Shredder

[NeZnayu]

Mmm zdravím.. nevím kam jinam bych to zařadila neznám tohle forum a v pc se nijak významně nevyznám...

Mám cca půl roku nový notebook a po aktualizaci na win 8.1 mi při otevírání souborů a složek vyhodí nějaký otravný humus, o kterém jsem nikdy dřív nevěděla a celkově se mi zdá počítač pomalejší... Nevím jak se toho zbavit :)





Předem děkuji :)

[Márty84]

Zdravim

Na tom prvnim obrazku v tom radku Use source zjistete cely nazev toho souboru a zkopirujte mi ho.

Dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786 . Kdyz bude dlouhy a nevejde se do jednoho prispevku, rozdelte ho na dve (pripadne vice) casti.

[NeZnayu]

Tohle je okopírovaný řádek pod Use source:
C:\Users\Administrator\AppData\Local\Downloaded Installations\{45DE3BB5-15C7-489B-8F80-82349413953E}\

Tohle když kliknu na Browse...


A tu je ten log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Dominika at 2014-05-09 11:18:29
Microsoft Windows 8.1
System drive C: has 508 GB (54%) free of 933 GB
Total RAM: 3909 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:21:33, on 9. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\18.1.5\ScriptHelper.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\WINDOWS\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Ekura\game.exe
C:\Program Files (x86)\Ekura\game.exe
C:\Program Files (x86)\Ekura\game.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Dominika.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_s ... 6&tsp=5238
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.5\ViProtocol.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.1.5 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe

--
End of file - 10825 bytes

======Listing Processes======

c:\PROGRA~2\AVG\AVG2014\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe /pipeName=fadce36d-f684-4378-816e-48367c60b75f /coreSdkOptions=4382 /logConfFile="C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg2014\temp\fc62756c-0344-4075-8956-5b737bcc8b5b-1c0-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2014\" /tempPath="C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg2014\temp\" /logPath="C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg2014\log\"
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe"
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
dashost.exe {a965d914-4716-49c4-b7f622fb3bd95e12}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgemca.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4668.0.458183168\381523867" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,28 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.2.1925947042\1293600829" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.3.1547559783\1185851531" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.4.706102042\347383906" /prefetch:673131151
"C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.6.188394774\674962794" /prefetch:673131151
"C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
C:\WINDOWS\system32\cmd.exe /c "C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\18.1.5\ScriptHelper.exe" --parent-window=0 chrome-extension://ndibdjnfmopecpmkdieinmbadjfpblof/ < \\.\pipe\chrome.nativeMessaging.in.71fdb56fda9036c > \\.\pipe\chrome.nativeMessaging.out.71fdb56fda9036c
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\AVG Secure Search\ScriptHelperInstaller\18.1.5\ScriptHelper.exe" --parent-window=0 chrome-extension://ndibdjnfmopecpmkdieinmbadjfpblof/
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
ctfmon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files (x86)\Ekura\launcher.exe"
"C:\Program Files (x86)\Ekura\game.exe"
"C:\Program Files (x86)\Ekura\game.exe"
"C:\Program Files (x86)\Ekura\game.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.16.384995676\939910966" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.17.846301983\1480518215" /prefetch:673131151
"C:\Users\Dominika\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group2 pct:10b stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/Bootstrap/FlashHardwareVideoDecode/Disabled/GoogleNow/Default/OmniboxBundledExperimentV1/NewSuggestType_A2_Stable_R1/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-1-Percent/default/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="4668.19.986507813\1860373543" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4668.20.1595931027\1689186383" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-30 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG SafeGuard toolbar - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll [2014-05-08 3592728]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-30 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG SafeGuard toolbar - C:\Program Files\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll [2014-05-08 6357016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG SafeGuard toolbar - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.5.512\AVG SafeGuard toolbar_toolbar.dll [2014-05-08 3592728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-29 442328]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20922016]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-02-14 111216]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-11-15 1861968]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2014-04-06 5180432]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-04-15 3814736]
"vProt"=C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2014-05-08 2561560]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rjatydimofu.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe]
"Debugger="tasklist.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe]
"Debugger="tasklist.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-05-09 11:18:30 ----D---- C:\Program Files\trend micro
2014-05-09 11:18:29 ----D---- C:\rsit
2014-05-08 22:53:37 ----D---- C:\ProgramData\AVG Secure Search
2014-05-08 17:16:35 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-05-08 17:02:52 ----D---- C:\Program Files (x86)\Metro 2033 Demo
2014-05-08 15:59:37 ----D---- C:\Program Files\CCleaner
2014-05-05 16:02:09 ----D---- C:\Program Files\HWiNFO64
2014-05-05 16:00:35 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2014-05-05 16:00:17 ----D---- C:\Program Files (x86)\HWiNFO32
2014-05-02 15:40:03 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-05-02 15:40:01 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-04-28 00:57:03 ----RD---- C:\WINDOWS\BrowserChoice
2014-04-27 22:00:49 ----D---- C:\Program Files\AVG SafeGuard toolbar
2014-04-27 16:50:50 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-04-27 16:50:44 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-04-27 16:50:42 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-04-25 22:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfc71.dll
2014-04-25 21:33:47 ----D---- C:\Users\Dominika\AppData\Roaming\AVG
2014-04-25 21:31:33 ----D---- C:\ProgramData\AVG
2014-04-25 21:31:06 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-04-25 21:08:16 ----DC---- C:\WINDOWS\Panther
2014-04-25 21:07:15 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-04-25 21:07:15 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-04-25 21:07:15 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-04-25 21:07:15 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-04-25 21:07:15 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-04-25 21:06:31 ----A---- C:\WINDOWS\system32\cdd.dll
2014-04-25 21:06:30 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-04-25 21:06:30 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-04-25 21:06:30 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\userenv.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\twinui.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\spp.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\shell32.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\propsys.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\pdh.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\ole32.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\localspl.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\Display.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\authui.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\system32\aclui.dll
2014-04-25 21:06:30 ----A---- C:\WINDOWS\explorer.exe
2014-04-25 21:02:50 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-04-25 21:02:50 ----D---- C:\Program Files (x86)\MSBuild
2014-04-25 21:02:49 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-04-25 21:02:49 ----D---- C:\Program Files\Reference Assemblies
2014-04-25 21:02:49 ----D---- C:\Program Files\MSBuild
2014-04-25 21:02:01 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-04-25 21:02:00 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-04-25 21:02:00 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-04-25 21:01:59 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-04-25 21:01:58 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-04-25 21:01:57 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-04-25 20:39:02 ----D---- C:\Users\Dominika\AppData\Roaming\Identities
2014-04-25 20:34:31 ----SHD---- C:\ProgramData\Šablony
2014-04-25 20:34:31 ----SHD---- C:\ProgramData\Plocha
2014-04-25 20:34:31 ----SHD---- C:\ProgramData\Nabídka Start
2014-04-25 20:34:31 ----SHD---- C:\ProgramData\Dokumenty
2014-04-25 20:34:31 ----SHD---- C:\ProgramData\Data aplikací
2014-04-25 20:33:25 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2014-04-25 20:18:58 ----SD---- C:\Users\Dominika\AppData\Roaming\Microsoft
2014-04-25 20:11:53 ----D---- C:\Program Files\Realtek
2014-04-25 20:11:52 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2014-04-25 20:11:39 ----D---- C:\Program Files\Elantech
2014-04-25 20:11:22 ----D---- C:\Program Files (x86)\Intel
2014-04-25 20:10:12 ----D---- C:\WINDOWS\Prefetch
2014-04-25 15:50:32 ----A---- C:\WINDOWS\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gw64.sys
2014-04-22 19:50:18 ----D---- C:\Program Files (x86)\webporpoise
2014-04-21 10:44:56 ----D---- C:\The KMPlayer
2014-04-18 20:31:08 ----D---- C:\Users\Dominika\AppData\Roaming\CyberLink
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\zghsnet.sys
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\viahsser.sys
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\viahsets.sys
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\massfilter_hs.sys
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\ghsser.sys
2014-04-18 20:07:39 ----A---- C:\WINDOWS\system32\drivers\ghsnet.sys
2014-04-18 20:07:36 ----A---- C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2014-04-18 20:07:36 ----A---- C:\WINDOWS\system32\drivers\zghsser.sys
2014-04-18 20:07:35 ----D---- C:\Program Files\ZTE_Handset_USB_Driver
2014-04-18 20:07:35 ----A---- C:\WINDOWS\AdbWinUsbApi.dll
2014-04-18 20:07:35 ----A---- C:\WINDOWS\AdbWinApi.dll
2014-04-18 20:07:35 ----A---- C:\WINDOWS\adb.exe
2014-04-18 18:14:51 ----D---- C:\ProgramData\AVG Security Toolbar
2014-04-18 18:14:45 ----A---- C:\WINDOWS\system32\drivers\avgtpx64.sys
2014-04-18 18:14:39 ----D---- C:\ProgramData\AVG SafeGuard toolbar
2014-04-18 18:14:37 ----D---- C:\Program Files (x86)\AVG SafeGuard toolbar
2014-04-18 15:01:30 ----A---- C:\WINDOWS\system32\drivers\avgidsdrivera.sys
2014-04-18 12:17:41 ----D---- C:\Program Files (x86)\HammerMT2 Server 1 2014
2014-04-17 15:56:08 ----D---- C:\ProgramData\Caphyon
2014-04-17 15:56:07 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2014-04-17 15:55:39 ----D---- C:\Users\Dominika\AppData\Roaming\LaRoXion
2014-04-17 15:51:04 ----D---- C:\Fraps
2014-04-17 11:59:26 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-04-15 10:46:14 ----AH---- C:\WINDOWS\system32\drivers\Hamdrv.sys

[NeZnayu]

======List of files/folders modified in the last 1 month======

2014-05-09 11:21:15 ----D---- C:\Users\Dominika\AppData\Roaming\Skype
2014-05-09 11:20:25 ----D---- C:\WINDOWS\Temp
2014-05-09 11:18:30 ----RD---- C:\Program Files
2014-05-09 11:15:39 ----SHD---- C:\WINDOWS\Installer
2014-05-09 11:00:43 ----AD---- C:\Program Files (x86)\Ekura
2014-05-09 11:00:06 ----D---- C:\WINDOWS\system32\sru
2014-05-09 10:10:48 ----D---- C:\ProgramData\MFAData
2014-05-09 00:41:28 ----D---- C:\Users\Dominika\AppData\Roaming\uTorrent
2014-05-08 22:53:37 ----HD---- C:\ProgramData
2014-05-08 17:53:33 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-05-08 17:17:47 ----RSD---- C:\WINDOWS\assembly
2014-05-08 17:17:24 ----D---- C:\Windows
2014-05-08 17:16:47 ----D---- C:\WINDOWS\Logs
2014-05-08 17:16:35 ----RD---- C:\Program Files (x86)
2014-05-08 17:16:16 ----D---- C:\WINDOWS\system32\config
2014-05-08 17:14:19 ----D---- C:\Program Files (x86)\Common Files
2014-05-08 17:14:05 ----D---- C:\WINDOWS\WinSxS
2014-05-08 16:26:36 ----D---- C:\WINDOWS\SoftwareDistribution
2014-05-08 16:26:34 ----SHD---- C:\System Volume Information
2014-05-08 16:03:31 ----D---- C:\ProgramData\Acer
2014-05-08 16:03:24 ----D---- C:\Program Files (x86)\Acer
2014-05-08 16:01:34 ----D---- C:\WINDOWS\ModemLogs
2014-05-08 16:01:34 ----D---- C:\WINDOWS\Inf
2014-05-08 16:01:34 ----D---- C:\WINDOWS\debug
2014-05-08 15:59:39 ----D---- C:\WINDOWS\system32\Tasks
2014-05-08 15:22:37 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-07 20:52:04 ----D---- C:\WINDOWS\AppReadiness
2014-05-07 20:52:03 ----HD---- C:\Program Files\WindowsApps
2014-05-07 15:37:07 ----D---- C:\WINDOWS\CbsTemp
2014-05-05 16:00:35 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-05-04 14:30:31 ----D---- C:\WINDOWS\system32\wdi
2014-05-04 11:28:46 ----RD---- C:\WINDOWS\System32
2014-05-04 11:28:46 ----D---- C:\WINDOWS\SysWOW64
2014-05-03 23:48:38 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-05-03 23:47:21 ----D---- C:\WINDOWS\system32\drivers
2014-05-02 13:41:59 ----D---- C:\WINDOWS\system32\DriverStore
2014-04-29 22:12:38 ----D---- C:\WINDOWS\rescache
2014-04-28 13:26:28 ----D---- C:\ProgramData\Norton
2014-04-28 00:57:01 ----D---- C:\Program Files\Windows Defender
2014-04-28 00:57:01 ----D---- C:\Program Files (x86)\Windows Defender
2014-04-26 17:17:49 ----D---- C:\WINDOWS\SYSWOW64\config
2014-04-25 22:17:47 ----D---- C:\Program Files (x86)\AVG
2014-04-25 22:04:35 ----D---- C:\ProgramData\NortonInstaller
2014-04-25 21:48:32 ----D---- C:\Users\Dominika\AppData\Roaming\Sony
2014-04-25 21:15:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-25 21:08:08 ----SHD---- C:\Recovery
2014-04-25 21:07:01 ----RD---- C:\WINDOWS\ToastData
2014-04-25 21:07:01 ----D---- C:\WINDOWS\system32\wbem
2014-04-25 21:07:01 ----D---- C:\WINDOWS\system32\setup
2014-04-25 21:01:30 ----D---- C:\WINDOWS\system32\restore
2014-04-25 21:01:24 ----D---- C:\WINDOWS\apppatch
2014-04-25 20:44:29 ----HD---- C:\ProgramData\Common Files
2014-04-25 20:40:21 ----SHD---- C:\$Recycle.Bin
2014-04-25 20:34:31 ----D---- C:\Program Files\Windows NT
2014-04-25 20:33:56 ----D---- C:\WINDOWS\Registration
2014-04-25 20:33:33 ----D---- C:\WINDOWS\system32\LogFiles
2014-04-25 20:31:38 ----RSD---- C:\WINDOWS\Media
2014-04-25 20:24:36 ----D---- C:\WINDOWS\system32\Sysprep
2014-04-25 20:24:36 ----D---- C:\WINDOWS\system32\OEM
2014-04-25 20:24:35 ----RSD---- C:\WINDOWS\Fonts
2014-04-25 20:24:35 ----D---- C:\WINDOWS\Tasks
2014-04-25 20:24:35 ----D---- C:\WINDOWS\Help
2014-04-25 20:24:21 ----D---- C:\WINDOWS\WinStore
2014-04-25 20:24:21 ----D---- C:\WINDOWS\SYSWOW64\winrm
2014-04-25 20:24:20 ----D---- C:\WINDOWS\SYSWOW64\WCN
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\SMI
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2014-04-25 20:24:19 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2014-04-25 20:24:17 ----D---- C:\WINDOWS\SYSWOW64\IME
2014-04-25 20:24:16 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-04-25 20:24:16 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2014-04-25 20:24:16 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-04-25 20:24:15 ----D---- C:\WINDOWS\SYSWOW64\catroot
2014-04-25 20:24:13 ----D---- C:\WINDOWS\system32\winrm
2014-04-25 20:24:12 ----D---- C:\WINDOWS\system32\WCN
2014-04-25 20:24:11 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-04-25 20:24:11 ----D---- C:\WINDOWS\system32\spool
2014-04-25 20:24:08 ----D---- C:\WINDOWS\system32\slmgr
2014-04-25 20:24:08 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2014-04-25 20:24:04 ----D---- C:\WINDOWS\system32\oobe
2014-04-25 20:24:02 ----D---- C:\WINDOWS\system32\NDF
2014-04-25 20:24:02 ----D---- C:\WINDOWS\system32\MUI
2014-04-25 20:24:02 ----D---- C:\WINDOWS\system32\IME
2014-04-25 20:24:01 ----D---- C:\WINDOWS\system32\en-US
2014-04-25 20:24:00 ----D---- C:\WINDOWS\system32\cs-CZ
2014-04-25 20:22:49 ----D---- C:\WINDOWS\system32\Boot
2014-04-25 20:22:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-04-25 20:22:35 ----D---- C:\WINDOWS\IME
2014-04-25 20:22:32 ----D---- C:\WINDOWS\DigitalLocker
2014-04-25 20:22:31 ----RD---- C:\Users
2014-04-25 20:22:29 ----D---- C:\ProgramData\PRICache
2014-04-25 20:22:28 ----SD---- C:\ProgramData\Microsoft
2014-04-25 20:22:22 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2014-04-25 20:22:21 ----D---- C:\Program Files (x86)\Windows Media Player
2014-04-25 20:22:14 ----SHD---- C:\Program Files\Windows Sidebar
2014-04-25 20:22:14 ----D---- C:\Program Files\Windows Media Player
2014-04-25 20:22:13 ----D---- C:\Program Files\Windows Journal
2014-04-25 20:22:12 ----D---- C:\Program Files\Common Files\microsoft shared
2014-04-25 20:20:28 ----D---- C:\WINDOWS\system32\Recovery
2014-04-25 20:11:09 ----D---- C:\WINDOWS\system32\catroot2
2014-04-25 17:33:08 ----D---- C:\WINDOWS\AUInstallAgent
2014-04-23 09:58:30 ----A---- C:\WINDOWS\win.ini
2014-04-23 02:24:21 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-04-22 20:22:12 ----D---- C:\Users\Dominika\AppData\Roaming\systweak
2014-04-17 15:53:53 ----AD---- C:\ProgramData\Temp
2014-04-15 19:59:59 ----D---- C:\ProgramData\systemk

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\WINDOWS\System32\drivers\ACPI.sys [2014-03-18 539992]
R0 acpiex;Microsoft ACPIEx Driver; C:\WINDOWS\System32\Drivers\acpiex.sys [2013-08-22 79712]
R0 AVGIDSHA;AVGIDSHA; C:\WINDOWS\system32\DRIVERS\avgidsha.sys [2014-03-27 192792]
R0 Avgloga;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avgloga.sys [2014-03-27 324376]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx64.sys [2014-03-31 130840]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx64.sys [2014-03-27 32536]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\WINDOWS\System32\drivers\CLFS.sys [2014-04-25 376152]
R0 CNG;CNG; C:\WINDOWS\System32\Drivers\cng.sys [2014-04-25 565536]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\WINDOWS\System32\drivers\disk.sys [2013-08-22 100192]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\WINDOWS\System32\drivers\EhStorClass.sys [2013-08-22 82784]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\WINDOWS\System32\drivers\fileinfo.sys [2014-03-18 79192]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\WINDOWS\system32\drivers\fltmgr.sys [2014-03-18 360792]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\WINDOWS\System32\DRIVERS\fvevol.sys [2014-03-18 590168]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 intelpep;@intelpep.inf,%INTELPEP.SVCDESC%;Intel(R) Power Engine Plug-in Driver; C:\WINDOWS\System32\drivers\intelpep.sys [2014-03-18 39768]
R0 KSecDD;KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [2014-03-18 101208]
R0 KSecPkg;KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [2014-04-25 180056]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\WINDOWS\System32\drivers\mountmgr.sys [2013-08-22 101728]
R0 msisadrv;msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [2013-08-22 17248]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\WINDOWS\System32\Drivers\mup.sys [2013-08-22 78688]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\WINDOWS\system32\drivers\ndis.sys [2014-03-18 1118552]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\WINDOWS\System32\drivers\partmgr.sys [2013-08-22 88928]
R0 pci;@machine.inf,%pci_svcdesc%;Řadič sběrnice PCI; C:\WINDOWS\System32\drivers\pci.sys [2014-03-18 280920]
R0 pcw;Performance Counters for Windows Driver; C:\WINDOWS\System32\drivers\pcw.sys [2013-08-22 50016]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\WINDOWS\system32\drivers\pdc.sys [2014-03-18 86872]
R0 rdyboost;ReadyBoost; C:\WINDOWS\System32\drivers\rdyboost.sys [2014-03-18 249688]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\WINDOWS\System32\drivers\spaceport.sys [2014-03-18 384856]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\WINDOWS\System32\drivers\tcpip.sys [2014-04-25 2519384]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\WINDOWS\System32\drivers\vdrvroot.sys [2013-08-22 37728]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\WINDOWS\System32\drivers\volmgr.sys [2013-08-22 73568]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\WINDOWS\System32\drivers\volmgrx.sys [2013-08-22 377696]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\WINDOWS\System32\drivers\volsnap.sys [2014-03-18 311640]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\WINDOWS\system32\drivers\Wdf01000.sys [2013-08-22 839488]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\WINDOWS\system32\DRIVERS\wfplwfs.sys [2014-04-25 136024]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\WINDOWS\system32\drivers\afd.sys [2013-08-22 567296]
R1 ahcache;@%systemroot%\system32\drivers\ahcache.sys,-102; C:\WINDOWS\system32\DRIVERS\ahcache.sys [2013-08-22 76800]
R1 Avgdiska;AVG Disk Driver; C:\WINDOWS\system32\DRIVERS\avgdiska.sys [2014-03-27 153368]
R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys [2014-04-18 237336]
R1 Avgldx64;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx64.sys [2014-03-27 236824]
R1 avgtp;avgtp; \??\C:\WINDOWS\system32\drivers\avgtpx64.sys [2014-05-08 50464]
R1 Avgwfpa;AVG Firewall Driver; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [2014-03-31 274712]
R1 BasicDisplay;BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [2013-08-22 50688]
R1 BasicRender;BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [2014-03-18 33280]
R1 Beep;Beep; C:\WINDOWS\system32\drivers\Beep.sys [2013-08-22 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\WINDOWS\System32\drivers\cdrom.sys [2013-08-22 164352]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\WINDOWS\System32\Drivers\dfsc.sys [2014-04-25 134144]
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622;F06DEFF2-5B9C-490D-910F-35D3A9119622; \??\C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg [2014-04-10 36240]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2014-05-05 31648]
R1 Msfs;Msfs; C:\WINDOWS\system32\drivers\Msfs.sys [2013-08-22 30208]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\WINDOWS\System32\drivers\mssmbios.sys [2013-08-22 37728]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-11-22 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-11-22 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-11-22 62776]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\WINDOWS\system32\DRIVERS\netbios.sys [2013-08-22 48128]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\WINDOWS\System32\DRIVERS\netbt.sys [2013-08-22 282624]
R1 Npfs;Npfs; C:\WINDOWS\system32\drivers\Npfs.sys [2013-08-22 58880]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\WINDOWS\System32\drivers\npsvctrig.sys [2013-08-22 23040]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\WINDOWS\system32\drivers\nsiproxy.sys [2013-08-22 39936]
R1 Null;Null; C:\WINDOWS\system32\drivers\Null.sys [2013-08-22 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\WINDOWS\system32\DRIVERS\pacer.sys [2013-08-22 151552]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\WINDOWS\system32\DRIVERS\rdbss.sys [2014-03-18 408576]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\WINDOWS\system32\DRIVERS\tdx.sys [2013-08-22 107520]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\WINDOWS\system32\DRIVERS\wanarp.sys [2013-08-22 79872]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\WINDOWS\system32\DRIVERS\lltdio.sys [2013-08-22 59392]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\WINDOWS\system32\drivers\luafv.sys [2014-03-18 124416]
R2 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys [2014-04-25 283648]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\WINDOWS\system32\DRIVERS\nwifi.sys [2014-04-25 443392]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\WINDOWS\system32\drivers\Ndu.sys [2013-08-22 103424]
R2 PEAUTH;PEAUTH; C:\WINDOWS\system32\drivers\peauth.sys [2014-03-18 663040]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2013-08-22 80384]
R2 secdrv;Security Driver; C:\WINDOWS\system32\drivers\secdrv.sys [2013-08-22 23040]
R2 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\WINDOWS\System32\DRIVERS\srv.sys [2014-03-18 454656]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\WINDOWS\System32\drivers\tcpipreg.sys [2014-04-25 49152]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-06-18 3680256]
R3 b57xdbd;@oem27.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem27.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\WINDOWS\system32\DRIVERS\bowser.sys [2013-08-22 102912]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\System32\drivers\CmBatt.sys [2013-08-22 25472]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\WINDOWS\System32\drivers\CompositeBus.sys [2013-08-22 36352]
R3 condrv;Console Driver; C:\WINDOWS\System32\drivers\condrv.sys [2013-08-22 43008]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\WINDOWS\System32\drivers\dxgkrnl.sys [2014-04-25 1557848]
R3 ETD;@oem4.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 fastfat;FAT12/16/32 File System Driver; C:\WINDOWS\system32\drivers\fastfat.sys [2013-08-22 217952]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\System32\drivers\HDAudBus.sys [2013-08-22 78336]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\WINDOWS\System32\drivers\hidusb.sys [2014-04-25 33280]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\WINDOWS\system32\drivers\HTTP.sys [2014-03-18 994136]
R3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;Ovladač portu klávesnice a myši PS/2; C:\WINDOWS\System32\drivers\i8042prt.sys [2013-08-22 107520]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem24.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\WINDOWS\System32\drivers\intelppm.sys [2013-08-22 98816]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\WINDOWS\System32\drivers\kbdclass.sys [2013-08-22 58208]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\WINDOWS\System32\drivers\kbdhid.sys [2013-08-22 32256]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Miniport ladění jádra společnosti Microsoft (NDIS 6.20); C:\WINDOWS\system32\DRIVERS\kdnic.sys [2013-08-22 19456]
R3 ksthunk;Kernel Streaming Thunks; C:\WINDOWS\system32\drivers\ksthunk.sys [2013-08-22 21248]
R3 MEIx64;@oem28.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\WINDOWS\System32\drivers\monitor.sys [2013-08-22 30208]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\WINDOWS\System32\drivers\mouclass.sys [2013-08-22 51040]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\WINDOWS\System32\drivers\mouhid.sys [2013-08-22 30208]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\WINDOWS\System32\drivers\mpsdrv.sys [2013-08-22 74240]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\WINDOWS\system32\DRIVERS\mrxsmb.sys [2014-04-25 402944]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys [2014-03-18 207360]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\ndisuio.sys [2013-08-22 60416]
R3 NdisVirtualBus;@%SystemRoot%\System32\drivers\NdisVirtualBus.sys,-200; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2013-08-22 16384]
R3 Ntfs;Ntfs; C:\WINDOWS\system32\drivers\Ntfs.sys [2014-04-25 2013016]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 Ps2Kb2Hid;@oem3.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-02-14 26736]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\WINDOWS\System32\drivers\rdpbus.sys [2013-08-22 22528]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [2014-03-18 27488]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\WINDOWS\System32\DRIVERS\srv2.sys [2014-04-25 679424]
R3 srvnet;srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [2014-04-25 245760]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\WINDOWS\System32\drivers\swenum.sys [2013-08-22 14176]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\WINDOWS\System32\drivers\umbus.sys [2013-08-22 46080]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\drivers\usbccgp.sys [2014-03-18 155480]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0; C:\WINDOWS\System32\drivers\usbehci.sys [2013-08-22 89952]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\drivers\usbhub.sys [2013-08-22 422240]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\WINDOWS\System32\drivers\vwifibus.sys [2013-08-22 24576]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S0 3ware;3ware; C:\WINDOWS\System32\drivers\3ware.sys [2013-08-22 108896]
S0 ADP80XX;ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [2013-08-22 782176]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\WINDOWS\System32\drivers\agp440.sys [2013-08-22 62304]
S0 amdsata;amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [2013-08-22 79200]
S0 amdsbs;amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [2013-08-22 259424]
S0 amdxata;amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [2013-08-22 25952]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Storport's Miniport Driver; C:\WINDOWS\System32\drivers\arcsas.sys [2013-08-22 114016]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\WINDOWS\System32\drivers\atapi.sys [2013-08-22 26464]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\WINDOWS\system32\DRIVERS\avgboota.sys [2013-09-04 20496]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\WINDOWS\System32\drivers\bxvbda.sys [2013-08-22 531296]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\WINDOWS\System32\drivers\evbda.sys [2013-08-22 3357024]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [2013-08-22 114016]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\System32\drivers\gagp30kx.sys [2013-08-22 65888]
S0 HpSAMD;HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [2013-08-22 64352]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\WINDOWS\System32\drivers\hwpolicy.sys [2013-08-22 24416]
S0 iaStorAV;@iastorav.inf,%iaStorAV.DeviceDesc%;Intel(R) SATA RAID Controller Windows; C:\WINDOWS\System32\drivers\iaStorAV.sys [2013-08-10 651248]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\WINDOWS\System32\drivers\iaStorV.sys [2013-08-22 412000]
S0 intelide;intelide; C:\WINDOWS\System32\drivers\intelide.sys [2013-08-22 18272]
S0 isapnp;isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [2013-08-22 21856]
S0 LSI_SAS;LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [2013-08-22 109408]
S0 LSI_SAS2;LSI_SAS2; C:\WINDOWS\System32\drivers\lsi_sas2.sys [2013-08-22 93536]
S0 LSI_SAS3;LSI_SAS3; C:\WINDOWS\System32\drivers\lsi_sas3.sys [2013-08-22 81760]
S0 LSI_SSS;LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [2013-08-22 82784]
S0 megasas;megasas; C:\WINDOWS\System32\drivers\megasas.sys [2013-08-22 56672]
S0 megasr;megasr; C:\WINDOWS\System32\drivers\megasr.sys [2013-08-22 575840]
S0 mvumis;mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [2013-08-22 63840]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\System32\drivers\nv_agp.sys [2013-08-22 124768]
S0 nvraid;nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [2013-08-22 150368]
S0 nvstor;nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [2013-08-22 168288]
S0 pciide;pciide; C:\WINDOWS\System32\drivers\pciide.sys [2013-08-22 14688]
S0 pcmcia;pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [2013-08-22 114528]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\WINDOWS\System32\drivers\sbp2port.sys [2013-08-22 107872]
S0 SiSRaid2;SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [2013-08-22 44896]
S0 SiSRaid4;SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [2013-08-22 81760]
S0 stexstor;stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [2013-08-22 31072]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\WINDOWS\System32\drivers\storahci.sys [2013-08-22 107872]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\WINDOWS\system32\DRIVERS\vmstorfl.sys [2013-08-22 49984]
S0 stornvme;@stornvme.inf,%StorNVMe_ServiceDesc%;Microsoft Standard NVM Express Driver; C:\WINDOWS\System32\drivers\stornvme.sys [2014-03-18 57176]
S0 storvsc;storvsc; C:\WINDOWS\System32\drivers\storvsc.sys [2013-08-22 45888]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Filtr Microsoft AGPv3.5; C:\WINDOWS\System32\drivers\uagp35.sys [2013-08-22 64864]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\WINDOWS\System32\drivers\uliagpkx.sys [2013-08-22 65888]
S0 viaide;viaide; C:\WINDOWS\System32\drivers\viaide.sys [2013-08-22 19808]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\WINDOWS\System32\drivers\vmbus.sys [2013-08-22 97088]
S0 vsmraid;vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [2013-08-22 168800]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage RAID Controller Windows Driver; C:\WINDOWS\System32\drivers\vstxraid.sys [2013-08-22 305504]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\WINDOWS\system32\drivers\dam.sys [2013-08-22 57696]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\1394ohci.sys [2013-08-22 231424]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\WINDOWS\System32\drivers\acpipagr.sys [2013-08-22 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\WINDOWS\System32\drivers\acpipmi.sys [2013-08-22 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\WINDOWS\System32\drivers\acpitime.sys [2013-08-22 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\WINDOWS\System32\drivers\amdk8.sys [2013-08-22 95744]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\WINDOWS\System32\drivers\amdppm.sys [2013-08-22 98816]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\WINDOWS\system32\drivers\appid.sys [2014-03-18 83456]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\WINDOWS\system32\DRIVERS\asyncmac.sys [2013-08-22 26624]
S3 bcmfn2;@bcmfn2.inf,%bcmfn2.SVCDESC%;bcmfn2 Service; C:\WINDOWS\System32\drivers\bcmfn2.sys [2013-08-13 17624]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\WINDOWS\System32\drivers\bthmodem.sys [2014-03-18 64000]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\WINDOWS\System32\drivers\circlass.sys [2013-08-22 44032]
S3 dmvsc;dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [2013-08-22 29696]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Ovladače zvuku považované společností Microsoft za důvěryhodné; C:\WINDOWS\system32\drivers\drmkaud.sys [2013-08-22 14560]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\WINDOWS\System32\drivers\errdev.sys [2013-08-22 10240]
S3 exfat;exFAT File System Driver; C:\WINDOWS\system32\drivers\exfat.sys [2013-08-22 200704]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\WINDOWS\System32\drivers\fdc.sys [2013-08-22 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\WINDOWS\system32\drivers\filetrace.sys [2013-08-22 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\WINDOWS\System32\drivers\flpydisk.sys [2013-08-22 25088]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\WINDOWS\System32\drivers\FsDepends.sys [2013-08-22 56672]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\WINDOWS\System32\drivers\fxppm.sys [2013-08-22 27136]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V – Čítač generací; C:\WINDOWS\System32\drivers\vmgencounter.sys [2013-08-22 11264]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\WINDOWS\System32\Drivers\msgpioclx.sys [2014-03-18 146776]
S3 hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2014-04-15 46136]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\WINDOWS\System32\drivers\HidBatt.sys [2013-08-22 26624]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\WINDOWS\System32\drivers\hidbth.sys [2013-08-22 96768]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\WINDOWS\System32\drivers\hidi2c.sys [2013-08-22 41472]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\WINDOWS\System32\drivers\hidir.sys [2013-08-22 45568]
S3 hyperkbd;hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [2013-08-22 13824]
S3 HyperVideo;HyperVideo; C:\WINDOWS\system32\DRIVERS\HyperVideo.sys [2013-08-22 22016]
S3 iaLPSSi_GPIO;@ialpssi_gpio.inf,%iaLPSSi_GPIO.SVCDESC%;Intel(R) Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2013-07-30 24568]
S3 iaLPSSi_I2C;@ialpssi_i2c.inf,%iaLPSSi_I2C.SVCDESC%;Intel(R) Serial IO I2C Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2013-07-25 99320]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys [2013-08-22 84992]
S3 IPMIDRV;IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [2014-04-25 79360]
S3 IPNAT;IP Network Address Translator; C:\WINDOWS\System32\drivers\ipnat.sys [2014-03-18 142848]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\WINDOWS\system32\drivers\irenum.sys [2013-08-22 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\WINDOWS\System32\drivers\msiscsi.sys [2013-08-22 274784]
S3 massfilter_hs;HS HandSet Mass Storage Filter Driver; \??\C:\Windows\system32\drivers\massfilter_hs.sys [2012-06-20 20232]
S3 Modem;Modem; C:\WINDOWS\system32\drivers\modem.sys [2013-08-22 40960]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\WINDOWS\system32\drivers\mrxdav.sys [2014-04-25 140288]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\WINDOWS\system32\DRIVERS\bridge.sys [2013-08-22 115712]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;Common Driver for Buttons, DockMode and Laptop/Slate Indicator; C:\WINDOWS\System32\drivers\msgpiowin32.sys [2013-08-22 41824]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\WINDOWS\System32\drivers\mshidkmdf.sys [2013-08-22 8192]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\WINDOWS\System32\drivers\mshidumdf.sys [2013-08-22 9728]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Server proxy služby datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSKSSRV.sys [2013-08-22 10624]
S3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\WINDOWS\system32\DRIVERS\mslldp.sys [2013-08-22 66560]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Server proxy hodin datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSPCLOCK.sys [2013-08-22 7040]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Server proxy správce kvality datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSPQM.sys [2013-08-22 6784]
S3 MsRPC;MsRPC; C:\WINDOWS\system32\drivers\MsRPC.sys [2013-08-22 366432]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2013-08-22 7936]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\WINDOWS\System32\drivers\MTConfig.sys [2013-08-22 13312]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\WINDOWS\system32\DRIVERS\ndiscap.sys [2013-08-22 43008]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys [2013-08-22 124928]
S3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\WINDOWS\system32\DRIVERS\ndistapi.sys [2013-08-22 24576]
S3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 220672]
S3 NdisWanLegacy;@%systemroot%\system32\rascfg.dll,-32014; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 220672]
S3 NDProxy;NDIS Proxy; C:\WINDOWS\system32\drivers\NDProxy.sys [2013-08-22 72192]
S3 netvsc;netvsc; C:\WINDOWS\system32\DRIVERS\netvsc63.sys [2013-08-22 87040]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\WINDOWS\System32\drivers\parport.sys [2013-08-22 94208]
S3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\WINDOWS\system32\DRIVERS\raspptp.sys [2013-08-22 107520]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\WINDOWS\System32\drivers\processr.sys [2013-08-22 92160]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\WINDOWS\system32\drivers\qwavedrv.sys [2013-08-22 47104]
S3 RasAcd;Remote Access Auto Connection Driver; C:\WINDOWS\System32\DRIVERS\rasacd.sys [2013-08-22 17408]
S3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;Připojení WAN Miniport (IKEv2); C:\WINDOWS\system32\DRIVERS\AgileVpn.sys [2014-03-18 97280]
S3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\WINDOWS\system32\DRIVERS\rasl2tp.sys [2013-08-22 120832]
S3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\WINDOWS\system32\DRIVERS\raspppoe.sys [2013-08-22 84992]
S3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\WINDOWS\system32\DRIVERS\rassstp.sys [2013-08-22 96256]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\WINDOWS\System32\drivers\rdpdr.sys [2014-03-18 195584]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2014-03-18 924504]
S3 s3cap;s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [2013-08-22 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\WINDOWS\System32\DRIVERS\scfilter.sys [2013-08-22 40960]
S3 sdbus;sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [2014-03-18 236888]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\WINDOWS\System32\drivers\sdstor.sys [2014-03-18 79192]
S3 SerCx;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx.sys [2013-08-22 69472]
S3 SerCx2;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx2.sys [2014-03-18 146776]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\WINDOWS\System32\drivers\serenum.sys [2013-08-22 23040]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\WINDOWS\System32\drivers\serial.sys [2013-08-22 83456]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\WINDOWS\System32\drivers\sermouse.sys [2013-08-22 26112]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\WINDOWS\System32\drivers\sfloppy.sys [2013-08-22 17408]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\WINDOWS\system32\drivers\SpbCx.sys [2013-08-22 72032]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\WINDOWS\system32\DRIVERS\tcpip.sys [2014-04-25 2519384]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\WINDOWS\System32\drivers\terminpt.sys [2014-03-18 37216]
S3 TPM;@tpm.inf,%TPM%;TPM; C:\WINDOWS\system32\drivers\tpm.sys [2013-08-22 159584]
S3 TsUsbFlt;TsUsbFlt; C:\WINDOWS\system32\drivers\tsusbflt.sys [2013-08-22 56320]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\WINDOWS\System32\drivers\TsUsbGD.sys [2013-08-22 29696]
S3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunnel.sys [2013-08-22 154112]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\WINDOWS\System32\drivers\uaspstor.sys [2013-08-22 74080]
S3 UCX01000;USB Controller Extension; C:\WINDOWS\System32\drivers\ucx01000.sys [2014-03-18 189784]
S3 UEFI;@uefi.inf,%UEFI.SvcDesc%;Microsoft UEFI Driver; C:\WINDOWS\System32\drivers\UEFI.sys [2013-08-22 26976]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\WINDOWS\System32\drivers\umpass.sys [2013-08-22 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\WINDOWS\System32\drivers\usbcir.sys [2013-08-22 98304]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\WINDOWS\System32\drivers\UsbHub3.sys [2014-04-25 467800]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbohci.sys [2013-08-22 30208]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\WINDOWS\System32\drivers\usbprint.sys [2013-08-22 26112]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\System32\drivers\USBSTOR.SYS [2014-03-18 148824]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbuhci.sys [2013-08-22 34816]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\USBXHCI.SYS [2014-03-18 325464]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\WINDOWS\system32\drivers\VerifierExt.sys [2014-03-18 175960]
S3 vhdmp;vhdmp; C:\WINDOWS\System32\drivers\vhdmp.sys [2014-03-18 551256]
S3 VMBusHID;VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [2013-08-22 21760]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\WINDOWS\System32\drivers\vpci.sys [2013-08-22 69472]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\WINDOWS\System32\drivers\wacompen.sys [2013-08-22 26752]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\WINDOWS\system32\DRIVERS\wanarp.sys [2013-08-22 79872]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\WINDOWS\system32\drivers\WdBoot.sys [2013-10-31 35856]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\WINDOWS\system32\drivers\WdFilter.sys [2013-10-31 236888]
S3 WdNisDrv;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-370; C:\WINDOWS\system32\Drivers\WdNisDrv.sys [2013-10-31 124760]
S3 WIMMount;WIMMount; C:\WINDOWS\system32\drivers\wimmount.sys [2013-08-22 33632]
S4 cdfs;CD/DVD File System Reader; C:\WINDOWS\system32\DRIVERS\cdfs.sys [2013-08-22 88576]
S4 udfs;udfs; C:\WINDOWS\system32\DRIVERS\udfs.sys [2013-08-22 316928]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-04-18 3645456]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-03-27 291912]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 DcomLaunch;@combase.dll,-5012; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 EventSystem;@comres.dll,-2450; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2013-12-17 227904]
R2 gpsvc;@gpapi.dll,-112; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-04-15 2227536]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-21 635104]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-08 377616]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-02-14 96880]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 RpcSs;@combase.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\WINDOWS\System32\spoolsv.exe [2013-08-22 798208]
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R2 vToolbarUpdater18.1.5;vToolbarUpdater18.1.5; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe [2014-05-08 1801752]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 Browser;@%systemroot%\system32\browser.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 NcbService;@%SystemRoot%\system32\ncbservice.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-26 116648]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\WINDOWS\system32\sppsvc.exe [2014-03-18 6353960]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\WINDOWS\System32\alg.exe [2013-08-22 92672]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AppReadiness;@%SystemRoot%\System32\AppReadiness.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 AppXSvc;@%SystemRoot%\system32\appxdeploymentserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 COMSysApp;@comres.dll,-947; C:\WINDOWS\system32\dllhost.exe [2013-08-22 19296]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-17 469648]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\WINDOWS\System32\lsass.exe [2013-08-22 45008]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\WINDOWS\system32\fxssvc.exe [2013-08-22 655360]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-02-14 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-26 116648]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\WINDOWS\system32\IEEtwCollector.exe [2014-03-18 111616]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 KeyIso;@keyiso.dll,-100; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
S3 KtmRm;@comres.dll,-2946; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 lfsvc;@%SystemRoot%\System32\GeofenceMonitorService.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 MSDTC;@comres.dll,-2797; C:\WINDOWS\System32\msdtc.exe [2013-08-22 142848]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\WINDOWS\system32\msiexec.exe [2013-08-22 62464]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\WINDOWS\SysWow64\perfhost.exe [2013-08-22 21504]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 PrintNotify;@C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\WINDOWS\system32\locator.exe [2013-08-22 10240]
S3 ScDeviceEnum;@%SystemRoot%\System32\ScDeviceEnum.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 smphost;@%SystemRoot%\System32\smphost.dll,-102; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\WINDOWS\System32\snmptrap.exe [2013-08-22 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\WINDOWS\servicing\TrustedInstaller.exe [2014-03-18 99840]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\WINDOWS\system32\UI0Detect.exe [2013-08-22 40960]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\WINDOWS\System32\vds.exe [2014-03-18 1283584]
S3 vmicguestinterface;@%systemroot%\system32\vmicres.dll,-801; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\WINDOWS\system32\vssvc.exe [2014-03-18 1436160]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\WINDOWS\system32\wbengine.exe [2014-03-18 1543680]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WdNisSvc;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320; C:\Program Files\Windows Defender\NisSrv.exe [2013-10-31 348392]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WEPHOSTSVC;@%systemroot%\system32\wephostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-10-31 23824]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-08-10 139856]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 RemoteRegistry;@regsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]

-----------------EOF-----------------

A tohle bylo pokračování

[Márty84]

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[NeZnayu]

Tak tady to je Tenhle na mě vybafl (AdwCleaner [S0], ale v té složce AdwCleaner je ještě jeden "papír" AdwCleaner[R0] a složka Qarantine a v ní další věci

# AdwCleaner v3.207 - Report created 09/05/2014 at 13:54:05
# Updated 05/05/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Dominika - PC-OBYVAK
# Running from : C:\Users\Dominika\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A9119622

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG SafeGuard toolbar
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Security Toolbar
[#] Folder Deleted : C:\ProgramData\BitGuard
[#] Folder Deleted : C:\ProgramData\Browser Manager
[#] Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\systemk
Folder Deleted : C:\ProgramData\wincert
Folder Deleted : C:\Program Files (x86)\AVG SafeGuard toolbar
Folder Deleted : C:\Program Files (x86)\Settings Manager
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\WINDOWS\SysWOW64\AI_RecycleBin
Folder Deleted : C:\Program Files\AVG SafeGuard toolbar
[!] Folder Deleted : C:\Users\Dominika\AppData\Local\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dominika\AppData\Local\genienext
Folder Deleted : C:\Users\Dominika\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Dominika\AppData\LocalLow\AVG SafeGuard toolbar
Folder Deleted : C:\Users\Dominika\AppData\LocalLow\DataMngr
Folder Deleted : C:\Users\Dominika\AppData\Roaming\newnext.me
Folder Deleted : C:\Users\Dominika\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Dominika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
File Deleted : C:\END
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\Users\Dominika\daemonprocess.txt

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG SafeGuard toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Linkey
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\SystemK
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\Software\AVG SafeGuard toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\SystemK
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager
Key Deleted : [x64] HKLM\SOFTWARE\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17037

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v34.0.1847.131

*************************

AdwCleaner[R0].txt - [12263 octets] - [09/05/2014 13:49:23]
AdwCleaner[S0].txt - [11696 octets] - [09/05/2014 13:54:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11757 octets] ##########

[Márty84]

Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

[NeZnayu]

Udelejte !!!kompletni!!! kontrolu s MBAM http://www.bleepingcomputer.com/downloa ... re/dl/241/ a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce. Navod zde http://forum.viry.cz/viewtopic.php?f=29&t=115222

Tenhle na mě vybafl (AdwCleaner [S0], ale v té složce AdwCleaner je ještě jeden "papír" AdwCleaner[R0] a složka Qarantine a v ní další věci

Ten další "papír" tu chceš taky?

[Márty84]

Nene, ADWCleaner uz nepotrebuju videt. Jeden log byl ze skenu, druhy z vymazu. Mi stacil ten z vymazu. A karantena je karantena Az pak skoncime, vsechno to uklidim, nebojte

[NeZnayu]

Nene, ADWCleaner uz nepotrebuju videt. Jeden log byl ze skenu, druhy z vymazu. Mi stacil ten z vymazu. A karantena je karantena Az pak skoncime, vsechno to uklidim, nebojte

Dobře tak děkuji. Mám vybrat úplnou nebo rychlou kontrolu?

E: Beru zpátky, ta červená mě znervóznila

[Márty84]

Jen v klidu a v pohode

Rychla neprohlizi cely pc, takze vzdycky volit uplnou, at to veme komplet

[NeZnayu]

Tady to je

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.05.09.06

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.17105
Dominika :: PC-OBYVAK [administrátor]

Ochrana: Povolena

9. 5. 2014 14:17:20
MBAM-log-2014-05-09 (15-23-53).txt

Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 403664
Uplynulý čas: 1 hodin, 5 minut, 45 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Users\Dominika\Desktop\Unknown - World-Alfa Client\Unknown - World-Alfa Client\Spoustec.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\Dominika\Downloads\SoftonicDownloader_for_file-shredder.exe (PUP.Optional.Softonic.A) -> Nebyla provedena žádná instrukce.

(konec)

[Márty84]

A hele, nejaky shredder. A ten spoustec, to je co?

Nalezy doporucuji odstranit.

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

[NeZnayu]

Spouštěč... tím se jen spouštěl nějaký Metin
Nálezy jsem teda odstranila, ale jestli měl pak ten Shredder přestat, tak nepřestal

Tady je log

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Dominika [Práva správce]
Mód : Kontrola -- Datum : 05/09/2014 16:35:13
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 7 ¤¤¤
[IFEO] HKLM\[...]\rjatydimofu.exe : Debugger (tasklist.exe [-]) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] d4bd615a39dabcac8e4f3b4a5c4ce802
[BSP] 523c24dd8b943fa9a757deb249fd6038 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_05092014_163513.txt >>

[Márty84]

Nálezy jsem teda odstranila, ale jestli měl pak ten Shredder přestat, tak nepřestal

Nene, po tomhle prestat nemel. To je treba odstranit z registru, ale nejdrive je treba zjistit, o co konkretne jde.


Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.