Dobrý den,
zpomalený ntb. Nejdou spustit některé exe soubory kancelářských pracovních aplikací.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Katka at 2018-02-02 20:44:05
Microsoft Windows 8.1
System drive C: has 374 GB (81%) free of 463 GB
Total RAM: 3968 MB (31% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:44:08, on 2. 2. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\CPP\CppKalkulacky\CppCalcServer.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files\trend micro\Katka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: PDF Architect 3 Helper - {06E08260-0695-4EC1-A74B-1310D8899D93} - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SP_WSPCHK] "C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe"
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: CPP - CalcServer.lnk = C:\CPP\CppKalkulacky\CppCalcServer.exe
O4 - Startup: Kooperativa - PDF Server.lnk = C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Hotkey Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem11.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect 3 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\ws.exe
O23 - Service: PDF Architect 3 CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe
O23 - Service: PDF Architect 3 Creator - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15666 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\system32\WLANExt.exe 337819432224
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskhostex.exe
C:\windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
ClassicStartMenu.exe -startup
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe"
dashost.exe {4a30af2e-ff2a-4656-85d2af5188dea223}
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe" -sSQL_SMSGALAXY
"C:\Program Files (x86)\PDF Architect 3\creator-ws.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
igfxHK.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\RtsCM64.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
AvastUI.exe /nogui
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\CPP\CppKalkulacky\CppCalcServer.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe"
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
C:\windows\splwow64.exe 8192
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=2248
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=gpu-process --field-trial-handle=1584,7208136166661598580,8894288754569876178,131072 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=4312 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4432 --gpu-driver-date=4-8-2016 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=4312 --service-request-channel-token=8C134788684D3C20A57F518F03E3B547 --mojo-platform-channel-handle=1600 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1584,7208136166661598580,8894288754569876178,131072 --service-pipe-token=B70E2EE93CA7255D7A0A4E470A4FD567 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=4312 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=B70E2EE93CA7255D7A0A4E470A4FD567 --renderer-client-id=4 --mojo-platform-channel-handle=2504 /prefetch:1
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1584,7208136166661598580,8894288754569876178,131072 --service-pipe-token=44A2CCFE22AD406745E0A800FF04C23A --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=4312 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=44A2CCFE22AD406745E0A800FF04C23A --renderer-client-id=7 --mojo-platform-channel-handle=4856 /prefetch:1
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe25_ Global\UsGthrCtrlFltPipeMssGthrPipe25 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
taskeng.exe {5CCA4533-F6CD-450B-BFFB-E7362622B72D}
"C:\windows\system32\SearchFilterHost.exe" 0 556 560 568 65536 564
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Katka\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForKatka.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForKatka (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21 440712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93}]
PDF Architect 3 Helper - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-09-17 38112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-01-26 7659224]
"RtsCM"=C:\windows\RTSCM64.EXE [2014-03-05 160472]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-12-08 71168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-08 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-08-03 430120]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2014-08-19 330176]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"SP_WSPCHK"=C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe [2013-12-02 122208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Users\Katka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CPP - CalcServer.lnk - C:\CPP\CppKalkulacky\CppCalcServer.exe
Kooperativa - PDF Server.lnk - C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-02-01 19:48:26 ----D---- C:\ProgramData\SWCUTemp
2018-02-01 09:40:19 ----HD---- C:\$AV_ASW
2018-01-24 09:21:37 ----A---- C:\windows\system32\aspnet_counters.dll
2018-01-24 09:21:34 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2018-01-24 09:21:32 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2018-01-24 09:21:29 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2018-01-11 13:47:45 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-01-09 12:18:16 ----A---- C:\windows\system32\drivers\afd.sys
2018-01-09 12:18:15 ----A---- C:\windows\system32\mshtml.dll
2018-01-09 12:18:12 ----A---- C:\windows\system32\shell32.dll
2018-01-09 12:18:11 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-01-09 12:18:09 ----A---- C:\windows\system32\ntoskrnl.exe
2018-01-09 12:18:09 ----A---- C:\windows\system32\glcndFilter.dll
2018-01-09 12:18:08 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-01-09 12:18:06 ----A---- C:\windows\system32\jscript9.dll
2018-01-09 12:18:05 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2018-01-09 12:18:04 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2018-01-09 12:18:04 ----A---- C:\windows\system32\win32k.sys
2018-01-09 12:18:03 ----A---- C:\windows\system32\ieframe.dll
2018-01-09 12:18:02 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\rdpcorets.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-01-09 12:18:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-01-09 12:18:00 ----A---- C:\windows\system32\iertutil.dll
2018-01-09 12:17:59 ----A---- C:\windows\system32\drivers\ntfs.sys
2018-01-09 12:17:46 ----A---- C:\windows\SYSWOW64\combase.dll
2018-01-09 12:17:39 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-01-09 12:17:34 ----A---- C:\windows\system32\wininet.dll
2018-01-09 12:17:31 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-01-09 12:17:26 ----A---- C:\windows\system32\combase.dll
2018-01-09 12:17:24 ----A---- C:\windows\system32\winresume.exe
2018-01-09 12:17:22 ----A---- C:\windows\system32\winload.exe
2018-01-09 12:17:21 ----A---- C:\windows\system32\ole32.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\KernelBase.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\drivers\http.sys
2018-01-09 12:17:20 ----A---- C:\windows\system32\msxml6.dll
2018-01-09 12:17:20 ----A---- C:\windows\system32\lsasrv.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\winhttp.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\hal.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\winhttp.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\wevtsvc.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\rpcss.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\ieui.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\ntdll.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\drivers\srv2.sys
2018-01-09 12:17:12 ----A---- C:\windows\system32\advapi32.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\urlmon.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\jscript9diag.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\rdyboost.sys
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\fltMgr.sys
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\schedsvc.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\drivers\cng.sys
2018-01-09 12:17:09 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\rpcrt4.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\srv.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\fvevol.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\atmfd.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\msxml6.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2018-01-09 12:17:08 ----A---- C:\windows\system32\BFE.DLL
2018-01-09 12:17:08 ----A---- C:\windows\system32\bcryptprimitives.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\wow64.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\pcasvc.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\rascfg.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\sysmain.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\ncsi.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\iedkcs32.dll
2018-01-09 12:17:05 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\jscript.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\certcli.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\actxprxy.dll
2018-01-09 12:17:04 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\wcncsvc.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\spoolsv.exe
2018-01-09 12:17:04 ----A---- C:\windows\system32\rascfg.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\winlogon.exe
2018-01-09 12:17:03 ----A---- C:\windows\system32\inetcomm.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\wlansvc.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\WinTypes.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\msfeeds.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\IKEEXT.DLL
2018-01-09 12:17:01 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\drivers\wanarp.sys
2018-01-09 12:17:00 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\nlasvc.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\msrating.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\ieapfltr.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\fontsub.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\drivers\pacer.sys
2018-01-09 12:16:59 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\WcnApi.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\p2psvc.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\fdWCN.dll
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\rdbss.sys
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\vbscript.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\pnrpsvc.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\dxtmsft.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\drivers\ndproxy.sys
2018-01-09 12:16:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\rfxvmt.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\pcalua.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\nlaapi.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\drivers\srvnet.sys
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\nwifi.sys
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\netbios.sys
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\fdWCN.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\inseng.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\ie4uinit.exe
2018-01-09 12:16:52 ----A---- C:\windows\system32\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\drivers\ndistapi.sys
2018-01-09 12:16:52 ----A---- C:\windows\system32\appinfo.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\WcnApi.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\rasdiag.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\icfupgd.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\FirewallAPI.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\splwow64.exe
2018-01-08 21:36:16 ----A---- C:\windows\system32\drivers\aswHdsKe.sys
2018-01-08 21:36:08 ----A---- C:\windows\system32\aswBoot.exe
======List of files/folders modified in the last 1 month======
2018-02-02 20:44:08 ----D---- C:\Program Files\trend micro
2018-02-02 20:43:41 ----D---- C:\windows\Prefetch
2018-02-02 20:40:26 ----D---- C:\windows\Temp
2018-02-02 20:37:07 ----D---- C:\Users\Katka\AppData\Roaming\ClassicShell
2018-02-02 20:33:57 ----D---- C:\Users\Katka\AppData\Roaming\TeamViewer
2018-02-02 20:33:47 ----D---- C:\windows\Panther
2018-02-02 20:33:47 ----D---- C:\windows\ModemLogs
2018-02-02 20:33:47 ----D---- C:\windows\Inf
2018-02-02 20:33:41 ----D---- C:\windows\Minidump
2018-02-02 20:33:41 ----D---- C:\windows\debug
2018-02-02 20:33:41 ----D---- C:\Windows
2018-02-02 20:32:47 ----D---- C:\Users\Katka\AppData\Roaming\Skype
2018-02-02 20:30:03 ----D---- C:\windows\system32\sru
2018-02-02 13:00:10 ----D---- C:\windows\Tasks
2018-02-02 13:00:10 ----D---- C:\windows\system32\Tasks
2018-02-02 12:23:32 ----D---- C:\windows\Microsoft.NET
2018-02-02 12:06:58 ----RD---- C:\windows\System32
2018-02-02 12:06:58 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-02-01 19:48:26 ----HD---- C:\ProgramData
2018-02-01 13:17:50 ----D---- C:\GALAXY
2018-02-01 12:34:39 ----D---- C:\ProgramData\CanonIJPLM
2018-02-01 09:50:23 ----D---- C:\ProgramData\firebird
2018-01-31 09:00:51 ----D---- C:\windows\system32\config
2018-01-30 09:32:11 ----D---- C:\windows\WinSxS
2018-01-30 09:26:28 ----D---- C:\windows\SysWOW64
2018-01-28 22:23:27 ----SHD---- C:\System Volume Information
2018-01-27 07:42:54 ----D---- C:\windows\system32\drivers
2018-01-27 07:42:30 ----D---- C:\windows\system32\DriverStore
2018-01-24 09:27:01 ----D---- C:\windows\CbsTemp
2018-01-24 09:24:30 ----D---- C:\windows\system32\catroot2
2018-01-23 18:33:00 ----D---- C:\Program Files (x86)\Opera
2018-01-22 20:57:04 ----D---- C:\windows\AppReadiness
2018-01-22 20:57:03 ----HD---- C:\Program Files\WindowsApps
2018-01-22 20:18:18 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-19 11:12:12 ----RSD---- C:\windows\assembly
2018-01-19 09:47:46 ----D---- C:\ProgramData\Realtek
2018-01-16 08:47:50 ----D---- C:\windows\system32\MRT
2018-01-16 08:43:06 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-01-16 08:43:01 ----AC---- C:\windows\system32\MRT.exe
2018-01-14 13:52:21 ----D---- C:\windows\rescache
2018-01-14 13:38:06 ----SHD---- C:\windows\Installer
2018-01-14 13:37:58 ----D---- C:\ProgramData\Microsoft Help
2018-01-11 13:41:08 ----RD---- C:\windows\ToastData
2018-01-11 13:41:07 ----D---- C:\windows\system32\Boot
2018-01-11 13:41:07 ----D---- C:\Program Files\Internet Explorer
2018-01-11 13:41:07 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-11 13:41:06 ----D---- C:\windows\apppatch
2018-01-10 10:06:12 ----D---- C:\windows\system32\Macromed
2018-01-10 10:06:10 ----D---- C:\windows\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2018-01-08 199448]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2018-01-08 343768]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2018-01-08 57696]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2018-01-08 84384]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2018-01-08 358672]
R0 hpdskflt;@oem11.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2015-07-16 682944]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2014-02-03 49856]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2014-02-03 228544]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2014-02-03 131264]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2018-01-08 185096]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2018-01-08 321512]
R1 aswHdsKe;aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [2018-01-08 149344]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2017-09-12 41832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2018-01-08 110336]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2018-01-08 1025176]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2018-01-11 457896]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2018-01-11 146648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2018-01-08 204456]
R3 Accelerometer;@oem11.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 huawei_enumerator;huawei_enumerator; C:\windows\System32\drivers\ew_jubusenum.sys [2011-09-09 87040]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2016-09-30 4932072]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\windows\system32\DRIVERS\ikbevent.sys [2013-08-08 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\windows\system32\DRIVERS\imsevent.sys [2013-08-08 21920]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2013-08-07 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2016-01-26 4275288]
R3 ISCT;@oem29.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\windows\System32\drivers\ISCTD64.sys [2013-08-07 46568]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2015-11-17 39920]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RtkBtFilter;@oem24.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\windows\system32\DRIVERS\RtkBtfilter.sys [2015-06-02 598272]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem35.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2014-03-21 476888]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;HP HD Webcam [Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-03-05 9109720]
R3 RTWlanE;@oem79.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\windows\system32\DRIVERS\rtwlane.sys [2015-04-16 3785432]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem101.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2017-11-22 639576]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2018-01-08 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem13.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbccgpfilter;@oem95.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\windows\System32\drivers\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 ew_usbenumfilter;@oem63.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\windows\System32\drivers\ew_usbenumfilter.sys [2010-03-20 13952]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\System32\drivers\ew_juextctrl.sys [2011-09-09 28672]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2015-11-17 51704]
S3 IntcDAud;@oem87.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-02-06 460048]
S3 RimUsb;@oem60.inf,%RimUsb.DeviceDesc%;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2014-04-08 30448]
S3 SmbDrvI;SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [2014-04-08 31472]
S3 ssudmdm;@oem100.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-08 301168]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2015-09-18 125656]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-04-03 500048]
R2 HP Hotkey Service;HP Hotkey Service; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe [2015-08-03 850144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2014-06-24 176128]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem11.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-24 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2016-09-30 344184]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-09-06 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 MSSQL$SQL_SMSGALAXY;SQL Server (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe [2012-02-11 206424]
R2 PDF Architect 3 Creator;PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [2015-09-17 767712]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-01-26 292568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-22 255576]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-08 7538536]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-07-01 1102376]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-09 18856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-10 272384]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-04 52832]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2016-09-30 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [2015-09-17 964832]
S3 PDF Architect 3;PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2015-09-17 2244832]
S4 SQLAgent$SQL_SMSGALAXY;SQL Server Agent (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 438360]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
NTB zpomalený
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB zpomalený
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB zpomalený
# AdwCleaner 7.0.7.0 - Logfile created on Fri Feb 02 20:35:29 2018
# Updated on 2018/18/01 by Malwarebytes
# Running on Windows 8.1 (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
No malicious folders deleted.
***** [ Files ] *****
No malicious files deleted.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [2076 B] - [2017/4/19 11:35:43]
C:/AdwCleaner/AdwCleaner[S0].txt - [2318 B] - [2017/4/19 11:35:15]
C:/AdwCleaner/AdwCleaner[S1].txt - [1647 B] - [2018/2/2 20:34:28]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########
# Updated on 2018/18/01 by Malwarebytes
# Running on Windows 8.1 (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
No malicious folders deleted.
***** [ Files ] *****
No malicious files deleted.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[C0].txt - [2076 B] - [2017/4/19 11:35:43]
C:/AdwCleaner/AdwCleaner[S0].txt - [2318 B] - [2017/4/19 11:35:15]
C:/AdwCleaner/AdwCleaner[S1].txt - [1647 B] - [2018/2/2 20:34:28]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB zpomalený
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB zpomalený
Logfile of random's system information tool 1.10 (written by random/random)
Run by Katka at 2018-02-03 12:04:39
Microsoft Windows 8.1
System drive C: has 374 GB (81%) free of 463 GB
Total RAM: 3968 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:04:44, on 3. 2. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\CPP\CppKalkulacky\CppCalcServer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\trend micro\Katka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: PDF Architect 3 Helper - {06E08260-0695-4EC1-A74B-1310D8899D93} - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SP_WSPCHK] "C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe"
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: CPP - CalcServer.lnk = C:\CPP\CppKalkulacky\CppCalcServer.exe
O4 - Startup: Kooperativa - PDF Server.lnk = C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Hotkey Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem11.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect 3 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\ws.exe
O23 - Service: PDF Architect 3 CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe
O23 - Service: PDF Architect 3 Creator - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16005 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\system32\WLANExt.exe 1085059212112
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\Explorer.EXE
ClassicStartMenu.exe -startup
C:\windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\windows\System32\spoolsv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\system32\svchost.exe -k apphost
taskhostex.exe
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\windows\System32\svchost.exe -k utcsvc
dashost.exe {a11f5a41-4fb1-40d9-99142db0a17ba516}
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe"
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe" -sSQL_SMSGALAXY
"C:\Program Files (x86)\PDF Architect 3\creator-ws.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\SearchIndexer.exe /Embedding
igfxHK.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\CPP\CppKalkulacky\CppCalcServer.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=4804
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=gpu-process --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4432 --gpu-driver-date=4-8-2016 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --service-request-channel-token=15F3B2D04593971402F969B945C36849 --mojo-platform-channel-handle=1840 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=D5A658F4E6EE371B3D79396B09AC6453 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=D5A658F4E6EE371B3D79396B09AC6453 --renderer-client-id=3 --mojo-platform-channel-handle=3008 /prefetch:1
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=7E463990E9F837A8D7142D073171364E --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=7E463990E9F837A8D7142D073171364E --renderer-client-id=6 --mojo-platform-channel-handle=3044 /prefetch:1
C:\windows\splwow64.exe 8192
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=52DFB3A05F36A58CE525FEDEBE53B0E7 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=52DFB3A05F36A58CE525FEDEBE53B0E7 --renderer-client-id=8 --mojo-platform-channel-handle=5908 /prefetch:1
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=DA82137C28A39A85138400492E6924EB --lang=en-US --lang=en-US --log-file="C:\Users\Katka\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.3.2987.1601 Safari/537.36 Avastium (17.9.2322)" --proxy-auto-detect --disable-webaudio --mute-audio --force-wave-audio --disable-gpu --disable-software-rasterizer --no-sandbox --disable-webgl --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=DA82137C28A39A85138400492E6924EB --renderer-client-id=2 --mojo-platform-channel-handle=3588 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
"c:\program files (x86)\teamviewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Users\Katka\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForKatka.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForKatka (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21 440712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93}]
PDF Architect 3 Helper - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-09-17 38112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-01-26 7659224]
"RtsCM"=C:\windows\RTSCM64.EXE [2014-03-05 160472]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-12-08 71168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-08 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-08-03 430120]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2014-08-19 330176]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"SP_WSPCHK"=C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe [2013-12-02 122208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Users\Katka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CPP - CalcServer.lnk - C:\CPP\CppKalkulacky\CppCalcServer.exe
Kooperativa - PDF Server.lnk - C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-02-02 21:37:45 ----D---- C:\ProgramData\SWCUTemp
2018-02-02 20:54:38 ----A---- C:\windows\system32\drivers\MbamChameleon.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mwac.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mbam.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\farflt.sys
2018-02-02 20:54:19 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-02-02 20:54:10 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-02-02 20:54:03 ----D---- C:\Program Files\Malwarebytes
2018-02-02 20:53:56 ----D---- C:\ProgramData\MB2Migration
2018-02-02 20:51:35 ----D---- C:\ProgramData\Malwarebytes
2018-02-02 20:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-02-01 09:40:19 ----HD---- C:\$AV_ASW
2018-01-24 09:21:37 ----A---- C:\windows\system32\aspnet_counters.dll
2018-01-24 09:21:34 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2018-01-24 09:21:32 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2018-01-24 09:21:29 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2018-01-11 13:47:45 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-01-09 12:18:16 ----A---- C:\windows\system32\drivers\afd.sys
2018-01-09 12:18:15 ----A---- C:\windows\system32\mshtml.dll
2018-01-09 12:18:12 ----A---- C:\windows\system32\shell32.dll
2018-01-09 12:18:11 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-01-09 12:18:09 ----A---- C:\windows\system32\ntoskrnl.exe
2018-01-09 12:18:09 ----A---- C:\windows\system32\glcndFilter.dll
2018-01-09 12:18:08 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-01-09 12:18:06 ----A---- C:\windows\system32\jscript9.dll
2018-01-09 12:18:05 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2018-01-09 12:18:04 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2018-01-09 12:18:04 ----A---- C:\windows\system32\win32k.sys
2018-01-09 12:18:03 ----A---- C:\windows\system32\ieframe.dll
2018-01-09 12:18:02 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\rdpcorets.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-01-09 12:18:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-01-09 12:18:00 ----A---- C:\windows\system32\iertutil.dll
2018-01-09 12:17:59 ----A---- C:\windows\system32\drivers\ntfs.sys
2018-01-09 12:17:46 ----A---- C:\windows\SYSWOW64\combase.dll
2018-01-09 12:17:39 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-01-09 12:17:34 ----A---- C:\windows\system32\wininet.dll
2018-01-09 12:17:31 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-01-09 12:17:26 ----A---- C:\windows\system32\combase.dll
2018-01-09 12:17:24 ----A---- C:\windows\system32\winresume.exe
2018-01-09 12:17:22 ----A---- C:\windows\system32\winload.exe
2018-01-09 12:17:21 ----A---- C:\windows\system32\ole32.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\KernelBase.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\drivers\http.sys
2018-01-09 12:17:20 ----A---- C:\windows\system32\msxml6.dll
2018-01-09 12:17:20 ----A---- C:\windows\system32\lsasrv.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\winhttp.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\hal.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\winhttp.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\wevtsvc.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\rpcss.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\ieui.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\ntdll.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\drivers\srv2.sys
2018-01-09 12:17:12 ----A---- C:\windows\system32\advapi32.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\urlmon.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\jscript9diag.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\rdyboost.sys
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\fltMgr.sys
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\schedsvc.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\drivers\cng.sys
2018-01-09 12:17:09 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\rpcrt4.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\srv.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\fvevol.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\atmfd.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\msxml6.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2018-01-09 12:17:08 ----A---- C:\windows\system32\BFE.DLL
2018-01-09 12:17:08 ----A---- C:\windows\system32\bcryptprimitives.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\wow64.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\pcasvc.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\rascfg.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\sysmain.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\ncsi.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\iedkcs32.dll
2018-01-09 12:17:05 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\jscript.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\certcli.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\actxprxy.dll
2018-01-09 12:17:04 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\wcncsvc.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\spoolsv.exe
2018-01-09 12:17:04 ----A---- C:\windows\system32\rascfg.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\winlogon.exe
2018-01-09 12:17:03 ----A---- C:\windows\system32\inetcomm.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\wlansvc.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\WinTypes.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\msfeeds.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\IKEEXT.DLL
2018-01-09 12:17:01 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\drivers\wanarp.sys
2018-01-09 12:17:00 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\nlasvc.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\msrating.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\ieapfltr.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\fontsub.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\drivers\pacer.sys
2018-01-09 12:16:59 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\WcnApi.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\p2psvc.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\fdWCN.dll
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\rdbss.sys
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\vbscript.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\pnrpsvc.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\dxtmsft.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\drivers\ndproxy.sys
2018-01-09 12:16:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\rfxvmt.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\pcalua.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\nlaapi.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\drivers\srvnet.sys
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\nwifi.sys
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\netbios.sys
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\fdWCN.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\inseng.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\ie4uinit.exe
2018-01-09 12:16:52 ----A---- C:\windows\system32\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\drivers\ndistapi.sys
2018-01-09 12:16:52 ----A---- C:\windows\system32\appinfo.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\WcnApi.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\rasdiag.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\icfupgd.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\FirewallAPI.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\splwow64.exe
2018-01-08 21:36:16 ----A---- C:\windows\system32\drivers\aswHdsKe.sys
2018-01-08 21:36:08 ----A---- C:\windows\system32\aswBoot.exe
======List of files/folders modified in the last 1 month======
2018-02-03 12:04:42 ----D---- C:\Program Files\trend micro
2018-02-03 12:04:27 ----D---- C:\windows\Prefetch
2018-02-03 12:01:43 ----D---- C:\Users\Katka\AppData\Roaming\Skype
2018-02-03 12:00:31 ----D---- C:\Windows
2018-02-03 12:00:00 ----D---- C:\windows\system32\sru
2018-02-03 11:59:49 ----D---- C:\windows\Temp
2018-02-03 10:19:25 ----D---- C:\windows\system32\drivers
2018-02-02 21:37:45 ----HD---- C:\ProgramData
2018-02-02 21:35:29 ----D---- C:\AdwCleaner
2018-02-02 21:29:11 ----D---- C:\Users\Katka\AppData\Roaming\ClassicShell
2018-02-02 21:09:48 ----RD---- C:\windows\System32
2018-02-02 21:09:48 ----D---- C:\windows\Inf
2018-02-02 21:09:48 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-02-02 21:07:36 ----D---- C:\GALAXY
2018-02-02 20:54:03 ----RD---- C:\Program Files
2018-02-02 20:51:35 ----RD---- C:\Program Files (x86)
2018-02-02 20:33:57 ----D---- C:\Users\Katka\AppData\Roaming\TeamViewer
2018-02-02 20:33:47 ----D---- C:\windows\Panther
2018-02-02 20:33:47 ----D---- C:\windows\ModemLogs
2018-02-02 20:33:41 ----D---- C:\windows\Minidump
2018-02-02 20:33:41 ----D---- C:\windows\debug
2018-02-02 13:00:10 ----D---- C:\windows\Tasks
2018-02-02 13:00:10 ----D---- C:\windows\system32\Tasks
2018-02-02 12:23:32 ----D---- C:\windows\Microsoft.NET
2018-02-01 12:34:39 ----D---- C:\ProgramData\CanonIJPLM
2018-02-01 09:50:23 ----D---- C:\ProgramData\firebird
2018-01-31 09:00:51 ----D---- C:\windows\system32\config
2018-01-30 09:32:11 ----D---- C:\windows\WinSxS
2018-01-30 09:26:28 ----D---- C:\windows\SysWOW64
2018-01-28 22:23:27 ----SHD---- C:\System Volume Information
2018-01-27 07:42:30 ----D---- C:\windows\system32\DriverStore
2018-01-24 09:27:01 ----D---- C:\windows\CbsTemp
2018-01-24 09:24:30 ----D---- C:\windows\system32\catroot2
2018-01-23 18:33:00 ----D---- C:\Program Files (x86)\Opera
2018-01-22 20:57:04 ----D---- C:\windows\AppReadiness
2018-01-22 20:57:03 ----HD---- C:\Program Files\WindowsApps
2018-01-22 20:18:18 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-19 11:12:12 ----RSD---- C:\windows\assembly
2018-01-19 09:47:46 ----D---- C:\ProgramData\Realtek
2018-01-16 08:47:50 ----D---- C:\windows\system32\MRT
2018-01-16 08:43:06 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-01-16 08:43:01 ----AC---- C:\windows\system32\MRT.exe
2018-01-14 13:52:21 ----D---- C:\windows\rescache
2018-01-14 13:38:06 ----SHD---- C:\windows\Installer
2018-01-14 13:37:58 ----D---- C:\ProgramData\Microsoft Help
2018-01-11 13:41:08 ----RD---- C:\windows\ToastData
2018-01-11 13:41:07 ----D---- C:\windows\system32\Boot
2018-01-11 13:41:07 ----D---- C:\Program Files\Internet Explorer
2018-01-11 13:41:07 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-11 13:41:06 ----D---- C:\windows\apppatch
2018-01-10 10:06:12 ----D---- C:\windows\system32\Macromed
2018-01-10 10:06:10 ----D---- C:\windows\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2018-01-08 199448]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2018-01-08 343768]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2018-01-08 57696]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2018-01-08 84384]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2018-01-08 358672]
R0 hpdskflt;@oem11.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2015-07-16 682944]
R0 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-02-02 253880]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2014-02-03 49856]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2014-02-03 228544]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2014-02-03 131264]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2018-01-08 185096]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2018-01-08 321512]
R1 aswHdsKe;aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [2018-01-08 149344]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2017-09-12 41832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2018-01-08 110336]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2018-01-08 1025176]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2018-01-11 457896]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\windows\system32\drivers\mbae64.sys [2017-11-29 77432]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2018-01-11 146648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2018-01-08 204456]
R2 MBAMChameleon;MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [2018-02-02 193968]
R3 Accelerometer;@oem11.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 huawei_enumerator;huawei_enumerator; C:\windows\System32\drivers\ew_jubusenum.sys [2011-09-09 87040]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2016-09-30 4932072]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\windows\system32\DRIVERS\ikbevent.sys [2013-08-08 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\windows\system32\DRIVERS\imsevent.sys [2013-08-08 21920]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2013-08-07 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2016-01-26 4275288]
R3 ISCT;@oem29.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\windows\System32\drivers\ISCTD64.sys [2013-08-07 46568]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2015-11-17 39920]
R3 MBAMFarflt;MBAMFarflt; C:\windows\system32\DRIVERS\farflt.sys [2018-02-02 110016]
R3 MBAMProtection;MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [2018-02-02 46008]
R3 MBAMWebProtection;MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [2018-02-03 94144]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RtkBtFilter;@oem24.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\windows\system32\DRIVERS\RtkBtfilter.sys [2015-06-02 598272]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem35.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2014-03-21 476888]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;HP HD Webcam [Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-03-05 9109720]
R3 RTWlanE;@oem79.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\windows\system32\DRIVERS\rtwlane.sys [2015-04-16 3785432]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem101.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2017-11-22 639576]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2018-01-08 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem13.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbccgpfilter;@oem95.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\windows\System32\drivers\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 ew_usbenumfilter;@oem63.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\windows\System32\drivers\ew_usbenumfilter.sys [2010-03-20 13952]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\System32\drivers\ew_juextctrl.sys [2011-09-09 28672]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2015-11-17 51704]
S3 IntcDAud;@oem87.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-02-06 460048]
S3 RimUsb;@oem60.inf,%RimUsb.DeviceDesc%;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2014-04-08 30448]
S3 SmbDrvI;SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [2014-04-08 31472]
S3 ssudmdm;@oem100.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-08 301168]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2015-09-18 125656]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-04-03 500048]
R2 HP Hotkey Service;HP Hotkey Service; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe [2015-08-03 850144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2014-06-24 176128]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem11.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-24 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2016-09-30 344184]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-09-06 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-11-01 6234056]
R2 MSSQL$SQL_SMSGALAXY;SQL Server (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe [2012-02-11 206424]
R2 PDF Architect 3 Creator;PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [2015-09-17 767712]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-01-26 292568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-22 255576]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-08 7538536]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-07-01 1102376]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-09 18856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-10 272384]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-04 52832]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2016-09-30 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [2015-09-17 964832]
S3 PDF Architect 3;PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2015-09-17 2244832]
S4 SQLAgent$SQL_SMSGALAXY;SQL Server Agent (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 438360]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
-----------------EOF-----------------
Run by Katka at 2018-02-03 12:04:39
Microsoft Windows 8.1
System drive C: has 374 GB (81%) free of 463 GB
Total RAM: 3968 MB (32% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:04:44, on 3. 2. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\CPP\CppKalkulacky\CppCalcServer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\trend micro\Katka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: PDF Architect 3 Helper - {06E08260-0695-4EC1-A74B-1310D8899D93} - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SP_WSPCHK] "C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe"
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: CPP - CalcServer.lnk = C:\CPP\CppKalkulacky\CppCalcServer.exe
O4 - Startup: Kooperativa - PDF Server.lnk = C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Hotkey Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem11.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect 3 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\ws.exe
O23 - Service: PDF Architect 3 CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe
O23 - Service: PDF Architect 3 Creator - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16005 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\system32\WLANExt.exe 1085059212112
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\Explorer.EXE
ClassicStartMenu.exe -startup
C:\windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\windows\System32\spoolsv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\system32\svchost.exe -k apphost
taskhostex.exe
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\windows\System32\svchost.exe -k utcsvc
dashost.exe {a11f5a41-4fb1-40d9-99142db0a17ba516}
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe"
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe" -sSQL_SMSGALAXY
"C:\Program Files (x86)\PDF Architect 3\creator-ws.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\SearchIndexer.exe /Embedding
igfxHK.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\RtsCM64.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\CPP\CppKalkulacky\CppCalcServer.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=4804
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=gpu-process --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4432 --gpu-driver-date=4-8-2016 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --service-request-channel-token=15F3B2D04593971402F969B945C36849 --mojo-platform-channel-handle=1840 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=D5A658F4E6EE371B3D79396B09AC6453 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=D5A658F4E6EE371B3D79396B09AC6453 --renderer-client-id=3 --mojo-platform-channel-handle=3008 /prefetch:1
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=7E463990E9F837A8D7142D073171364E --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=7E463990E9F837A8D7142D073171364E --renderer-client-id=6 --mojo-platform-channel-handle=3044 /prefetch:1
C:\windows\splwow64.exe 8192
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1800,13580845998853745659,15728941296785780938,131072 --service-pipe-token=52DFB3A05F36A58CE525FEDEBE53B0E7 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=7216 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=52DFB3A05F36A58CE525FEDEBE53B0E7 --renderer-client-id=8 --mojo-platform-channel-handle=5908 /prefetch:1
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=DA82137C28A39A85138400492E6924EB --lang=en-US --lang=en-US --log-file="C:\Users\Katka\AppData\Roaming\AVAST Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.3.2987.1601 Safari/537.36 Avastium (17.9.2322)" --proxy-auto-detect --disable-webaudio --mute-audio --force-wave-audio --disable-gpu --disable-software-rasterizer --no-sandbox --disable-webgl --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=DA82137C28A39A85138400492E6924EB --renderer-client-id=2 --mojo-platform-channel-handle=3588 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
"c:\program files (x86)\teamviewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Users\Katka\Desktop\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForKatka.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForKatka (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21 440712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93}]
PDF Architect 3 Helper - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-09-17 38112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-01-26 7659224]
"RtsCM"=C:\windows\RTSCM64.EXE [2014-03-05 160472]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-12-08 71168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-08 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-08-03 430120]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2014-08-19 330176]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"SP_WSPCHK"=C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe [2013-12-02 122208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Users\Katka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CPP - CalcServer.lnk - C:\CPP\CppKalkulacky\CppCalcServer.exe
Kooperativa - PDF Server.lnk - C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-02-02 21:37:45 ----D---- C:\ProgramData\SWCUTemp
2018-02-02 20:54:38 ----A---- C:\windows\system32\drivers\MbamChameleon.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mwac.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mbam.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\farflt.sys
2018-02-02 20:54:19 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-02-02 20:54:10 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-02-02 20:54:03 ----D---- C:\Program Files\Malwarebytes
2018-02-02 20:53:56 ----D---- C:\ProgramData\MB2Migration
2018-02-02 20:51:35 ----D---- C:\ProgramData\Malwarebytes
2018-02-02 20:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-02-01 09:40:19 ----HD---- C:\$AV_ASW
2018-01-24 09:21:37 ----A---- C:\windows\system32\aspnet_counters.dll
2018-01-24 09:21:34 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2018-01-24 09:21:32 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2018-01-24 09:21:29 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2018-01-11 13:47:45 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-01-09 12:18:16 ----A---- C:\windows\system32\drivers\afd.sys
2018-01-09 12:18:15 ----A---- C:\windows\system32\mshtml.dll
2018-01-09 12:18:12 ----A---- C:\windows\system32\shell32.dll
2018-01-09 12:18:11 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-01-09 12:18:09 ----A---- C:\windows\system32\ntoskrnl.exe
2018-01-09 12:18:09 ----A---- C:\windows\system32\glcndFilter.dll
2018-01-09 12:18:08 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-01-09 12:18:06 ----A---- C:\windows\system32\jscript9.dll
2018-01-09 12:18:05 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2018-01-09 12:18:04 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2018-01-09 12:18:04 ----A---- C:\windows\system32\win32k.sys
2018-01-09 12:18:03 ----A---- C:\windows\system32\ieframe.dll
2018-01-09 12:18:02 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\rdpcorets.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-01-09 12:18:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-01-09 12:18:00 ----A---- C:\windows\system32\iertutil.dll
2018-01-09 12:17:59 ----A---- C:\windows\system32\drivers\ntfs.sys
2018-01-09 12:17:46 ----A---- C:\windows\SYSWOW64\combase.dll
2018-01-09 12:17:39 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-01-09 12:17:34 ----A---- C:\windows\system32\wininet.dll
2018-01-09 12:17:31 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-01-09 12:17:26 ----A---- C:\windows\system32\combase.dll
2018-01-09 12:17:24 ----A---- C:\windows\system32\winresume.exe
2018-01-09 12:17:22 ----A---- C:\windows\system32\winload.exe
2018-01-09 12:17:21 ----A---- C:\windows\system32\ole32.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\KernelBase.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\drivers\http.sys
2018-01-09 12:17:20 ----A---- C:\windows\system32\msxml6.dll
2018-01-09 12:17:20 ----A---- C:\windows\system32\lsasrv.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\winhttp.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\hal.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\winhttp.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\wevtsvc.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\rpcss.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\ieui.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\ntdll.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\drivers\srv2.sys
2018-01-09 12:17:12 ----A---- C:\windows\system32\advapi32.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\urlmon.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\jscript9diag.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\rdyboost.sys
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\fltMgr.sys
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\schedsvc.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\drivers\cng.sys
2018-01-09 12:17:09 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\rpcrt4.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\srv.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\fvevol.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\atmfd.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\msxml6.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2018-01-09 12:17:08 ----A---- C:\windows\system32\BFE.DLL
2018-01-09 12:17:08 ----A---- C:\windows\system32\bcryptprimitives.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\wow64.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\pcasvc.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\rascfg.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\sysmain.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\ncsi.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\iedkcs32.dll
2018-01-09 12:17:05 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\jscript.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\certcli.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\actxprxy.dll
2018-01-09 12:17:04 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\wcncsvc.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\spoolsv.exe
2018-01-09 12:17:04 ----A---- C:\windows\system32\rascfg.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\winlogon.exe
2018-01-09 12:17:03 ----A---- C:\windows\system32\inetcomm.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\wlansvc.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\WinTypes.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\msfeeds.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\IKEEXT.DLL
2018-01-09 12:17:01 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\drivers\wanarp.sys
2018-01-09 12:17:00 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\nlasvc.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\msrating.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\ieapfltr.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\fontsub.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\drivers\pacer.sys
2018-01-09 12:16:59 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\WcnApi.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\p2psvc.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\fdWCN.dll
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\rdbss.sys
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\vbscript.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\pnrpsvc.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\dxtmsft.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\drivers\ndproxy.sys
2018-01-09 12:16:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\rfxvmt.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\pcalua.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\nlaapi.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\drivers\srvnet.sys
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\nwifi.sys
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\netbios.sys
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\fdWCN.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\inseng.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\ie4uinit.exe
2018-01-09 12:16:52 ----A---- C:\windows\system32\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\drivers\ndistapi.sys
2018-01-09 12:16:52 ----A---- C:\windows\system32\appinfo.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\WcnApi.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\rasdiag.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\icfupgd.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\FirewallAPI.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\splwow64.exe
2018-01-08 21:36:16 ----A---- C:\windows\system32\drivers\aswHdsKe.sys
2018-01-08 21:36:08 ----A---- C:\windows\system32\aswBoot.exe
======List of files/folders modified in the last 1 month======
2018-02-03 12:04:42 ----D---- C:\Program Files\trend micro
2018-02-03 12:04:27 ----D---- C:\windows\Prefetch
2018-02-03 12:01:43 ----D---- C:\Users\Katka\AppData\Roaming\Skype
2018-02-03 12:00:31 ----D---- C:\Windows
2018-02-03 12:00:00 ----D---- C:\windows\system32\sru
2018-02-03 11:59:49 ----D---- C:\windows\Temp
2018-02-03 10:19:25 ----D---- C:\windows\system32\drivers
2018-02-02 21:37:45 ----HD---- C:\ProgramData
2018-02-02 21:35:29 ----D---- C:\AdwCleaner
2018-02-02 21:29:11 ----D---- C:\Users\Katka\AppData\Roaming\ClassicShell
2018-02-02 21:09:48 ----RD---- C:\windows\System32
2018-02-02 21:09:48 ----D---- C:\windows\Inf
2018-02-02 21:09:48 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-02-02 21:07:36 ----D---- C:\GALAXY
2018-02-02 20:54:03 ----RD---- C:\Program Files
2018-02-02 20:51:35 ----RD---- C:\Program Files (x86)
2018-02-02 20:33:57 ----D---- C:\Users\Katka\AppData\Roaming\TeamViewer
2018-02-02 20:33:47 ----D---- C:\windows\Panther
2018-02-02 20:33:47 ----D---- C:\windows\ModemLogs
2018-02-02 20:33:41 ----D---- C:\windows\Minidump
2018-02-02 20:33:41 ----D---- C:\windows\debug
2018-02-02 13:00:10 ----D---- C:\windows\Tasks
2018-02-02 13:00:10 ----D---- C:\windows\system32\Tasks
2018-02-02 12:23:32 ----D---- C:\windows\Microsoft.NET
2018-02-01 12:34:39 ----D---- C:\ProgramData\CanonIJPLM
2018-02-01 09:50:23 ----D---- C:\ProgramData\firebird
2018-01-31 09:00:51 ----D---- C:\windows\system32\config
2018-01-30 09:32:11 ----D---- C:\windows\WinSxS
2018-01-30 09:26:28 ----D---- C:\windows\SysWOW64
2018-01-28 22:23:27 ----SHD---- C:\System Volume Information
2018-01-27 07:42:30 ----D---- C:\windows\system32\DriverStore
2018-01-24 09:27:01 ----D---- C:\windows\CbsTemp
2018-01-24 09:24:30 ----D---- C:\windows\system32\catroot2
2018-01-23 18:33:00 ----D---- C:\Program Files (x86)\Opera
2018-01-22 20:57:04 ----D---- C:\windows\AppReadiness
2018-01-22 20:57:03 ----HD---- C:\Program Files\WindowsApps
2018-01-22 20:18:18 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-19 11:12:12 ----RSD---- C:\windows\assembly
2018-01-19 09:47:46 ----D---- C:\ProgramData\Realtek
2018-01-16 08:47:50 ----D---- C:\windows\system32\MRT
2018-01-16 08:43:06 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-01-16 08:43:01 ----AC---- C:\windows\system32\MRT.exe
2018-01-14 13:52:21 ----D---- C:\windows\rescache
2018-01-14 13:38:06 ----SHD---- C:\windows\Installer
2018-01-14 13:37:58 ----D---- C:\ProgramData\Microsoft Help
2018-01-11 13:41:08 ----RD---- C:\windows\ToastData
2018-01-11 13:41:07 ----D---- C:\windows\system32\Boot
2018-01-11 13:41:07 ----D---- C:\Program Files\Internet Explorer
2018-01-11 13:41:07 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-11 13:41:06 ----D---- C:\windows\apppatch
2018-01-10 10:06:12 ----D---- C:\windows\system32\Macromed
2018-01-10 10:06:10 ----D---- C:\windows\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2018-01-08 199448]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2018-01-08 343768]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2018-01-08 57696]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2018-01-08 84384]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2018-01-08 358672]
R0 hpdskflt;@oem11.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2015-07-16 682944]
R0 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-02-02 253880]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2014-02-03 49856]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2014-02-03 228544]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2014-02-03 131264]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2018-01-08 185096]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2018-01-08 321512]
R1 aswHdsKe;aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [2018-01-08 149344]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2017-09-12 41832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2018-01-08 110336]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2018-01-08 1025176]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2018-01-11 457896]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\windows\system32\drivers\mbae64.sys [2017-11-29 77432]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2018-01-11 146648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2018-01-08 204456]
R2 MBAMChameleon;MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [2018-02-02 193968]
R3 Accelerometer;@oem11.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 huawei_enumerator;huawei_enumerator; C:\windows\System32\drivers\ew_jubusenum.sys [2011-09-09 87040]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2016-09-30 4932072]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\windows\system32\DRIVERS\ikbevent.sys [2013-08-08 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\windows\system32\DRIVERS\imsevent.sys [2013-08-08 21920]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2013-08-07 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2016-01-26 4275288]
R3 ISCT;@oem29.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\windows\System32\drivers\ISCTD64.sys [2013-08-07 46568]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2015-11-17 39920]
R3 MBAMFarflt;MBAMFarflt; C:\windows\system32\DRIVERS\farflt.sys [2018-02-02 110016]
R3 MBAMProtection;MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [2018-02-02 46008]
R3 MBAMWebProtection;MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [2018-02-03 94144]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RtkBtFilter;@oem24.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\windows\system32\DRIVERS\RtkBtfilter.sys [2015-06-02 598272]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem35.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2014-03-21 476888]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;HP HD Webcam [Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-03-05 9109720]
R3 RTWlanE;@oem79.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\windows\system32\DRIVERS\rtwlane.sys [2015-04-16 3785432]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem101.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2017-11-22 639576]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2018-01-08 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem13.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbccgpfilter;@oem95.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\windows\System32\drivers\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 ew_usbenumfilter;@oem63.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\windows\System32\drivers\ew_usbenumfilter.sys [2010-03-20 13952]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\System32\drivers\ew_juextctrl.sys [2011-09-09 28672]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2015-11-17 51704]
S3 IntcDAud;@oem87.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-02-06 460048]
S3 RimUsb;@oem60.inf,%RimUsb.DeviceDesc%;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2014-04-08 30448]
S3 SmbDrvI;SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [2014-04-08 31472]
S3 ssudmdm;@oem100.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-08 301168]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2015-09-18 125656]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-04-03 500048]
R2 HP Hotkey Service;HP Hotkey Service; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe [2015-08-03 850144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2014-06-24 176128]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem11.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-24 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2016-09-30 344184]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-09-06 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-11-01 6234056]
R2 MSSQL$SQL_SMSGALAXY;SQL Server (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe [2012-02-11 206424]
R2 PDF Architect 3 Creator;PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [2015-09-17 767712]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-01-26 292568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-22 255576]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-08 7538536]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-07-01 1102376]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-09 18856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-10 272384]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-04 52832]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2016-09-30 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [2015-09-17 964832]
S3 PDF Architect 3;PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2015-09-17 2244832]
S4 SQLAgent$SQL_SMSGALAXY;SQL Server Agent (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 438360]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB zpomalený
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB zpomalený
Logfile of random's system information tool 1.10 (written by random/random)
Run by Katka at 2018-02-05 08:51:01
Microsoft Windows 8.1
System drive C: has 374 GB (81%) free of 463 GB
Total RAM: 3968 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:51:04, on 5. 2. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\CPP\CppKalkulacky\CppCalcServer.exe
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Katka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: PDF Architect 3 Helper - {06E08260-0695-4EC1-A74B-1310D8899D93} - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SP_WSPCHK] "C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe"
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: CPP - CalcServer.lnk = C:\CPP\CppKalkulacky\CppCalcServer.exe
O4 - Startup: Kooperativa - PDF Server.lnk = C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Hotkey Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem11.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect 3 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\ws.exe
O23 - Service: PDF Architect 3 CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe
O23 - Service: PDF Architect 3 Creator - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15577 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\system32\WLANExt.exe 353691727296
\??\C:\windows\system32\conhost.exe 0x4
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe"
dashost.exe {e8dd4cc4-1d9a-4545-b1f90df97665fd32}
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe" -sSQL_SMSGALAXY
"C:\Program Files (x86)\PDF Architect 3\creator-ws.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
igfxHK.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
ClassicStartMenu.exe -startup
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\RtsCM64.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=6848
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=gpu-process --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4432 --gpu-driver-date=4-8-2016 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --service-request-channel-token=B256F4AFB3245FF0B6D82835322C8F0F --mojo-platform-channel-handle=1772 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=991D1ED1FDD5A029E9E0AB9433FB85DA --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=991D1ED1FDD5A029E9E0AB9433FB85DA --renderer-client-id=4 --mojo-platform-channel-handle=3024 /prefetch:1
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=40AA31C743F963C0A48B2404F42B2159 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=40AA31C743F963C0A48B2404F42B2159 --renderer-client-id=6 --mojo-platform-channel-handle=3100 /prefetch:1
AvastUI.exe /nogui
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=3042575F59603EB80EA98B3A2F0C4247 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=3042575F59603EB80EA98B3A2F0C4247 --renderer-client-id=3 --mojo-platform-channel-handle=5148 /prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\CPP\CppKalkulacky\CppCalcServer.exe"
"C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
C:\windows\splwow64.exe 8192
C:\windows\system32\PrintIsolationHost.exe -Embedding
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\SysWOW64\WerFault.exe -u -p 8432 -s 1256
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Katka\Desktop\Aplikace plocha\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForKatka.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForKatka (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21 440712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93}]
PDF Architect 3 Helper - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-09-17 38112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-01-26 7659224]
"RtsCM"=C:\windows\RTSCM64.EXE [2014-03-05 160472]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-12-08 71168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-08 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-08-03 430120]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2014-08-19 330176]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"SP_WSPCHK"=C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe [2013-12-02 122208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Users\Katka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CPP - CalcServer.lnk - C:\CPP\CppKalkulacky\CppCalcServer.exe
Kooperativa - PDF Server.lnk - C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-02-05 08:48:20 ----D---- C:\ProgramData\SWCUTemp
2018-02-02 20:54:38 ----A---- C:\windows\system32\drivers\MbamChameleon.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mwac.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mbam.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\farflt.sys
2018-02-02 20:54:19 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-02-02 20:54:10 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-02-02 20:54:03 ----D---- C:\Program Files\Malwarebytes
2018-02-02 20:53:56 ----D---- C:\ProgramData\MB2Migration
2018-02-02 20:51:35 ----D---- C:\ProgramData\Malwarebytes
2018-02-02 20:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-02-01 09:40:19 ----HD---- C:\$AV_ASW
2018-01-24 09:21:37 ----A---- C:\windows\system32\aspnet_counters.dll
2018-01-24 09:21:34 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2018-01-24 09:21:32 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2018-01-24 09:21:29 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2018-01-11 13:47:45 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-01-09 12:18:16 ----A---- C:\windows\system32\drivers\afd.sys
2018-01-09 12:18:15 ----A---- C:\windows\system32\mshtml.dll
2018-01-09 12:18:12 ----A---- C:\windows\system32\shell32.dll
2018-01-09 12:18:11 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-01-09 12:18:09 ----A---- C:\windows\system32\ntoskrnl.exe
2018-01-09 12:18:09 ----A---- C:\windows\system32\glcndFilter.dll
2018-01-09 12:18:08 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-01-09 12:18:06 ----A---- C:\windows\system32\jscript9.dll
2018-01-09 12:18:05 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2018-01-09 12:18:04 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2018-01-09 12:18:04 ----A---- C:\windows\system32\win32k.sys
2018-01-09 12:18:03 ----A---- C:\windows\system32\ieframe.dll
2018-01-09 12:18:02 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\rdpcorets.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-01-09 12:18:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-01-09 12:18:00 ----A---- C:\windows\system32\iertutil.dll
2018-01-09 12:17:59 ----A---- C:\windows\system32\drivers\ntfs.sys
2018-01-09 12:17:46 ----A---- C:\windows\SYSWOW64\combase.dll
2018-01-09 12:17:39 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-01-09 12:17:34 ----A---- C:\windows\system32\wininet.dll
2018-01-09 12:17:31 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-01-09 12:17:26 ----A---- C:\windows\system32\combase.dll
2018-01-09 12:17:24 ----A---- C:\windows\system32\winresume.exe
2018-01-09 12:17:22 ----A---- C:\windows\system32\winload.exe
2018-01-09 12:17:21 ----A---- C:\windows\system32\ole32.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\KernelBase.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\drivers\http.sys
2018-01-09 12:17:20 ----A---- C:\windows\system32\msxml6.dll
2018-01-09 12:17:20 ----A---- C:\windows\system32\lsasrv.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\winhttp.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\hal.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\winhttp.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\wevtsvc.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\rpcss.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\ieui.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\ntdll.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\drivers\srv2.sys
2018-01-09 12:17:12 ----A---- C:\windows\system32\advapi32.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\urlmon.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\jscript9diag.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\rdyboost.sys
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\fltMgr.sys
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\schedsvc.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\drivers\cng.sys
2018-01-09 12:17:09 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\rpcrt4.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\srv.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\fvevol.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\atmfd.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\msxml6.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2018-01-09 12:17:08 ----A---- C:\windows\system32\BFE.DLL
2018-01-09 12:17:08 ----A---- C:\windows\system32\bcryptprimitives.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\wow64.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\pcasvc.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\rascfg.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\sysmain.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\ncsi.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\iedkcs32.dll
2018-01-09 12:17:05 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\jscript.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\certcli.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\actxprxy.dll
2018-01-09 12:17:04 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\wcncsvc.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\spoolsv.exe
2018-01-09 12:17:04 ----A---- C:\windows\system32\rascfg.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\winlogon.exe
2018-01-09 12:17:03 ----A---- C:\windows\system32\inetcomm.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\wlansvc.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\WinTypes.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\msfeeds.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\IKEEXT.DLL
2018-01-09 12:17:01 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\drivers\wanarp.sys
2018-01-09 12:17:00 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\nlasvc.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\msrating.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\ieapfltr.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\fontsub.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\drivers\pacer.sys
2018-01-09 12:16:59 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\WcnApi.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\p2psvc.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\fdWCN.dll
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\rdbss.sys
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\vbscript.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\pnrpsvc.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\dxtmsft.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\drivers\ndproxy.sys
2018-01-09 12:16:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\rfxvmt.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\pcalua.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\nlaapi.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\drivers\srvnet.sys
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\nwifi.sys
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\netbios.sys
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\fdWCN.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\inseng.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\ie4uinit.exe
2018-01-09 12:16:52 ----A---- C:\windows\system32\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\drivers\ndistapi.sys
2018-01-09 12:16:52 ----A---- C:\windows\system32\appinfo.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\WcnApi.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\rasdiag.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\icfupgd.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\FirewallAPI.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\splwow64.exe
2018-01-08 21:36:16 ----A---- C:\windows\system32\drivers\aswHdsKe.sys
2018-01-08 21:36:08 ----A---- C:\windows\system32\aswBoot.exe
======List of files/folders modified in the last 1 month======
2018-02-05 08:51:03 ----D---- C:\Program Files\trend micro
2018-02-05 08:50:34 ----D---- C:\windows\Temp
2018-02-05 08:49:37 ----D---- C:\Users\Katka\AppData\Roaming\Skype
2018-02-05 08:49:35 ----D---- C:\windows\Prefetch
2018-02-05 08:48:35 ----D---- C:\windows\system32\drivers
2018-02-05 08:48:29 ----D---- C:\Windows
2018-02-05 08:48:20 ----HD---- C:\ProgramData
2018-02-05 08:42:25 ----D---- C:\Program Files (x86)\Opera
2018-02-05 08:39:20 ----D---- C:\windows\system32\sru
2018-02-03 21:07:32 ----D---- C:\windows\Inf
2018-02-03 12:17:35 ----D---- C:\Users\Katka\AppData\Roaming\ClassicShell
2018-02-02 21:35:29 ----D---- C:\AdwCleaner
2018-02-02 21:09:48 ----RD---- C:\windows\System32
2018-02-02 21:09:48 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-02-02 21:07:36 ----D---- C:\GALAXY
2018-02-02 20:54:03 ----RD---- C:\Program Files
2018-02-02 20:51:35 ----RD---- C:\Program Files (x86)
2018-02-02 20:33:57 ----D---- C:\Users\Katka\AppData\Roaming\TeamViewer
2018-02-02 20:33:47 ----D---- C:\windows\Panther
2018-02-02 20:33:47 ----D---- C:\windows\ModemLogs
2018-02-02 20:33:41 ----D---- C:\windows\Minidump
2018-02-02 20:33:41 ----D---- C:\windows\debug
2018-02-02 13:00:10 ----D---- C:\windows\Tasks
2018-02-02 13:00:10 ----D---- C:\windows\system32\Tasks
2018-02-02 12:23:32 ----D---- C:\windows\Microsoft.NET
2018-02-01 12:34:39 ----D---- C:\ProgramData\CanonIJPLM
2018-02-01 09:50:23 ----D---- C:\ProgramData\firebird
2018-01-31 09:00:51 ----D---- C:\windows\system32\config
2018-01-30 09:32:11 ----D---- C:\windows\WinSxS
2018-01-30 09:26:28 ----D---- C:\windows\SysWOW64
2018-01-28 22:23:27 ----SHD---- C:\System Volume Information
2018-01-27 07:42:30 ----D---- C:\windows\system32\DriverStore
2018-01-24 09:27:01 ----D---- C:\windows\CbsTemp
2018-01-24 09:24:30 ----D---- C:\windows\system32\catroot2
2018-01-22 20:57:04 ----D---- C:\windows\AppReadiness
2018-01-22 20:57:03 ----HD---- C:\Program Files\WindowsApps
2018-01-22 20:18:18 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-19 11:12:12 ----RSD---- C:\windows\assembly
2018-01-19 09:47:46 ----D---- C:\ProgramData\Realtek
2018-01-16 08:47:50 ----D---- C:\windows\system32\MRT
2018-01-16 08:43:06 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-01-16 08:43:01 ----AC---- C:\windows\system32\MRT.exe
2018-01-14 13:52:21 ----D---- C:\windows\rescache
2018-01-14 13:38:06 ----SHD---- C:\windows\Installer
2018-01-14 13:37:58 ----D---- C:\ProgramData\Microsoft Help
2018-01-11 13:41:08 ----RD---- C:\windows\ToastData
2018-01-11 13:41:07 ----D---- C:\windows\system32\Boot
2018-01-11 13:41:07 ----D---- C:\Program Files\Internet Explorer
2018-01-11 13:41:07 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-11 13:41:06 ----D---- C:\windows\apppatch
2018-01-10 10:06:12 ----D---- C:\windows\system32\Macromed
2018-01-10 10:06:10 ----D---- C:\windows\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2018-01-08 199448]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2018-01-08 343768]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2018-01-08 57696]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2018-01-08 84384]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2018-01-08 358672]
R0 hpdskflt;@oem11.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2015-07-16 682944]
R0 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-02-02 253880]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2014-02-03 49856]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2014-02-03 228544]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2014-02-03 131264]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2018-01-08 185096]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2018-01-08 321512]
R1 aswHdsKe;aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [2018-01-08 149344]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2017-09-12 41832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2018-01-08 110336]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2018-01-08 1025176]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2018-01-11 457896]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\windows\system32\drivers\mbae64.sys [2017-11-29 77432]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2018-01-11 146648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2018-01-08 204456]
R2 MBAMChameleon;MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [2018-02-02 193968]
R3 Accelerometer;@oem11.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 huawei_enumerator;huawei_enumerator; C:\windows\System32\drivers\ew_jubusenum.sys [2011-09-09 87040]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2016-09-30 4932072]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\windows\system32\DRIVERS\ikbevent.sys [2013-08-08 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\windows\system32\DRIVERS\imsevent.sys [2013-08-08 21920]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2013-08-07 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2016-01-26 4275288]
R3 ISCT;@oem29.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\windows\System32\drivers\ISCTD64.sys [2013-08-07 46568]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2015-11-17 39920]
R3 MBAMFarflt;MBAMFarflt; C:\windows\system32\DRIVERS\farflt.sys [2018-02-05 110016]
R3 MBAMProtection;MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [2018-02-05 46008]
R3 MBAMWebProtection;MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [2018-02-05 94144]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RtkBtFilter;@oem24.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\windows\system32\DRIVERS\RtkBtfilter.sys [2015-06-02 598272]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem35.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2014-03-21 476888]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;HP HD Webcam [Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-03-05 9109720]
R3 RTWlanE;@oem79.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\windows\system32\DRIVERS\rtwlane.sys [2015-04-16 3785432]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem101.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2017-11-22 639576]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2018-01-08 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem13.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbccgpfilter;@oem95.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\windows\System32\drivers\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 ew_usbenumfilter;@oem63.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\windows\System32\drivers\ew_usbenumfilter.sys [2010-03-20 13952]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\System32\drivers\ew_juextctrl.sys [2011-09-09 28672]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2015-11-17 51704]
S3 IntcDAud;@oem87.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-02-06 460048]
S3 RimUsb;@oem60.inf,%RimUsb.DeviceDesc%;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2014-04-08 30448]
S3 SmbDrvI;SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [2014-04-08 31472]
S3 ssudmdm;@oem100.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-08 301168]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2015-09-18 125656]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-04-03 500048]
R2 HP Hotkey Service;HP Hotkey Service; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe [2015-08-03 850144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2014-06-24 176128]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem11.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-24 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-09 18856]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2016-09-30 344184]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-09-06 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-11-01 6234056]
R2 MSSQL$SQL_SMSGALAXY;SQL Server (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe [2012-02-11 206424]
R2 PDF Architect 3 Creator;PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [2015-09-17 767712]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-01-26 292568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-22 255576]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-08 7538536]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-07-01 1102376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-10 272384]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-04 52832]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2016-09-30 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [2015-09-17 964832]
S3 PDF Architect 3;PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2015-09-17 2244832]
S4 SQLAgent$SQL_SMSGALAXY;SQL Server Agent (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 438360]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
-----------------EOF-----------------
Run by Katka at 2018-02-05 08:51:01
Microsoft Windows 8.1
System drive C: has 374 GB (81%) free of 463 GB
Total RAM: 3968 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:51:04, on 5. 2. 2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)
Boot mode: Normal
Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\CPP\CppKalkulacky\CppCalcServer.exe
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Katka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: PDF Architect 3 Helper - {06E08260-0695-4EC1-A74B-1310D8899D93} - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SP_WSPCHK] "C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe"
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: CPP - CalcServer.lnk = C:\CPP\CppKalkulacky\CppCalcServer.exe
O4 - Startup: Kooperativa - PDF Server.lnk = C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
O4 - Global Startup: ISCTSystray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Hotkey Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem11.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Architect 3 - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\ws.exe
O23 - Service: PDF Architect 3 CrashHandler - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe
O23 - Service: PDF Architect 3 Creator - pdfforge GmbH - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15577 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SC
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\vcsFPService.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\system32\WLANExt.exe 353691727296
\??\C:\windows\system32\conhost.exe 0x4
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe"
dashost.exe {e8dd4cc4-1d9a-4545-b1f90df97665fd32}
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe" -sSQL_SMSGALAXY
"C:\Program Files (x86)\PDF Architect 3\creator-ws.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
igfxHK.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
ClassicStartMenu.exe -startup
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --ran-launcher --started-from-shortcut
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\RtsCM64.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera_crashreporter.exe" --ran-launcher --started-from-shortcut --crash-reporter-parent-id=6848
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=gpu-process --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.14.4432 --gpu-driver-date=4-8-2016 --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --service-request-channel-token=B256F4AFB3245FF0B6D82835322C8F0F --mojo-platform-channel-handle=1772 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=991D1ED1FDD5A029E9E0AB9433FB85DA --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=991D1ED1FDD5A029E9E0AB9433FB85DA --renderer-client-id=4 --mojo-platform-channel-handle=3024 /prefetch:1
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=40AA31C743F963C0A48B2404F42B2159 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=40AA31C743F963C0A48B2404F42B2159 --renderer-client-id=6 --mojo-platform-channel-handle=3100 /prefetch:1
AvastUI.exe /nogui
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files (x86)\Opera\50.0.2762.67\opera.exe" --type=renderer --field-trial-handle=1736,10052830472188966755,17193339870355492690,131072 --service-pipe-token=3042575F59603EB80EA98B3A2F0C4247 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --with-feature:installer-experiment-test=off --with-feature:installer-direct-unpacking=on --with-feature:installer-use-minimal-package=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-support-x64-download=on --crash-reporter-pid=6984 --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=3042575F59603EB80EA98B3A2F0C4247 --renderer-client-id=3 --mojo-platform-channel-handle=5148 /prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\CPP\CppKalkulacky\CppCalcServer.exe"
"C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE" /logon
C:\windows\splwow64.exe 8192
C:\windows\system32\PrintIsolationHost.exe -Embedding
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\SysWOW64\WerFault.exe -u -p 8432 -s 1256
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Katka\Desktop\Aplikace plocha\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForKatka.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForKatka (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21 440712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93}]
PDF Architect 3 Helper - C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-09-17 38112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-02-05 129240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-08-23 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-08-23 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-01-26 7659224]
"RtsCM"=C:\windows\RTSCM64.EXE [2014-03-05 160472]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-12-08 71168]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-08 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2011-11-22 1363984]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2014-10-29 479744]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-02-05 2213592]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
""= []
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2015-08-03 430120]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2014-08-19 330176]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2015-04-20 1298456]
"SP_WSPCHK"=C:\Program Files\Common Files\SOFTPRO\Shared\SP_WspInit.exe [2013-12-02 122208]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ISCTSystray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Users\Katka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CPP - CalcServer.lnk - C:\CPP\CppKalkulacky\CppCalcServer.exe
Kooperativa - PDF Server.lnk - C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-02-05 08:48:20 ----D---- C:\ProgramData\SWCUTemp
2018-02-02 20:54:38 ----A---- C:\windows\system32\drivers\MbamChameleon.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mwac.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\mbam.sys
2018-02-02 20:54:30 ----A---- C:\windows\system32\drivers\farflt.sys
2018-02-02 20:54:19 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-02-02 20:54:10 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-02-02 20:54:03 ----D---- C:\Program Files\Malwarebytes
2018-02-02 20:53:56 ----D---- C:\ProgramData\MB2Migration
2018-02-02 20:51:35 ----D---- C:\ProgramData\Malwarebytes
2018-02-02 20:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-02-01 09:40:19 ----HD---- C:\$AV_ASW
2018-01-24 09:21:37 ----A---- C:\windows\system32\aspnet_counters.dll
2018-01-24 09:21:34 ----A---- C:\windows\system32\msvcr100_clr0400.dll
2018-01-24 09:21:32 ----A---- C:\windows\SYSWOW64\aspnet_counters.dll
2018-01-24 09:21:29 ----A---- C:\windows\SYSWOW64\msvcr100_clr0400.dll
2018-01-11 13:47:45 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-01-09 12:18:16 ----A---- C:\windows\system32\drivers\afd.sys
2018-01-09 12:18:15 ----A---- C:\windows\system32\mshtml.dll
2018-01-09 12:18:12 ----A---- C:\windows\system32\shell32.dll
2018-01-09 12:18:11 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-01-09 12:18:09 ----A---- C:\windows\system32\ntoskrnl.exe
2018-01-09 12:18:09 ----A---- C:\windows\system32\glcndFilter.dll
2018-01-09 12:18:08 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-01-09 12:18:06 ----A---- C:\windows\system32\jscript9.dll
2018-01-09 12:18:05 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2018-01-09 12:18:04 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2018-01-09 12:18:04 ----A---- C:\windows\system32\win32k.sys
2018-01-09 12:18:03 ----A---- C:\windows\system32\ieframe.dll
2018-01-09 12:18:02 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\rdpcorets.dll
2018-01-09 12:18:01 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-01-09 12:18:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-01-09 12:18:00 ----A---- C:\windows\system32\iertutil.dll
2018-01-09 12:17:59 ----A---- C:\windows\system32\drivers\ntfs.sys
2018-01-09 12:17:46 ----A---- C:\windows\SYSWOW64\combase.dll
2018-01-09 12:17:39 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-01-09 12:17:34 ----A---- C:\windows\system32\wininet.dll
2018-01-09 12:17:31 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-01-09 12:17:26 ----A---- C:\windows\system32\combase.dll
2018-01-09 12:17:24 ----A---- C:\windows\system32\winresume.exe
2018-01-09 12:17:22 ----A---- C:\windows\system32\winload.exe
2018-01-09 12:17:21 ----A---- C:\windows\system32\ole32.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\KernelBase.dll
2018-01-09 12:17:21 ----A---- C:\windows\system32\drivers\http.sys
2018-01-09 12:17:20 ----A---- C:\windows\system32\msxml6.dll
2018-01-09 12:17:20 ----A---- C:\windows\system32\lsasrv.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\winhttp.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-01-09 12:17:14 ----A---- C:\windows\system32\hal.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\winhttp.dll
2018-01-09 12:17:13 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\wevtsvc.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\rpcss.dll
2018-01-09 12:17:13 ----A---- C:\windows\system32\ieui.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\ntdll.dll
2018-01-09 12:17:12 ----A---- C:\windows\system32\drivers\srv2.sys
2018-01-09 12:17:12 ----A---- C:\windows\system32\advapi32.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\urlmon.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\jscript9diag.dll
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\rdyboost.sys
2018-01-09 12:17:11 ----A---- C:\windows\system32\drivers\fltMgr.sys
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-01-09 12:17:10 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\schedsvc.dll
2018-01-09 12:17:10 ----A---- C:\windows\system32\drivers\cng.sys
2018-01-09 12:17:09 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\rpcrt4.dll
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\srv.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\drivers\fvevol.sys
2018-01-09 12:17:09 ----A---- C:\windows\system32\atmfd.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\msxml6.dll
2018-01-09 12:17:08 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2018-01-09 12:17:08 ----A---- C:\windows\system32\BFE.DLL
2018-01-09 12:17:08 ----A---- C:\windows\system32\bcryptprimitives.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-01-09 12:17:07 ----A---- C:\windows\SYSWOW64\atmfd.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\wow64.dll
2018-01-09 12:17:07 ----A---- C:\windows\system32\pcasvc.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-01-09 12:17:06 ----A---- C:\windows\SYSWOW64\rascfg.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\sysmain.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\ncsi.dll
2018-01-09 12:17:06 ----A---- C:\windows\system32\iedkcs32.dll
2018-01-09 12:17:05 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\nshwfp.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\jscript.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\certcli.dll
2018-01-09 12:17:05 ----A---- C:\windows\system32\actxprxy.dll
2018-01-09 12:17:04 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\wcncsvc.dll
2018-01-09 12:17:04 ----A---- C:\windows\system32\spoolsv.exe
2018-01-09 12:17:04 ----A---- C:\windows\system32\rascfg.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-01-09 12:17:03 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\winlogon.exe
2018-01-09 12:17:03 ----A---- C:\windows\system32\inetcomm.dll
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2018-01-09 12:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:02 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\wlansvc.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\WinTypes.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\msfeeds.dll
2018-01-09 12:17:02 ----A---- C:\windows\system32\IKEEXT.DLL
2018-01-09 12:17:01 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\Windows.Storage.ApplicationData.dll
2018-01-09 12:17:01 ----A---- C:\windows\system32\drivers\wanarp.sys
2018-01-09 12:17:00 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\webcheck.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\nlasvc.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\msrating.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\ieapfltr.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\fontsub.dll
2018-01-09 12:17:00 ----A---- C:\windows\system32\drivers\pacer.sys
2018-01-09 12:16:59 ----A---- C:\windows\SYSWOW64\fontsub.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2018-01-09 12:16:57 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\WcnApi.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\p2psvc.dll
2018-01-09 12:16:57 ----A---- C:\windows\system32\fdWCN.dll
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-01-09 12:16:56 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\rdbss.sys
2018-01-09 12:16:56 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\vbscript.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\pnrpsvc.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\P2P.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\dxtmsft.dll
2018-01-09 12:16:55 ----A---- C:\windows\system32\drivers\ndproxy.sys
2018-01-09 12:16:54 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\rfxvmt.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\pcalua.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\nlaapi.dll
2018-01-09 12:16:54 ----A---- C:\windows\system32\ieetwcollector.exe
2018-01-09 12:16:54 ----A---- C:\windows\system32\drivers\srvnet.sys
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2018-01-09 12:16:53 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\nwifi.sys
2018-01-09 12:16:53 ----A---- C:\windows\system32\drivers\netbios.sys
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\fdWCN.dll
2018-01-09 12:16:52 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\inseng.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\ie4uinit.exe
2018-01-09 12:16:52 ----A---- C:\windows\system32\dxtrans.dll
2018-01-09 12:16:52 ----A---- C:\windows\system32\drivers\ndistapi.sys
2018-01-09 12:16:52 ----A---- C:\windows\system32\appinfo.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\WcnApi.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-01-09 12:16:51 ----A---- C:\windows\SYSWOW64\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\rasdiag.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\iepeers.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\icfupgd.dll
2018-01-09 12:16:51 ----A---- C:\windows\system32\FirewallAPI.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\rasdiag.dll
2018-01-09 12:16:50 ----A---- C:\windows\SYSWOW64\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasser.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\rasmxs.dll
2018-01-09 12:16:50 ----A---- C:\windows\system32\atmlib.dll
2018-01-09 12:16:50 ----A---- C:\windows\splwow64.exe
2018-01-08 21:36:16 ----A---- C:\windows\system32\drivers\aswHdsKe.sys
2018-01-08 21:36:08 ----A---- C:\windows\system32\aswBoot.exe
======List of files/folders modified in the last 1 month======
2018-02-05 08:51:03 ----D---- C:\Program Files\trend micro
2018-02-05 08:50:34 ----D---- C:\windows\Temp
2018-02-05 08:49:37 ----D---- C:\Users\Katka\AppData\Roaming\Skype
2018-02-05 08:49:35 ----D---- C:\windows\Prefetch
2018-02-05 08:48:35 ----D---- C:\windows\system32\drivers
2018-02-05 08:48:29 ----D---- C:\Windows
2018-02-05 08:48:20 ----HD---- C:\ProgramData
2018-02-05 08:42:25 ----D---- C:\Program Files (x86)\Opera
2018-02-05 08:39:20 ----D---- C:\windows\system32\sru
2018-02-03 21:07:32 ----D---- C:\windows\Inf
2018-02-03 12:17:35 ----D---- C:\Users\Katka\AppData\Roaming\ClassicShell
2018-02-02 21:35:29 ----D---- C:\AdwCleaner
2018-02-02 21:09:48 ----RD---- C:\windows\System32
2018-02-02 21:09:48 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-02-02 21:07:36 ----D---- C:\GALAXY
2018-02-02 20:54:03 ----RD---- C:\Program Files
2018-02-02 20:51:35 ----RD---- C:\Program Files (x86)
2018-02-02 20:33:57 ----D---- C:\Users\Katka\AppData\Roaming\TeamViewer
2018-02-02 20:33:47 ----D---- C:\windows\Panther
2018-02-02 20:33:47 ----D---- C:\windows\ModemLogs
2018-02-02 20:33:41 ----D---- C:\windows\Minidump
2018-02-02 20:33:41 ----D---- C:\windows\debug
2018-02-02 13:00:10 ----D---- C:\windows\Tasks
2018-02-02 13:00:10 ----D---- C:\windows\system32\Tasks
2018-02-02 12:23:32 ----D---- C:\windows\Microsoft.NET
2018-02-01 12:34:39 ----D---- C:\ProgramData\CanonIJPLM
2018-02-01 09:50:23 ----D---- C:\ProgramData\firebird
2018-01-31 09:00:51 ----D---- C:\windows\system32\config
2018-01-30 09:32:11 ----D---- C:\windows\WinSxS
2018-01-30 09:26:28 ----D---- C:\windows\SysWOW64
2018-01-28 22:23:27 ----SHD---- C:\System Volume Information
2018-01-27 07:42:30 ----D---- C:\windows\system32\DriverStore
2018-01-24 09:27:01 ----D---- C:\windows\CbsTemp
2018-01-24 09:24:30 ----D---- C:\windows\system32\catroot2
2018-01-22 20:57:04 ----D---- C:\windows\AppReadiness
2018-01-22 20:57:03 ----HD---- C:\Program Files\WindowsApps
2018-01-22 20:18:18 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-19 11:12:12 ----RSD---- C:\windows\assembly
2018-01-19 09:47:46 ----D---- C:\ProgramData\Realtek
2018-01-16 08:47:50 ----D---- C:\windows\system32\MRT
2018-01-16 08:43:06 ----AC---- C:\windows\system32\MRT-KB890830.exe
2018-01-16 08:43:01 ----AC---- C:\windows\system32\MRT.exe
2018-01-14 13:52:21 ----D---- C:\windows\rescache
2018-01-14 13:38:06 ----SHD---- C:\windows\Installer
2018-01-14 13:37:58 ----D---- C:\ProgramData\Microsoft Help
2018-01-11 13:41:08 ----RD---- C:\windows\ToastData
2018-01-11 13:41:07 ----D---- C:\windows\system32\Boot
2018-01-11 13:41:07 ----D---- C:\Program Files\Internet Explorer
2018-01-11 13:41:07 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-11 13:41:06 ----D---- C:\windows\apppatch
2018-01-10 10:06:12 ----D---- C:\windows\system32\Macromed
2018-01-10 10:06:10 ----D---- C:\windows\SYSWOW64\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\windows\system32\drivers\aswbidsha.sys [2018-01-08 199448]
R0 aswblog;aswblog; C:\windows\system32\drivers\aswbloga.sys [2018-01-08 343768]
R0 aswbuniv;aswbuniv; C:\windows\system32\drivers\aswbuniva.sys [2018-01-08 57696]
R0 aswRvrt;aswRvrt; C:\windows\system32\drivers\aswRvrt.sys [2018-01-08 84384]
R0 aswVmm;aswVmm; C:\windows\system32\drivers\aswVmm.sys [2018-01-08 358672]
R0 hpdskflt;@oem11.inf,%service_desc%;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2015-06-29 40624]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2015-07-16 682944]
R0 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-02-02 253880]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2014-02-03 49856]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2014-02-03 228544]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2014-02-03 131264]
R1 aswArPot;aswArPot; C:\windows\system32\drivers\aswArPot.sys [2018-01-08 185096]
R1 aswbidsdriver;aswbidsdriver; C:\windows\system32\drivers\aswbidsdrivera.sys [2018-01-08 321512]
R1 aswHdsKe;aswHdsKe; C:\windows\system32\drivers\aswHdsKe.sys [2018-01-08 149344]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2017-09-12 41832]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2018-01-08 110336]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2018-01-08 1025176]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2018-01-11 457896]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\windows\system32\drivers\mbae64.sys [2017-11-29 77432]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2018-01-11 146648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2018-01-08 204456]
R2 MBAMChameleon;MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [2018-02-02 193968]
R3 Accelerometer;@oem11.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2015-06-29 53424]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\System32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 huawei_enumerator;huawei_enumerator; C:\windows\System32\drivers\ew_jubusenum.sys [2011-09-09 87040]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2016-09-30 4932072]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\windows\system32\DRIVERS\ikbevent.sys [2013-08-08 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\windows\system32\DRIVERS\imsevent.sys [2013-08-08 21920]
R3 INETMON;INETMON; \??\C:\windows\System32\Drivers\INETMON.sys [2013-08-07 29088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2016-01-26 4275288]
R3 ISCT;@oem29.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\windows\System32\drivers\ISCTD64.sys [2013-08-07 46568]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2015-11-17 39920]
R3 MBAMFarflt;MBAMFarflt; C:\windows\system32\DRIVERS\farflt.sys [2018-02-05 110016]
R3 MBAMProtection;MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [2018-02-05 46008]
R3 MBAMWebProtection;MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [2018-02-05 94144]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\TeeDriverx64.sys [2014-10-10 129312]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RtkBtFilter;@oem24.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\windows\system32\DRIVERS\RtkBtfilter.sys [2015-06-02 598272]
R3 RTL8168;@oem14.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem35.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\windows\system32\DRIVERS\RtsPer.sys [2014-03-21 476888]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;HP HD Webcam [Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2014-03-05 9109720]
R3 RTWlanE;@oem79.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\windows\system32\DRIVERS\rtwlane.sys [2015-04-16 3785432]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem101.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2017-11-22 639576]
S3 aswHwid;aswHwid; C:\windows\system32\drivers\aswHwid.sys [2018-01-08 46976]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dg_ssudbus;@oem13.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\windows\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 117248]
S3 ew_usbccgpfilter;@oem95.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\windows\System32\drivers\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 ew_usbenumfilter;@oem63.inf,%busupper.SVCDESC%;huawei_CompositeFilter; C:\windows\System32\drivers\ew_usbenumfilter.sys [2010-03-20 13952]
S3 huawei_cdcacm;huawei_cdcacm; C:\windows\system32\DRIVERS\ew_jucdcacm.sys [2011-09-09 98304]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\windows\System32\drivers\ew_juextctrl.sys [2011-09-09 28672]
S3 huawei_wwanecm;huawei_wwanecm; C:\windows\system32\DRIVERS\ew_juwwanecm.sys [2011-09-09 218624]
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2015-11-17 51704]
S3 IntcDAud;@oem87.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2016-02-06 460048]
S3 RimUsb;@oem60.inf,%RimUsb.DeviceDesc%;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 SmbDrv;SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [2014-04-08 30448]
S3 SmbDrvI;SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [2014-04-08 31472]
S3 ssudmdm;@oem100.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-06-24 123120]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2014-10-29 38792]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-08 301168]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2015-09-18 125656]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-04-03 500048]
R2 HP Hotkey Service;HP Hotkey Service; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HotkeyService.exe [2015-08-03 850144]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2014-06-24 176128]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-02-05 1758936]
R2 hpsrv;@oem11.inf,%hpservice_desc%;HP Service; C:\windows\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-24 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-09 18856]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2016-09-30 344184]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; c:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-09-06 198120]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-11-01 6234056]
R2 MSSQL$SQL_SMSGALAXY;SQL Server (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\sqlservr.exe [2012-02-11 206424]
R2 PDF Architect 3 Creator;PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [2015-09-17 767712]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-01-26 292568]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2017-11-22 255576]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-08 7538536]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-07-01 1102376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-10 272384]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-04 52832]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2016-09-30 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-12 136120]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-12-10 372408]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [2015-09-17 964832]
S3 PDF Architect 3;PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2015-09-17 2244832]
S4 SQLAgent$SQL_SMSGALAXY;SQL Server Agent (SQL_SMSGALAXY); c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.SQL_SMSGALAXY\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 438360]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB zpomalený
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB zpomalený
Zdá se, že vše jede svižněji.
Děkuji
Děkuji
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB zpomalený
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?