- C:\ProgramData\VsTelemetry
2015-08-23 21:11:25 ----D---- C:\Program Files (x86)\GOGcom
======List of files/folders modified in the last 1 month======
2015-09-15 20:13:38 ----D---- C:\Windows\Temp
2015-09-15 20:13:37 ----RD---- C:\Program Files
2015-09-15 19:59:48 ----D---- C:\Windows\System32
2015-09-15 19:59:48 ----D---- C:\Windows\inf
2015-09-15 19:59:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-15 19:39:56 ----SD---- C:\Users\Filip\AppData\Roaming\Microsoft
2015-09-15 19:39:56 ----D---- C:\Users\Filip\AppData\Roaming\Adobe
2015-09-15 19:39:06 ----D---- C:\Windows
2015-09-15 19:38:31 ----D---- C:\Windows\system32\config
2015-09-15 19:20:46 ----D---- C:\Windows\system32\Tasks
2015-09-15 19:20:46 ----D---- C:\Windows\system32\drivers
2015-09-15 18:49:07 ----SHD---- C:\Windows\Installer
2015-09-15 18:49:07 ----RD---- C:\Program Files (x86)
2015-09-15 18:48:59 ----SHD---- C:\System Volume Information
2015-09-15 17:34:49 ----D---- C:\Windows\Tasks
2015-09-15 17:31:48 ----D---- C:\Program Files (x86)\Common Files
2015-09-15 17:31:33 ----D---- C:\Program Files (x86)\AMD
2015-09-15 17:31:23 ----D---- C:\Windows\SysWOW64
2015-09-15 17:31:04 ----SD---- C:\ProgramData\Microsoft
2015-09-15 17:29:52 ----HD---- C:\ProgramData
2015-09-13 21:27:18 ----D---- C:\Users\Filip\AppData\Roaming\DAEMON Tools Lite
2015-09-12 14:26:29 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2015-09-12 11:05:59 ----D---- C:\Windows\Microsoft.NET
2015-09-12 11:03:34 ----RSD---- C:\Windows\assembly
2015-09-10 13:26:42 ----D---- C:\Windows\Logs
2015-09-10 13:26:42 ----D---- C:\Windows\debug
2015-09-09 18:33:55 ----D---- C:\Windows\winsxs
2015-09-09 18:33:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-09 18:33:23 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-09 18:33:23 ----D---- C:\Windows\system32\en-US
2015-09-09 18:33:23 ----D---- C:\Windows\system32\cs-CZ
2015-09-09 18:33:23 ----D---- C:\Windows\PolicyDefinitions
2015-09-09 18:33:23 ----D---- C:\Windows\ehome
2015-09-09 18:33:23 ----D---- C:\Program Files\Windows Journal
2015-09-09 18:33:23 ----D---- C:\Program Files\Internet Explorer
2015-09-09 18:33:23 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-09 18:33:22 ----D---- C:\Windows\system32\Boot
2015-09-09 18:33:22 ----D---- C:\Windows\AppPatch
2015-09-09 17:10:23 ----D---- C:\Windows\system32\MRT
2015-09-09 14:22:50 ----D---- C:\Windows\system32\catroot2
2015-09-06 18:26:24 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2015-09-04 21:30:13 ----D---- C:\ProgramData\Origin
2015-08-29 19:00:10 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-28 08:33:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-27 22:08:43 ----D---- C:\Users\Filip\AppData\Roaming\eve Updater
2015-08-26 18:37:02 ----A---- C:\Windows\system32\MRT.exe
2015-08-26 18:04:23 ----D---- C:\Windows\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-21 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-21 271200]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 {4291b504-d331-41fb-90ff-daaf14dd7f49}Gw64;{4291b504-d331-41fb-90ff-daaf14dd7f49}Gw64; C:\Windows\system32\drivers\{4291b504-d331-41fb-90ff-daaf14dd7f49}Gw64.sys [2015-01-22 48784]
R1 {44219168-7340-43df-bbc2-89f0b26c112f}Gw64;{44219168-7340-43df-bbc2-89f0b26c112f}Gw64; C:\Windows\system32\drivers\{44219168-7340-43df-bbc2-89f0b26c112f}Gw64.sys [2015-01-18 48784]
R1 {4f8c067a-e55a-4229-81e6-7be1491578a2}Gw64;{4f8c067a-e55a-4229-81e6-7be1491578a2}Gw64; C:\Windows\system32\drivers\{4f8c067a-e55a-4229-81e6-7be1491578a2}Gw64.sys [2015-01-30 48784]
R1 {549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64;{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64; C:\Windows\system32\drivers\{549b1cd8-769f-468a-ad93-f57bfc8402c2}Gw64.sys [2015-01-12 48784]
R1 {8dc666b5-f370-4f22-8558-6a137d48eead}Gw64;{8dc666b5-f370-4f22-8558-6a137d48eead}Gw64; C:\Windows\system32\drivers\{8dc666b5-f370-4f22-8558-6a137d48eead}Gw64.sys [2015-01-27 48784]
R1 {9a6c78f1-af36-4e4d-ba83-e044b750db48}Gw64;{9a6c78f1-af36-4e4d-ba83-e044b750db48}Gw64; C:\Windows\system32\drivers\{9a6c78f1-af36-4e4d-ba83-e044b750db48}Gw64.sys [2015-01-24 48784]
R1 {cad8ac99-1831-4a75-b758-e4235c95af75}Gw64;{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64; C:\Windows\system32\drivers\{cad8ac99-1831-4a75-b758-e4235c95af75}Gw64.sys [2015-01-16 48784]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-21 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-21 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-21 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-01-13 283064]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-21 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-21 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-21 136752]
R2 rzpmgrk;rzpmgrk; \??\C:\Windows\system32\drivers\rzpmgrk.sys [2015-02-05 37184]
R2 rzpnk;rzpnk; \??\C:\Windows\system32\drivers\rzpnk.sys [2014-12-10 129600]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\E:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-04-21 273824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-12-10 3771352]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-11-26 888536]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver; C:\Windows\system32\DRIVERS\MijXfilt.sys [2012-03-25 115272]
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 X6va020;X6va020; \??\C:\Windows\SysWOW64\Drivers\X6va020 []
S3 X6va027;X6va027; \??\C:\Windows\SysWOW64\Drivers\X6va027 []
S3 X6va028;X6va028; \??\C:\Windows\SysWOW64\Drivers\X6va028 []
S3 X6va029;X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 []
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2011-12-07 74960]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 Application Hosting;Application Hosting service; C:\ProgramData\Application Hosting\Application Hosting.exe [2015-09-10 49152]
R2 avast! Antivirus;Avast Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-21 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2014-08-22 9216]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-02-05 187072]
R3 AvastVBoxSvc;AvastVBox COM Service; E:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-21 4030800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; E:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-21 235744]
S3 GalaxyClientService;GalaxyClientService; E:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-09-09 1738808]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-09-09 6943800]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-09-15 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-08-15 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-27 149160]
S3 Origin Client Service;Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2015-09-04 2057736]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-09-10 838848]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-10-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
nevidím žádne reklamy.
, zde je log 
. Omluvám se za další obťežování s dalším virem 
Přispějete na provoz fóra?