Opět po nějaké době,se to načítání win 8.1 se nějak protahuje
mužete prosím mrknout jestli tam není něco co nemá
tady je log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by mixik at 2014-05-18 15:54:52
Microsoft Windows 8.1 Pro
System drive C: has 38 GB (54%) free of 71 GB
Total RAM: 2046 MB (30% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:55:10, on 18. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files\IObit\Start Menu 8\InstallServices32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\r2 Studios\HideOE\HideOE.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wwahost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\mixik\Downloads\RSIT.exe
C:\Program Files\trend micro\mixik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Služba Acronis Scheduler2] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [HideOE] "C:\Program Files\r2 Studios\HideOE\HideOE.exe"
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{867B2987-0686-48EF-8AAC-51ED664334C8}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: skype-ie-addon-data - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Crystal Rich Ltd - C:\Program Files\USB Safely Remove\USBSRService.exe
--
End of file - 6790 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job
=========Mozilla firefox=========
ProfilePath - C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "https://www.google.com/search"
prefs.js - "keyword.url" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-02-23 1037608]
"Služba Acronis Scheduler2"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 380240]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2013-09-20 7801088]
"AcronisTibMounterMonitor"=C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1105328]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-15 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-02 3873704]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HideOE"=C:\Program Files\r2 Studios\HideOE\HideOE.exe [2003-07-24 32768]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2012-12-28 2587136]
"uTorrent"=C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe [2014-01-01 393728]
"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-06-07 774680]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2013-08-29 2023424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
c:\program files\samsung\kies\kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
c:\program files\samsung\kies\kiestrayagent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
c:\program files\common files\java\java update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
c:\program files\zoner\photo studio 15\program32\zpstray.exe [2013-06-07 774680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-18 15:54:52 ----DC---- C:\rsit
2014-05-18 15:54:52 ----DC---- C:\Program Files\trend micro
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files\DESIGNER
2014-05-15 20:30:22 ----AC---- C:\WINDOWS\system32\wusa.exe
2014-05-15 20:29:27 ----AC---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-15 20:29:02 ----AC---- C:\WINDOWS\system32\wuaueng.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\WSShared.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\twinui.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wucltux.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wuapi.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\ubpm.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wups.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wudriver.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wuauclt.exe
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\storewuauth.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuwebv.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuapp.exe
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\WSReset.exe
2014-05-15 20:27:35 ----AC---- C:\WINDOWS\system32\shell32.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt100.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt_map.dll
2014-05-15 19:44:30 ----AC---- C:\WINDOWS\system32\WavesGUILib.dll
2014-05-15 19:44:28 ----AC---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-15 19:44:27 ----AC---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2014-05-15 19:44:26 ----AC---- C:\WINDOWS\system32\RtkCoInstII.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkApoApi.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkAPO.dll
2014-05-15 19:44:23 ----AC---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-15 19:44:16 ----AC---- C:\WINDOWS\system32\RCoRes.dat
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2014-05-15 19:44:11 ----AC---- C:\WINDOWS\system32\MaxxAudioVnN.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioVnA.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek2.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2014-05-15 19:44:03 ----AC---- C:\WINDOWS\system32\FMAPO.dll
2014-05-15 19:34:51 ----DC---- C:\Users\mixik\AppData\Roaming\MAGIX
2014-05-13 18:11:01 ----AC---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplayx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2014-05-11 22:37:16 ----DC---- C:\Program Files\directx
2014-05-11 14:44:12 ----AC---- C:\WINDOWS\system32\drivers\mbam.sys
2014-05-11 14:17:45 ----AC---- C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
2014-05-08 09:20:23 ----DC---- C:\Program Files\H264LevelEditor_1.5.1
2014-05-07 17:42:10 ----AC---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-04 09:26:36 ----DC---- C:\WINDOWS\system32\Samsung_USB_Drivers
2014-05-04 09:25:45 ----AC---- C:\WINDOWS\system32\drivers\StarOpen.sys
2014-05-04 08:43:50 ----DC---- C:\Program Files\SDA
2014-05-04 00:27:40 ----C---- C:\WINDOWS\system32\pwdrvio.sys
2014-05-04 00:26:33 ----C---- C:\WINDOWS\system32\pwdspio.sys
2014-05-03 23:10:35 ----DC---- C:\Program Files\MiniTool Partition Wizard Home Edition 5.2
2014-05-03 09:01:02 ----DC---- C:\JRT
2014-05-02 18:02:26 ----AC---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\avastSS.scr
2014-04-30 21:34:54 ----DC---- C:\Program Files\Visual Similarity Duplicate Image Finder
2014-04-30 19:57:39 ----DC---- C:\Program Files\Malwarebytes Anti-Malware
2014-04-25 19:06:21 ----DC---- C:\Users\mixik\AppData\Roaming\Dream Aquarium
======List of files/folders modified in the last 1 month======
2014-05-18 15:54:52 ----RDC---- C:\Program Files
2014-05-18 15:53:04 ----DC---- C:\Users\mixik\AppData\Roaming\uTorrent
2014-05-18 11:09:31 ----DC---- C:\WINDOWS\Temp
2014-05-18 11:06:30 ----DC---- C:\Users\mixik\AppData\Roaming\Skype
2014-05-18 10:50:59 ----DC---- C:\Program Files\Mozilla Firefox
2014-05-18 10:39:40 ----DC---- C:\Users\mixik\AppData\Roaming\USBSafelyRemove
2014-05-17 09:40:36 ----RDC---- C:\WINDOWS\System32
2014-05-17 09:40:36 ----DC---- C:\WINDOWS\inf
2014-05-17 09:40:36 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-16 16:48:59 ----DC---- C:\Users\mixik\AppData\Roaming\MyPhoneExplorer
2014-05-15 21:14:59 ----DC---- C:\WINDOWS\system32\config
2014-05-15 21:08:12 ----D---- C:\WINDOWS\WinSxS
2014-05-15 21:08:08 ----SHDC---- C:\Boot
2014-05-15 21:04:14 ----DC---- C:\WINDOWS\system32\Drivers
2014-05-15 21:04:14 ----DC---- C:\Program Files\Windows Defender
2014-05-15 21:04:13 ----RD---- C:\WINDOWS\ToastData
2014-05-15 21:04:13 ----DC---- C:\WINDOWS\apppatch
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\WinStore
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\system32\cs-CZ
2014-05-15 20:39:53 ----DC---- C:\WINDOWS\CbsTemp
2014-05-15 20:39:12 ----SDC---- C:\Users\mixik\AppData\Roaming\Microsoft
2014-05-15 20:39:02 ----SHDC---- C:\WINDOWS\Installer
2014-05-15 20:38:58 ----DC---- C:\ProgramData\Microsoft Help
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files
2014-05-15 20:37:13 ----DC---- C:\WINDOWS\Microsoft.NET
2014-05-15 20:35:04 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-15 20:34:59 ----DC---- C:\WINDOWS\system32\MRT
2014-05-15 20:31:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2014-05-15 20:26:19 ----ADC---- C:\Windows
2014-05-15 20:25:40 ----DC---- C:\WINDOWS\system32\catroot2
2014-05-15 20:15:24 ----DC---- C:\WINDOWS\debug
2014-05-15 20:09:04 ----DC---- C:\WINDOWS\system32\catroot
2014-05-15 20:07:21 ----ADC---- C:\ProgramData\TEMP
2014-05-15 20:04:07 ----DC---- C:\WINDOWS\twain_32
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\Tasks
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\system32\Tasks
2014-05-15 19:47:20 ----DC---- C:\WINDOWS\system32\RTCOM
2014-05-15 19:46:51 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-15 19:46:02 ----HDC---- C:\Program Files\InstallShield Installation Information
2014-05-15 19:44:00 ----AC---- C:\log.txt
2014-05-15 19:41:05 ----SHD---- C:\System Volume Information
2014-05-15 19:36:12 ----DC---- C:\Program Files\IObit
2014-05-13 21:05:22 ----DC---- C:\WINDOWS\en-US
2014-05-11 23:12:34 ----DC---- C:\Program Files\Common Files\InstallShield
2014-05-11 22:18:42 ----DC---- C:\Users\mixik\AppData\Roaming\vlc
2014-05-11 14:44:25 ----DC---- C:\Users\mixik\AppData\Roaming\Malwarebytes
2014-05-11 14:44:18 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-11 13:59:35 ----DC---- C:\WINDOWS\SoftwareDistribution
2014-05-07 18:00:29 ----DC---- C:\Program Files\Acoustica CD Label Maker
2014-05-06 20:15:10 ----HDC---- C:\ProgramData
2014-05-06 19:38:53 ----DC---- C:\Program Files\Samsung
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\system32\aswBoot.exe
2014-04-25 18:11:14 ----DC---- C:\Program Files\Windows Live
2014-04-25 17:18:43 ----DC---- C:\Program Files\WYSIWYG Web Builder 9
2014-04-25 17:14:22 ----AC---- C:\WINDOWS\iun6002.exe
2014-04-23 21:10:42 ----DC---- C:\Program Files\WinRAR
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\WINDOWS\System32\drivers\ACPI.sys [2014-02-22 431960]
R0 acpiex;Microsoft ACPIEx Driver; C:\WINDOWS\System32\Drivers\acpiex.sys [2013-08-22 61280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\WINDOWS\System32\drivers\atapi.sys [2013-08-22 23392]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\WINDOWS\System32\drivers\CLFS.sys [2014-03-20 283992]
R0 CNG;CNG; C:\WINDOWS\System32\Drivers\cng.sys [2014-03-08 482416]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\WINDOWS\System32\drivers\disk.sys [2013-08-22 83808]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\WINDOWS\System32\drivers\fileinfo.sys [2014-02-22 63832]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\WINDOWS\system32\drivers\fltmgr.sys [2014-02-22 271192]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-10-22 86304]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\WINDOWS\System32\DRIVERS\fvevol.sys [2014-02-22 502616]
R0 intelide;intelide; C:\WINDOWS\System32\drivers\intelide.sys [2013-08-22 16736]
R0 intelpep;@intelpep.inf,%INTELPEP.SVCDESC%;Intel(R) Power Engine Plug-in Driver; C:\WINDOWS\System32\drivers\intelpep.sys [2013-11-23 36696]
R0 KSecDD;KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [2013-09-30 77656]
R0 KSecPkg;KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [2014-03-08 147800]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\WINDOWS\System32\drivers\mountmgr.sys [2013-08-22 81760]
R0 msisadrv;msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [2013-08-22 15200]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\WINDOWS\System32\Drivers\mup.sys [2013-08-22 54624]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\WINDOWS\system32\drivers\ndis.sys [2014-02-22 869720]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\WINDOWS\System32\drivers\partmgr.sys [2013-08-22 68960]
R0 pci;@machine.inf,%pci_svcdesc%;Řadič sběrnice PCI; C:\WINDOWS\System32\drivers\pci.sys [2014-02-22 211800]
R0 pcmcia;pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [2013-08-22 98656]
R0 pcw;Performance Counters for Windows Driver; C:\WINDOWS\System32\drivers\pcw.sys [2013-08-22 42848]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\WINDOWS\system32\drivers\pdc.sys [2013-11-01 77144]
R0 rdyboost;ReadyBoost; C:\WINDOWS\System32\drivers\rdyboost.sys [2014-02-22 198488]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-10-22 185120]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\WINDOWS\System32\drivers\spaceport.sys [2014-02-22 333656]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\WINDOWS\System32\drivers\tcpip.sys [2014-03-04 1871192]
R0 tib;Acronis TIB Manager; C:\WINDOWS\system32\DRIVERS\tib.sys [2013-10-21 736192]
R0 tib_mounter;Acronis TIB Mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [2013-10-22 130488]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\WINDOWS\System32\drivers\vdrvroot.sys [2013-08-22 34656]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\WINDOWS\System32\drivers\volmgr.sys [2013-08-22 58720]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\WINDOWS\System32\drivers\volmgrx.sys [2013-08-22 311136]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\WINDOWS\System32\drivers\volsnap.sys [2014-02-22 265048]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\WINDOWS\system32\drivers\Wdf01000.sys [2013-08-22 614720]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\WINDOWS\system32\drivers\afd.sys [2013-08-22 455168]
R1 ahcache;@%systemroot%\system32\drivers\ahcache.sys,-102; C:\WINDOWS\system32\DRIVERS\ahcache.sys [2013-08-22 63488]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 BasicDisplay;BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [2013-08-22 43520]
R1 BasicRender;BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [2014-02-22 25600]
R1 Beep;Beep; C:\WINDOWS\system32\drivers\Beep.sys [2013-08-22 6144]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\WINDOWS\System32\drivers\cdrom.sys [2013-08-22 124928]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\WINDOWS\system32\drivers\csc.sys [2013-09-30 439808]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\WINDOWS\System32\Drivers\dfsc.sys [2014-03-06 102400]
R1 Msfs;Msfs; C:\WINDOWS\system32\drivers\Msfs.sys [2013-08-22 24064]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\WINDOWS\System32\drivers\mssmbios.sys [2013-08-22 32608]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\WINDOWS\system32\DRIVERS\netbios.sys [2013-08-22 37888]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\WINDOWS\System32\DRIVERS\netbt.sys [2013-08-22 218624]
R1 Npfs;Npfs; C:\WINDOWS\system32\drivers\Npfs.sys [2013-08-22 44544]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\WINDOWS\System32\drivers\npsvctrig.sys [2013-08-22 18432]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\WINDOWS\system32\drivers\nsiproxy.sys [2013-08-22 28160]
R1 Null;Null; C:\WINDOWS\system32\drivers\Null.sys [2013-08-22 5120]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\WINDOWS\system32\DRIVERS\pacer.sys [2013-08-22 120832]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\WINDOWS\system32\DRIVERS\rdbss.sys [2014-02-15 309248]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\WINDOWS\system32\DRIVERS\tdx.sys [2013-08-22 87040]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-12 68312]
R2 irda;@netirda.inf,%IrDA.DisplayName%;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2013-08-22 95232]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\WINDOWS\system32\DRIVERS\lltdio.sys [2013-08-22 48640]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\WINDOWS\system32\drivers\luafv.sys [2014-02-22 97280]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2010-02-10 19384]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\WINDOWS\system32\DRIVERS\nwifi.sys [2014-03-06 374784]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\WINDOWS\system32\drivers\Ndu.sys [2013-08-22 91136]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2013-10-04 35088]
R2 PEAUTH;PEAUTH; C:\WINDOWS\system32\drivers\peauth.sys [2014-02-22 640000]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2013-08-22 64000]
R2 secdrv;Security Driver; C:\WINDOWS\system32\drivers\secdrv.sys [2013-08-22 20480]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\WINDOWS\System32\drivers\tcpipreg.sys [2014-03-06 38400]
R3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\1394ohci.sys [2013-08-22 170496]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-10-22 234752]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 10071040]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 290304]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\b57nd60x.sys [2013-06-18 376832]
R3 bowser;bowser; C:\WINDOWS\system32\DRIVERS\bowser.sys [2013-08-22 80896]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\System32\drivers\CmBatt.sys [2013-08-22 21120]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\WINDOWS\System32\drivers\CompositeBus.sys [2013-08-22 30720]
R3 condrv;Console Driver; C:\WINDOWS\System32\drivers\condrv.sys [2013-08-22 32256]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\WINDOWS\System32\drivers\dxgkrnl.sys [2014-03-06 1326936]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\System32\drivers\HDAudBus.sys [2013-08-22 69632]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\WINDOWS\System32\drivers\hidusb.sys [2014-03-06 20992]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2010-02-10 987704]
R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2010-02-10 214072]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\WINDOWS\system32\drivers\HTTP.sys [2014-01-29 735576]
R3 i8042prt;@keyboard.inf,%i8042prt.SvcDesc%;Ovladač portu klávesnice i8042 a myši PS/2; C:\WINDOWS\System32\drivers\i8042prt.sys [2013-08-22 82944]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2014-05-15 3017112]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\WINDOWS\System32\drivers\intelppm.sys [2013-08-22 87040]
R3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\WINDOWS\system32\drivers\irenum.sys [2013-08-22 13824]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\WINDOWS\System32\drivers\kbdclass.sys [2013-08-22 45408]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Miniport ladění jádra společnosti Microsoft (NDIS 6.20); C:\WINDOWS\system32\DRIVERS\kdnic.sys [2013-08-22 16384]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 22856]
R3 Modem;Modem; C:\WINDOWS\system32\drivers\modem.sys [2013-08-22 32256]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\WINDOWS\System32\drivers\monitor.sys [2013-08-22 24064]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\WINDOWS\System32\drivers\mouclass.sys [2013-08-22 41824]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\WINDOWS\System32\drivers\mouhid.sys [2013-08-22 23040]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\WINDOWS\System32\drivers\mpsdrv.sys [2013-08-22 54272]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\WINDOWS\system32\DRIVERS\mrxsmb.sys [2014-03-06 333824]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys [2013-09-30 156160]
R3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\WINDOWS\system32\DRIVERS\mslldp.sys [2013-08-22 57344]
R3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\ndisuio.sys [2013-08-22 49152]
R3 NdisVirtualBus;@%SystemRoot%\System32\drivers\NdisVirtualBus.sys,-200; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2013-08-22 13312]
R3 netwlv32;@netwlv32.inf, %NIC_Service_DispName_VISTA%; Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\WINDOWS\system32\DRIVERS\netwlv32.sys [2013-06-18 6637056]
R3 NSCIRDA;@oem2.inf,%NSCIRDA.ServiceDesc%;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 Ntfs;Ntfs; C:\WINDOWS\system32\drivers\Ntfs.sys [2014-03-20 1679704]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\WINDOWS\System32\drivers\rdpbus.sys [2013-08-22 17920]
R3 sdbus;sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [2014-02-22 197976]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\WINDOWS\System32\DRIVERS\srv2.sys [2014-03-06 560128]
R3 srvnet;srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [2014-03-06 185856]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\WINDOWS\System32\drivers\swenum.sys [2013-08-22 13920]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-02-23 198064]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\WINDOWS\System32\drivers\umbus.sys [2013-08-22 40448]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\drivers\usbccgp.sys [2013-10-23 104280]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbehci.sys [2013-08-22 73056]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Ovladač standardního rozbočovače USB; C:\WINDOWS\System32\drivers\usbhub.sys [2013-08-22 339296]
R3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\WINDOWS\System32\drivers\USBSTOR.SYS [2014-02-22 120664]
R3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbuhci.sys [2013-08-22 26624]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 176768]
S0 3ware;3ware; C:\WINDOWS\System32\drivers\3ware.sys [2013-08-22 86368]
S0 ADP80XX;ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [2013-08-22 773472]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\WINDOWS\System32\drivers\agp440.sys [2013-08-22 56160]
S0 amdagp;@machine.inf,%amdagp_svcdesc%;AMD AGP Bus Filter Driver; C:\WINDOWS\System32\drivers\amdagp.sys [2013-08-22 56160]
S0 amdsata;amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [2013-08-22 72544]
S0 amdsbs;amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [2013-08-22 215392]
S0 amdxata;amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [2013-08-22 22880]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Storport's Miniport Driver; C:\WINDOWS\System32\drivers\arcsas.sys [2013-08-22 101728]
S0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\WINDOWS\System32\drivers\EhStorClass.sys [2013-08-22 73568]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [2013-08-22 100704]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\System32\drivers\gagp30kx.sys [2013-08-22 59744]
S0 HpSAMD;HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [2013-08-22 56672]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\WINDOWS\System32\drivers\hwpolicy.sys [2013-08-22 23904]
S0 iaStorAV;@iastorav.inf,%iaStorAV.DeviceDesc%;Intel(R) SATA RAID Controller Windows; C:\WINDOWS\System32\drivers\iaStorAV.sys [2013-08-10 524784]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\WINDOWS\System32\drivers\iaStorV.sys [2013-08-22 333664]
S0 isapnp;isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [2013-08-22 48480]
S0 LSI_SAS;LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [2013-08-22 94048]
S0 LSI_SAS2;LSI_SAS2; C:\WINDOWS\System32\drivers\lsi_sas2.sys [2013-08-22 79712]
S0 LSI_SAS3;LSI_SAS3; C:\WINDOWS\System32\drivers\lsi_sas3.sys [2013-08-22 68960]
S0 LSI_SSS;LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [2013-08-22 69472]
S0 megasas;megasas; C:\WINDOWS\System32\drivers\megasas.sys [2013-08-22 51552]
S0 megasr;megasr; C:\WINDOWS\System32\drivers\megasr.sys [2013-08-22 464736]
S0 mvumis;mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [2013-08-22 58208]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\System32\drivers\nv_agp.sys [2013-08-22 107872]
S0 nvraid;nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [2013-08-22 120160]
S0 nvstor;nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [2013-08-22 141664]
S0 pciide;pciide; C:\WINDOWS\System32\drivers\pciide.sys [2013-08-22 14176]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\WINDOWS\System32\drivers\sbp2port.sys [2013-08-22 90464]
S0 sisagp;@machine.inf,%sisagp_svcdesc%;SIS AGP Bus Filter; C:\WINDOWS\System32\drivers\sisagp.sys [2013-08-22 54624]
S0 SiSRaid2;SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [2013-08-22 41312]
S0 SiSRaid4;SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [2013-08-22 79200]
S0 stexstor;stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [2013-08-22 26976]
S0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\WINDOWS\System32\drivers\storahci.sys [2013-08-22 90976]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\WINDOWS\system32\DRIVERS\vmstorfl.sys [2013-08-22 45376]
S0 stornvme;@stornvme.inf,%StorNVMe_ServiceDesc%;Microsoft Standard NVM Express Driver; C:\WINDOWS\System32\drivers\stornvme.sys [2013-10-05 47960]
S0 storvsc;storvsc; C:\WINDOWS\System32\drivers\storvsc.sys [2013-08-22 42304]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Filtr Microsoft AGPv3.5; C:\WINDOWS\System32\drivers\uagp35.sys [2013-08-22 58720]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\WINDOWS\System32\drivers\uliagpkx.sys [2013-08-22 59744]
S0 viaagp;@machine.inf,%agpvia_svcdesc%;VIA AGP Bus Filter; C:\WINDOWS\System32\drivers\viaagp.sys [2013-08-22 56160]
S0 viaide;viaide; C:\WINDOWS\System32\drivers\viaide.sys [2013-08-22 18272]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\WINDOWS\System32\drivers\vmbus.sys [2013-08-22 93248]
S0 vsmraid;vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [2013-08-22 148832]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage RAID Controller Windows Driver; C:\WINDOWS\System32\drivers\vstxraid.sys [2013-08-22 276832]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\WINDOWS\system32\drivers\dam.sys [2013-08-22 53088]
S2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2013-08-22 8704]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\WINDOWS\System32\drivers\acpipagr.sys [2013-08-22 9216]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\WINDOWS\System32\drivers\acpipmi.sys [2013-08-22 9728]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\WINDOWS\System32\drivers\acpitime.sys [2013-08-22 8704]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\WINDOWS\System32\drivers\amdk8.sys [2013-08-22 86016]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\WINDOWS\System32\drivers\amdppm.sys [2013-08-22 83456]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\WINDOWS\system32\drivers\appid.sys [2013-09-30 72192]
S3 bcmfn2;@bcmfn2.inf,%bcmfn2.SVCDESC%;bcmfn2 Service; C:\WINDOWS\System32\drivers\bcmfn2.sys [2013-08-13 16088]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 31232]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 50688]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 23808]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\WINDOWS\System32\drivers\bthmodem.sys [2013-08-22 48640]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\WINDOWS\System32\drivers\circlass.sys [2013-08-22 38400]
S3 CV2K1;@oem62.inf,%CommView_Desc%;CommView Network Monitor; C:\WINDOWS\system32\DRIVERS\cv2k1.sys []
S3 dg_ssudbus;@oem43.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 dmvsc;dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [2013-08-22 26624]
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\WINDOWS\system32\drivers\drmkaud.sys [2013-08-22 14008]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\WINDOWS\System32\drivers\errdev.sys [2013-08-22 7680]
S3 exfat;exFAT File System Driver; C:\WINDOWS\system32\drivers\exfat.sys [2013-08-22 164864]
S3 fastfat;FAT12/16/32 File System Driver; C:\WINDOWS\system32\drivers\fastfat.sys [2013-08-22 179552]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\WINDOWS\System32\drivers\fdc.sys [2013-08-22 26112]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\WINDOWS\system32\drivers\filetrace.sys [2013-08-22 29184]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\WINDOWS\System32\drivers\flpydisk.sys [2013-08-22 20992]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\WINDOWS\System32\drivers\FsDepends.sys [2013-08-22 49504]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\WINDOWS\System32\drivers\fxppm.sys [2013-08-22 22016]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V – Čítač generací; C:\WINDOWS\System32\drivers\vmgencounter.sys [2013-08-22 11136]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\WINDOWS\System32\Drivers\msgpioclx.sys [2014-02-22 122712]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2013-08-22 304640]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\WINDOWS\System32\drivers\HidBatt.sys [2013-08-22 20992]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\WINDOWS\System32\drivers\hidbth.sys [2013-08-22 82432]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\WINDOWS\System32\drivers\hidi2c.sys [2013-08-22 32256]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\WINDOWS\System32\drivers\hidir.sys [2013-08-22 38912]
S3 hyperkbd;hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [2013-08-22 12672]
S3 HyperVideo;HyperVideo; C:\WINDOWS\system32\DRIVERS\HyperVideo.sys [2013-08-22 17920]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys [2013-08-22 65536]
S3 IPMIDRV;IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [2014-03-06 68608]
S3 IPNAT;IP Network Address Translator; C:\WINDOWS\System32\drivers\ipnat.sys [2014-01-25 126976]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\WINDOWS\System32\drivers\msiscsi.sys [2013-08-22 239456]
S3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\WINDOWS\System32\drivers\kbdhid.sys [2013-08-22 24064]
S3 kbldfltr;kbldfltr; C:\WINDOWS\system32\drivers\kbldfltr.sys [2013-09-30 19680]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [2014-05-13 40776]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\WINDOWS\system32\drivers\mrxdav.sys [2014-03-06 124416]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\WINDOWS\system32\DRIVERS\bridge.sys [2013-08-22 98816]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;Common Driver for Buttons, DockMode and Laptop/Slate Indicator; C:\WINDOWS\System32\drivers\msgpiowin32.sys [2013-08-22 33632]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\WINDOWS\System32\drivers\mshidkmdf.sys [2013-08-22 6656]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\WINDOWS\System32\drivers\mshidumdf.sys [2013-08-22 8192]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Server proxy služby datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSKSSRV.sys [2013-08-22 8448]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Server proxy hodin datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSPCLOCK.sys [2013-08-22 6400]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Server proxy správce kvality datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSPQM.sys [2013-08-22 6400]
S3 MsRPC;MsRPC; C:\WINDOWS\system32\drivers\MsRPC.sys [2013-08-22 182624]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2013-08-22 6400]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\WINDOWS\System32\drivers\MTConfig.sys [2013-08-22 11264]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\WINDOWS\system32\DRIVERS\ndiscap.sys [2013-08-22 30720]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys [2013-08-22 109568]
S3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\WINDOWS\system32\DRIVERS\ndistapi.sys [2013-08-22 20992]
S3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 167936]
S3 NdisWanLegacy;@%systemroot%\system32\rascfg.dll,-32014; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 167936]
S3 NDProxy;NDIS Proxy; C:\WINDOWS\system32\drivers\NDProxy.sys [2013-08-22 51200]
S3 netvsc;netvsc; C:\WINDOWS\system32\DRIVERS\netvsc63.sys [2013-08-22 72192]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\WINDOWS\System32\drivers\parport.sys [2013-08-22 81408]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\WINDOWS\System32\drivers\processr.sys [2013-08-22 83456]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2010-08-16 16472]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2010-08-16 11104]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\WINDOWS\system32\drivers\qwavedrv.sys [2013-08-22 32256]
S3 RasAcd;Remote Access Auto Connection Driver; C:\WINDOWS\System32\DRIVERS\rasacd.sys [2013-08-22 11776]
S3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\WINDOWS\system32\DRIVERS\raspppoe.sys [2013-08-22 71168]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\WINDOWS\System32\drivers\rdpdr.sys [2013-09-30 143872]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [2013-09-30 23392]
S3 s3cap;s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [2013-08-22 6528]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\WINDOWS\System32\DRIVERS\scfilter.sys [2013-08-22 35840]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\WINDOWS\System32\drivers\sdstor.sys [2014-02-22 64344]
S3 SerCx;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx.sys [2013-08-22 58208]
S3 SerCx2;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx2.sys [2013-10-26 120152]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\WINDOWS\System32\drivers\serenum.sys [2013-08-22 17920]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\WINDOWS\System32\drivers\serial.sys [2013-08-22 77312]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\WINDOWS\System32\drivers\sermouse.sys [2013-08-22 19968]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\WINDOWS\System32\drivers\sfloppy.sys [2013-08-22 13312]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\WINDOWS\system32\drivers\SpbCx.sys [2013-08-22 59232]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\WINDOWS\system32\DRIVERS\taphss6.sys [2013-02-22 37064]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\WINDOWS\system32\DRIVERS\tcpip.sys [2014-03-04 1871192]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2013-10-22 889888]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\WINDOWS\System32\drivers\terminpt.sys [2013-09-30 30048]
S3 TPM;@tpm.inf,%TPM%;TPM; C:\WINDOWS\system32\drivers\tpm.sys [2013-08-22 133472]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\WINDOWS\System32\drivers\tsusbflt.sys [2013-08-22 48640]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\WINDOWS\System32\drivers\TsUsbGD.sys [2013-08-22 26880]
S3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunnel.sys [2013-08-22 123392]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\WINDOWS\System32\drivers\uaspstor.sys [2013-08-22 57696]
S3 UCX01000;USB Controller Extension; C:\WINDOWS\System32\drivers\ucx01000.sys [2014-02-22 163672]
S3 UEFI;@uefi.inf,%UEFI.SvcDesc%;Microsoft UEFI Driver; C:\WINDOWS\System32\drivers\UEFI.sys [2013-08-22 23904]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\WINDOWS\System32\drivers\umpass.sys [2013-08-22 9216]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-02-15 88192]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\WINDOWS\System32\drivers\usbcir.sys [2013-08-22 88064]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\WINDOWS\System32\drivers\UsbHub3.sys [2014-03-08 376152]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbohci.sys [2013-08-22 22016]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\WINDOWS\System32\drivers\usbprint.sys [2013-08-22 19456]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\USBXHCI.SYS [2014-02-22 261464]
S3 uvhid;Unified Virtual HID; C:\WINDOWS\System32\drivers\uvhid.sys [2013-02-27 18432]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\WINDOWS\system32\drivers\VerifierExt.sys [2013-09-30 142168]
S3 vhdmp;vhdmp; C:\WINDOWS\System32\drivers\vhdmp.sys [2014-01-29 411992]
S3 ViaC7;@cpu.inf,%ViaC7.SvcDesc%;VIA C7 Processor Driver; C:\WINDOWS\System32\drivers\viac7.sys [2013-08-22 83968]
S3 VMBusHID;VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [2013-08-22 18304]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\WINDOWS\System32\drivers\vwifibus.sys [2013-08-22 20992]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\WINDOWS\System32\drivers\wacompen.sys [2013-08-22 20992]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\WINDOWS\system32\drivers\WdBoot.sys [2014-03-24 30224]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\WINDOWS\system32\drivers\WdFilter.sys [2014-03-24 219992]
S3 WdNisDrv;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-370; C:\WINDOWS\system32\Drivers\WdNisDrv.sys [2014-03-24 92504]
S4 cdfs;CD/DVD File System Reader; C:\WINDOWS\system32\DRIVERS\cdfs.sys [2013-08-22 73728]
S4 cnghwassist;@%SystemRoot%\system32\drivers\cnghwassist.sys,-100; C:\WINDOWS\System32\DRIVERS\cnghwassist.sys [2013-08-22 31584]
S4 udfs;udfs; C:\WINDOWS\system32\DRIVERS\udfs.sys [2013-08-22 261120]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 777584]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-10-22 3869688]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 DcomLaunch;@combase.dll,-5012; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\WINDOWS\System32\lsass.exe [2013-08-22 34072]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 EventSystem;@comres.dll,-2450; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HsfXAudioService;@oem53.inf,%XAudio2.SVCDESC%;HsfXAudioService; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 RpcSs;@combase.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\WINDOWS\system32\lsass.exe [2013-08-22 34072]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\WINDOWS\System32\spoolsv.exe [2013-08-22 534016]
R2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\WINDOWS\system32\sppsvc.exe [2014-03-11 5251224]
R2 StartMenuService;StartMenu8 Service; C:\Program Files\IObit\Start Menu 8\StartMenuServices.exe [2013-12-09 72512]
R2 StiSvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2012-05-29 1005440]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R3 NcbService;@%SystemRoot%\system32\ncbservice.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\WINDOWS\system32\lsass.exe [2013-08-22 34072]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S2 gpsvc;@gpapi.dll,-112; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
S2 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\WINDOWS\System32\alg.exe [2013-08-22 72704]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 AppReadiness;@%SystemRoot%\System32\AppReadiness.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 AppXSvc;@%SystemRoot%\system32\appxdeploymentserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 COMSysApp;@comres.dll,-947; C:\WINDOWS\system32\dllhost.exe [2013-08-22 17760]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 EapHost;@%systemroot%\system32\eapsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\WINDOWS\system32\fxssvc.exe [2013-08-22 524800]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\WINDOWS\system32\IEEtwCollector.exe [2013-10-19 108032]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 KeyIso;@keyiso.dll,-100; C:\WINDOWS\system32\lsass.exe [2013-08-22 34072]
S3 KtmRm;@comres.dll,-2946; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 lfsvc;@%SystemRoot%\System32\GeofenceMonitorService.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-01-25 2151744]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 MSDTC;@comres.dll,-2797; C:\WINDOWS\System32\msdtc.exe [2013-08-22 136192]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\WINDOWS\system32\msiexec.exe [2013-08-22 55808]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-08-10 139856]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 PrintNotify;@C:\Windows\system32\spool\drivers\W32X86\3\PrintConfig.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\WINDOWS\system32\locator.exe [2013-08-22 9728]
S3 ScDeviceEnum;@%SystemRoot%\System32\ScDeviceEnum.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 smphost;@%SystemRoot%\System32\smphost.dll,-102; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\WINDOWS\servicing\TrustedInstaller.exe [2014-02-22 89088]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\WINDOWS\system32\UI0Detect.exe [2013-08-22 36864]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\WINDOWS\System32\vds.exe [2014-02-22 570368]
S3 vmicguestinterface;@%systemroot%\system32\vmicres.dll,-801; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\WINDOWS\system32\vssvc.exe [2014-02-22 969728]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\WINDOWS\system32\wbengine.exe [2014-02-22 1294848]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 WdNisSvc;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320; C:\Program Files\Windows Defender\NisSrv.exe [2014-03-24 279784]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 WEPHOSTSVC;@%systemroot%\system32\wephostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S4 AppMgmt;@appmgmts.dll,-3250; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S4 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S4 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 MsKeyboardFilter;@%SystemRoot%\system32\KeyboardFilterSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S4 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\WINDOWS\system32\lsass.exe [2013-08-22 34072]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\WINDOWS\System32\svchost.exe [2013-08-22 31552]
S4 RemoteRegistry;@regsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
S4 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\WINDOWS\System32\snmptrap.exe [2013-08-22 14336]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený start win 8.1
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Zpomalený start win 8.1
Zdravím 
Doporučuji odinstalovat Advanced system care, nadělá víc škody než užitku. Také bych po startu vypnula torenty.
Stáhněte Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
-Uložte program na plochu a spusťte . Pak se zobrazí se licenční podminky - potvrďte start libovolnou klávesou.
- vytvoří se záloha a proběhne skenování.
Po skončení skenování na Vás vyběhne log (bude uložen v c:\JRT jako JRT.txt) - zkopírujte jej sem
Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/
-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.
Použijte CCleaner http://forum.viry.cz/viewtopic.php?f=46&t=7478
--------------------------------
Doporučuji odinstalovat Advanced system care, nadělá víc škody než užitku. Také bych po startu vypnula torenty.
Stáhněte Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe-Uložte program na plochu a spusťte . Pak se zobrazí se licenční podminky - potvrďte start libovolnou klávesou.
- vytvoří se záloha a proběhne skenování.
Po skončení skenování na Vás vyběhne log (bude uložen v c:\JRT jako JRT.txt) - zkopírujte jej sem
Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.
Použijte CCleaner http://forum.viry.cz/viewtopic.php?f=46&t=7478--------------------------------
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
ted jsem se k tomu dostal system care by měl být odinstalovaný.....
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 8.1 Pro x86
Ran by mixik on ne 25. 05. 2014 at 18:31:31,01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\anchorfree
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Myfree Codec
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Myfree Codec
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\mixik\AppData\Roaming\isafe"
Successfully deleted: [Folder] "C:\Program Files\myfree codec"
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 25. 05. 2014 at 18:40:57,22
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 8.1 Pro x86
Ran by mixik on ne 25. 05. 2014 at 18:31:31,01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\anchorfree
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Myfree Codec
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Myfree Codec
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\mixik\AppData\Roaming\isafe"
Successfully deleted: [Folder] "C:\Program Files\myfree codec"
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 25. 05. 2014 at 18:40:57,22
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Zpomalený start win 8.1
# AdwCleaner v3.210 - Report created 25/05/2014 at 19:05:42
# Updated 19/05/2014 by Xplode
# Operating System : Windows 8.1 Pro (32 bits)
# Username : mixik - _MIXÍK_
# Running from : C:\Users\mixik\Downloads\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\Users\mixik\AppData\Local\genienext
Folder Deleted : C:\Users\mixik\AppData\Local\Mobogenie
Folder Deleted : C:\Users\mixik\AppData\Local\AlawarWrapper
Folder Deleted : C:\Users\mixik\AppData\Roaming\eCyber
Folder Deleted : C:\Users\mixik\Documents\Mobogenie
***** [ Shortcuts ] *****
***** [ Registry ] *****
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{14509EDF-ADBC-44EF-BFE9-F5319B982434}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14509EDF-ADBC-44EF-BFE9-F5319B982434}
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKCU\Software\GoforFiles
Key Deleted : HKLM\Software\GoforFiles
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Before]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page Before]
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\prefs.js ]
-\\ Google Chrome v34.0.1847.131
[ File : C:\Users\mixik\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Search Provider] : hxxp://www.androiddrawer.com/search-results/?q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted [Extension] : hahpjplbmicfkmoccokbjejahjjpnena
Deleted [Extension] : hbcennhacfaagdopikcegfcobcadeocj
Deleted [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
Deleted [Extension] : olakgnkoldmagdblaalodobkmeokmgjj
Deleted [Extension] : pfndaklgolladniicklehhancnlgocpp
*************************
AdwCleaner[R1].txt - [2407 octets] - [25/05/2014 19:04:16]
AdwCleaner[S0].txt - [2286 octets] - [25/05/2014 19:05:42]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2346 octets] ##########
# Updated 19/05/2014 by Xplode
# Operating System : Windows 8.1 Pro (32 bits)
# Username : mixik - _MIXÍK_
# Running from : C:\Users\mixik\Downloads\AdwCleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\Users\mixik\AppData\Local\genienext
Folder Deleted : C:\Users\mixik\AppData\Local\Mobogenie
Folder Deleted : C:\Users\mixik\AppData\Local\AlawarWrapper
Folder Deleted : C:\Users\mixik\AppData\Roaming\eCyber
Folder Deleted : C:\Users\mixik\Documents\Mobogenie
***** [ Shortcuts ] *****
***** [ Registry ] *****
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{14509EDF-ADBC-44EF-BFE9-F5319B982434}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{14509EDF-ADBC-44EF-BFE9-F5319B982434}
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKCU\Software\GoforFiles
Key Deleted : HKLM\Software\GoforFiles
***** [ Browsers ] *****
-\\ Internet Explorer v0.0.0.0
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Before]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page Before]
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\prefs.js ]
-\\ Google Chrome v34.0.1847.131
[ File : C:\Users\mixik\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Search Provider] : hxxp://www.androiddrawer.com/search-results/?q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
Deleted [Extension] : gkcefkcdkepgkpbgncjchhbjgoanleod
Deleted [Extension] : hahpjplbmicfkmoccokbjejahjjpnena
Deleted [Extension] : hbcennhacfaagdopikcegfcobcadeocj
Deleted [Extension] : icdlfehblmklkikfigmjhbmmpmkmpooj
Deleted [Extension] : olakgnkoldmagdblaalodobkmeokmgjj
Deleted [Extension] : pfndaklgolladniicklehhancnlgocpp
*************************
AdwCleaner[R1].txt - [2407 octets] - [25/05/2014 19:04:16]
AdwCleaner[S0].txt - [2286 octets] - [25/05/2014 19:05:42]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2346 octets] ##########
Re: Zpomalený start win 8.1
Stahněte MBAM http://www.viry.cz/forum/viewtopic.php?f=29&t=115222-Nainstalujte,dejte úplný sken
NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
Dobrý večer tady log
Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.05.26.02
Windows 8 x86 NTFS
Internet Explorer 11.0.9600.17031
mixik :: _MIXÍK_ [administrátor]
Ochrana: Zakázána
26. 5. 2014 19:09:53
mbam-log-2014-05-26 (19-09-53).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 339177
Uplynulý čas: 1 hodin, 32 minut, 40 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.05.26.02
Windows 8 x86 NTFS
Internet Explorer 11.0.9600.17031
mixik :: _MIXÍK_ [administrátor]
Ochrana: Zakázána
26. 5. 2014 19:09:53
mbam-log-2014-05-26 (19-09-53).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 339177
Uplynulý čas: 1 hodin, 32 minut, 40 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Re: Zpomalený start win 8.1
Jak to vypadá s pc?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
PC vypadá že je OK jen ten start prostě býval svižnější,ale to je asi jiná kapitola(čím víc se instaluje-tím víc se zasírá)
ale měl bych mít system care odinstalován a v prvním příspěvku moderátorka doporučuje odinstalovat----zůstali tam nějaké zbytky??
děkuji
ale měl bych mít system care odinstalován a v prvním příspěvku moderátorka doporučuje odinstalovat----zůstali tam nějaké zbytky??
děkuji
Re: Zpomalený start win 8.1
Poprosím o nový log ze rsitu.
A máte pravdu, čím více instalujete programů, tím víc se může spomalit.
A máte pravdu, čím více instalujete programů, tím víc se může spomalit.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
dobrý večer tady je
Logfile of random's system information tool 1.10 (written by random/random)
Run by mixik at 2014-05-27 20:55:46
Microsoft Windows 8.1 Pro
System drive C: has 41 GB (57%) free of 71 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:56:09, on 27. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\r2 Studios\HideOE\HideOE.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\mixik\Downloads\RSIT.exe
C:\Program Files\trend micro\mixik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Služba Acronis Scheduler2] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKCU\..\Run: [HideOE] "C:\Program Files\r2 Studios\HideOE\HideOE.exe"
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{867B2987-0686-48EF-8AAC-51ED664334C8}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: skype-ie-addon-data - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Crystal Rich Ltd - C:\Program Files\USB Safely Remove\USBSRService.exe
--
End of file - 6893 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "https://www.google.com/search"
prefs.js - "keyword.url" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-02-23 1037608]
"Služba Acronis Scheduler2"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 380240]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2013-09-20 7801088]
"AcronisTibMounterMonitor"=C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1105328]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-15 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-23 3888648]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2014-05-13 2774936]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2014-05-13 3681688]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HideOE"=C:\Program Files\r2 Studios\HideOE\HideOE.exe [2003-07-24 32768]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2012-12-28 2587136]
"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-06-07 774680]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2013-08-29 2023424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
c:\program files\samsung\kies\kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
c:\program files\samsung\kies\kiestrayagent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
c:\program files\common files\java\java update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
c:\program files\zoner\photo studio 15\program32\zpstray.exe [2013-06-07 774680]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-27 17:57:36 ----AC---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-27 17:57:34 ----AC---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-27 17:57:27 ----AC---- C:\WINDOWS\system32\mstscax.dll
2014-05-27 17:57:26 ----AC---- C:\WINDOWS\system32\shell32.dll
2014-05-27 17:57:20 ----AC---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-27 17:57:19 ----AC---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-27 17:57:17 ----AC---- C:\WINDOWS\system32\gpsvc.dll
2014-05-27 17:57:16 ----AC---- C:\WINDOWS\system32\twinui.dll
2014-05-27 17:57:13 ----AC---- C:\WINDOWS\system32\d3d9.dll
2014-05-27 17:57:12 ----AC---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-27 17:57:11 ----AC---- C:\WINDOWS\system32\mfcore.dll
2014-05-27 17:57:10 ----AC---- C:\WINDOWS\system32\win32k.sys
2014-05-27 17:57:08 ----AC---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\services.exe
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\localspl.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\winmde.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\srvsvc.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\MDEServer.exe
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpencom.dll
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\win32spl.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\mfsvr.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\ploptin.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\dwmapi.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\defragsvc.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\lsasrv.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\gpapi.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\rpchttp.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\wscsvc.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\propsys.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mfplat.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mf.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioSes.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioEng.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\wintrust.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\audiodg.exe
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\VSSVC.exe
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\energyprov.dll
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\clusapi.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\swprv.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\srcore.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\resutils.dll
2014-05-27 17:56:46 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\tlscsp.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\rdpudd.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\d3d8thk.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\wlansvc.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\mispace.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\audiosrv.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\wlanapi.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\srclient.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-27 17:56:41 ----AC---- C:\WINDOWS\system32\rstrui.exe
2014-05-27 17:56:40 ----AC---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-26 19:06:39 ----DC---- C:\WINDOWS\Minidump
2014-05-26 19:06:36 ----ASH---- C:\pagefile.sys
2014-05-25 18:50:39 ----AC---- C:\WINDOWS\system32\sqlite3.dll
2014-05-25 18:48:49 ----DC---- C:\AdwCleaner
2014-05-23 22:55:00 ----AC---- C:\WINDOWS\system32\drivers\mbam.sys
2014-05-20 19:44:54 ----DC---- C:\Users\mixik\AppData\Roaming\Spyware Terminator
2014-05-20 19:44:54 ----DC---- C:\ProgramData\Spyware Terminator
2014-05-20 19:43:57 ----DC---- C:\Program Files\Spyware Terminator
2014-05-18 19:47:37 ----AC---- C:\WINDOWS\system32\PAStiSvc.exe
2014-05-18 18:38:06 ----DC---- C:\ProgramData\Application Data
2014-05-18 18:34:06 ----DC---- C:\ProgramData\IMSIDesign
2014-05-18 18:34:06 ----DC---- C:\Program Files\IMSIDesign
2014-05-18 18:20:27 ----AC---- C:\StiImg.dat
2014-05-18 18:19:46 ----DC---- C:\Program Files\Zeallsoft
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\PixArt
2014-05-18 15:54:52 ----DC---- C:\rsit
2014-05-18 15:54:52 ----DC---- C:\Program Files\trend micro
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files\DESIGNER
2014-05-15 20:30:22 ----AC---- C:\WINDOWS\system32\wusa.exe
2014-05-15 20:29:27 ----AC---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-15 20:29:02 ----AC---- C:\WINDOWS\system32\wuaueng.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\WSShared.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wucltux.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wuapi.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\ubpm.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wups.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wudriver.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wuauclt.exe
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\storewuauth.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuwebv.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuapp.exe
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\WSReset.exe
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt100.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt_map.dll
2014-05-15 19:44:30 ----AC---- C:\WINDOWS\system32\WavesGUILib.dll
2014-05-15 19:44:28 ----AC---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-15 19:44:27 ----AC---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2014-05-15 19:44:26 ----AC---- C:\WINDOWS\system32\RtkCoInstII.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkApoApi.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkAPO.dll
2014-05-15 19:44:23 ----AC---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-15 19:44:16 ----AC---- C:\WINDOWS\system32\RCoRes.dat
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2014-05-15 19:44:11 ----AC---- C:\WINDOWS\system32\MaxxAudioVnN.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioVnA.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek2.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2014-05-15 19:44:03 ----AC---- C:\WINDOWS\system32\FMAPO.dll
2014-05-15 19:34:51 ----DC---- C:\Users\mixik\AppData\Roaming\MAGIX
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplayx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2014-05-11 22:37:16 ----DC---- C:\Program Files\directx
2014-05-11 14:17:45 ----AC---- C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
2014-05-08 09:20:23 ----DC---- C:\Program Files\H264LevelEditor_1.5.1
2014-05-07 17:42:10 ----AC---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-04 09:26:36 ----DC---- C:\WINDOWS\system32\Samsung_USB_Drivers
2014-05-04 09:25:45 ----AC---- C:\WINDOWS\system32\drivers\StarOpen.sys
2014-05-04 08:43:50 ----DC---- C:\Program Files\SDA
2014-05-04 00:27:40 ----C---- C:\WINDOWS\system32\pwdrvio.sys
2014-05-04 00:26:33 ----C---- C:\WINDOWS\system32\pwdspio.sys
2014-05-03 23:10:35 ----DC---- C:\Program Files\MiniTool Partition Wizard Home Edition 5.2
2014-05-03 09:01:02 ----DC---- C:\JRT
2014-05-02 18:02:26 ----AC---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\avastSS.scr
2014-04-30 21:34:54 ----DC---- C:\Program Files\Visual Similarity Duplicate Image Finder
2014-04-30 19:57:39 ----DC---- C:\Program Files\Malwarebytes Anti-Malware
======List of files/folders modified in the last 1 month======
2014-05-27 20:55:02 ----RDC---- C:\WINDOWS\System32
2014-05-27 20:55:02 ----DC---- C:\WINDOWS\inf
2014-05-27 20:55:02 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 20:50:27 ----DC---- C:\Users\mixik\AppData\Roaming\USBSafelyRemove
2014-05-27 20:48:58 ----DC---- C:\WINDOWS\system32\config
2014-05-27 20:48:57 ----DC---- C:\WINDOWS\Microsoft.NET
2014-05-27 20:48:57 ----D---- C:\WINDOWS\WinSxS
2014-05-27 20:48:42 ----DC---- C:\WINDOWS\Temp
2014-05-27 20:45:33 ----RD---- C:\WINDOWS\ToastData
2014-05-27 20:45:32 ----RDC---- C:\WINDOWS\ImmersiveControlPanel
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\oobe
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\Drivers
2014-05-27 20:45:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 18:39:25 ----DC---- C:\Users\mixik\AppData\Roaming\uTorrent
2014-05-27 18:35:30 ----ADC---- C:\ProgramData\TEMP
2014-05-27 18:01:48 ----DC---- C:\WINDOWS\system32\Tasks
2014-05-27 18:01:09 ----SHD---- C:\System Volume Information
2014-05-27 17:58:16 ----DC---- C:\WINDOWS\CbsTemp
2014-05-27 17:47:13 ----DC---- C:\WINDOWS\SoftwareDistribution
2014-05-27 17:47:07 ----ADC---- C:\Windows
2014-05-26 21:56:50 ----DC---- C:\WINDOWS\debug
2014-05-26 21:42:05 ----DC---- C:\Users\mixik\AppData\Roaming\vlc
2014-05-25 19:05:47 ----HDC---- C:\ProgramData
2014-05-25 18:35:21 ----RDC---- C:\Program Files
2014-05-23 22:55:10 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 22:57:32 ----DC---- C:\Users\mixik\AppData\Roaming\MyPhoneExplorer
2014-05-18 19:52:20 ----DC---- C:\Program Files\MyPhoneExplorer
2014-05-18 18:37:57 ----SHDC---- C:\WINDOWS\Installer
2014-05-18 18:37:57 ----HDC---- C:\Program Files\InstallShield Installation Information
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\twain_32
2014-05-18 11:06:30 ----DC---- C:\Users\mixik\AppData\Roaming\Skype
2014-05-18 10:50:59 ----DC---- C:\Program Files\Mozilla Firefox
2014-05-15 21:08:08 ----SHDC---- C:\Boot
2014-05-15 21:04:14 ----DC---- C:\Program Files\Windows Defender
2014-05-15 21:04:13 ----DC---- C:\WINDOWS\apppatch
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\WinStore
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\system32\cs-CZ
2014-05-15 20:39:12 ----SDC---- C:\Users\mixik\AppData\Roaming\Microsoft
2014-05-15 20:38:58 ----DC---- C:\ProgramData\Microsoft Help
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files
2014-05-15 20:35:04 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-15 20:34:59 ----DC---- C:\WINDOWS\system32\MRT
2014-05-15 20:31:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2014-05-15 20:25:40 ----DC---- C:\WINDOWS\system32\catroot2
2014-05-15 20:09:04 ----DC---- C:\WINDOWS\system32\catroot
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\Tasks
2014-05-15 19:47:20 ----DC---- C:\WINDOWS\system32\RTCOM
2014-05-15 19:44:00 ----AC---- C:\log.txt
2014-05-15 19:36:12 ----DC---- C:\Program Files\IObit
2014-05-13 21:05:22 ----DC---- C:\WINDOWS\en-US
2014-05-11 23:12:34 ----DC---- C:\Program Files\Common Files\InstallShield
2014-05-11 14:44:25 ----DC---- C:\Users\mixik\AppData\Roaming\Malwarebytes
2014-05-07 18:00:29 ----DC---- C:\Program Files\Acoustica CD Label Maker
2014-05-06 19:38:53 ----DC---- C:\Program Files\Samsung
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-10-22 86304]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-10-22 185120]
R0 tib;Acronis TIB Manager; C:\WINDOWS\system32\DRIVERS\tib.sys [2013-10-21 736192]
R0 tib_mounter;Acronis TIB Mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [2013-10-22 130488]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-12 68312]
R2 irda;@netirda.inf,%IrDA.DisplayName%;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2013-08-22 95232]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2010-02-10 19384]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2013-10-04 35088]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-10-22 234752]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 10071040]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 290304]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\b57nd60x.sys [2013-06-18 376832]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2010-02-10 987704]
R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2010-02-10 214072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2014-05-15 3017112]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 22856]
R3 netwlv32;@netwlv32.inf, %NIC_Service_DispName_VISTA%; Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\WINDOWS\system32\DRIVERS\netwlv32.sys [2013-06-18 6637056]
R3 NSCIRDA;@oem2.inf,%NSCIRDA.ServiceDesc%;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-02-23 198064]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 176768]
S3 CV2K1;@oem62.inf,%CommView_Desc%;CommView Network Monitor; C:\WINDOWS\system32\DRIVERS\cv2k1.sys []
S3 dg_ssudbus;@oem43.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 PAC207;@oem89.inf,%DI_Description%;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2010-08-16 16472]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2010-08-16 11104]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\WINDOWS\system32\DRIVERS\taphss6.sys [2013-02-22 37064]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2013-10-22 889888]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-02-15 88192]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 uvhid;Unified Virtual HID; C:\WINDOWS\System32\drivers\uvhid.sys [2013-02-27 18432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 777584]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-10-22 3869688]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HsfXAudioService;@oem53.inf,%XAudio2.SVCDESC%;HsfXAudioService; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2014-05-13 585112]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2012-05-29 1005440]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S3 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-01-25 2151744]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by mixik at 2014-05-27 20:55:46
Microsoft Windows 8.1 Pro
System drive C: has 41 GB (57%) free of 71 GB
Total RAM: 2046 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:56:09, on 27. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files\Spyware Terminator\st_rsser.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\r2 Studios\HideOE\HideOE.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\mixik\Downloads\RSIT.exe
C:\Program Files\trend micro\mixik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Služba Acronis Scheduler2] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
O4 - HKLM\..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKCU\..\Run: [HideOE] "C:\Program Files\r2 Studios\HideOE\HideOE.exe"
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{867B2987-0686-48EF-8AAC-51ED664334C8}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: skype-ie-addon-data - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator 2012 Realtime Shield Service (ST2012_Svc) - Crawler.com - C:\Program Files\Spyware Terminator\st_rsser.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Crystal Rich Ltd - C:\Program Files\USB Safely Remove\USBSRService.exe
--
End of file - 6893 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "https://www.google.com/search"
prefs.js - "keyword.url" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-02-23 1037608]
"Služba Acronis Scheduler2"=C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 380240]
"TrueImageMonitor.exe"=C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2013-09-20 7801088]
"AcronisTibMounterMonitor"=C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1105328]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-15 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-23 3888648]
"SpywareTerminatorShield"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2014-05-13 2774936]
"SpywareTerminatorUpdater"=C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [2014-05-13 3681688]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HideOE"=C:\Program Files\r2 Studios\HideOE\HideOE.exe [2003-07-24 32768]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2012-12-28 2587136]
"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-06-07 774680]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2013-08-29 2023424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
c:\program files\samsung\kies\kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
c:\program files\samsung\kies\kiestrayagent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
c:\program files\common files\java\java update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
c:\program files\zoner\photo studio 15\program32\zpstray.exe [2013-06-07 774680]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-27 17:57:36 ----AC---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-27 17:57:34 ----AC---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-27 17:57:27 ----AC---- C:\WINDOWS\system32\mstscax.dll
2014-05-27 17:57:26 ----AC---- C:\WINDOWS\system32\shell32.dll
2014-05-27 17:57:20 ----AC---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-27 17:57:19 ----AC---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-27 17:57:17 ----AC---- C:\WINDOWS\system32\gpsvc.dll
2014-05-27 17:57:16 ----AC---- C:\WINDOWS\system32\twinui.dll
2014-05-27 17:57:13 ----AC---- C:\WINDOWS\system32\d3d9.dll
2014-05-27 17:57:12 ----AC---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-27 17:57:11 ----AC---- C:\WINDOWS\system32\mfcore.dll
2014-05-27 17:57:10 ----AC---- C:\WINDOWS\system32\win32k.sys
2014-05-27 17:57:08 ----AC---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\services.exe
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\localspl.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\winmde.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\srvsvc.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\MDEServer.exe
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpencom.dll
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\win32spl.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\mfsvr.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\ploptin.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\dwmapi.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\defragsvc.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\lsasrv.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\gpapi.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\rpchttp.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\wscsvc.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\propsys.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mfplat.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mf.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioSes.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioEng.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\wintrust.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\audiodg.exe
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\VSSVC.exe
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\energyprov.dll
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\clusapi.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\swprv.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\srcore.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\resutils.dll
2014-05-27 17:56:46 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\tlscsp.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\rdpudd.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\d3d8thk.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\wlansvc.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\mispace.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\audiosrv.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\wlanapi.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\srclient.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-27 17:56:41 ----AC---- C:\WINDOWS\system32\rstrui.exe
2014-05-27 17:56:40 ----AC---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-26 19:06:39 ----DC---- C:\WINDOWS\Minidump
2014-05-26 19:06:36 ----ASH---- C:\pagefile.sys
2014-05-25 18:50:39 ----AC---- C:\WINDOWS\system32\sqlite3.dll
2014-05-25 18:48:49 ----DC---- C:\AdwCleaner
2014-05-23 22:55:00 ----AC---- C:\WINDOWS\system32\drivers\mbam.sys
2014-05-20 19:44:54 ----DC---- C:\Users\mixik\AppData\Roaming\Spyware Terminator
2014-05-20 19:44:54 ----DC---- C:\ProgramData\Spyware Terminator
2014-05-20 19:43:57 ----DC---- C:\Program Files\Spyware Terminator
2014-05-18 19:47:37 ----AC---- C:\WINDOWS\system32\PAStiSvc.exe
2014-05-18 18:38:06 ----DC---- C:\ProgramData\Application Data
2014-05-18 18:34:06 ----DC---- C:\ProgramData\IMSIDesign
2014-05-18 18:34:06 ----DC---- C:\Program Files\IMSIDesign
2014-05-18 18:20:27 ----AC---- C:\StiImg.dat
2014-05-18 18:19:46 ----DC---- C:\Program Files\Zeallsoft
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\PixArt
2014-05-18 15:54:52 ----DC---- C:\rsit
2014-05-18 15:54:52 ----DC---- C:\Program Files\trend micro
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files\DESIGNER
2014-05-15 20:30:22 ----AC---- C:\WINDOWS\system32\wusa.exe
2014-05-15 20:29:27 ----AC---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-15 20:29:02 ----AC---- C:\WINDOWS\system32\wuaueng.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\WSShared.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wucltux.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wuapi.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\ubpm.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wups.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wudriver.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wuauclt.exe
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\storewuauth.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuwebv.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuapp.exe
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\WSReset.exe
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt100.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt_map.dll
2014-05-15 19:44:30 ----AC---- C:\WINDOWS\system32\WavesGUILib.dll
2014-05-15 19:44:28 ----AC---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-15 19:44:27 ----AC---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2014-05-15 19:44:26 ----AC---- C:\WINDOWS\system32\RtkCoInstII.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkApoApi.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkAPO.dll
2014-05-15 19:44:23 ----AC---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-15 19:44:16 ----AC---- C:\WINDOWS\system32\RCoRes.dat
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2014-05-15 19:44:11 ----AC---- C:\WINDOWS\system32\MaxxAudioVnN.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioVnA.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek2.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2014-05-15 19:44:03 ----AC---- C:\WINDOWS\system32\FMAPO.dll
2014-05-15 19:34:51 ----DC---- C:\Users\mixik\AppData\Roaming\MAGIX
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplayx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2014-05-11 22:37:16 ----DC---- C:\Program Files\directx
2014-05-11 14:17:45 ----AC---- C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
2014-05-08 09:20:23 ----DC---- C:\Program Files\H264LevelEditor_1.5.1
2014-05-07 17:42:10 ----AC---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-04 09:26:36 ----DC---- C:\WINDOWS\system32\Samsung_USB_Drivers
2014-05-04 09:25:45 ----AC---- C:\WINDOWS\system32\drivers\StarOpen.sys
2014-05-04 08:43:50 ----DC---- C:\Program Files\SDA
2014-05-04 00:27:40 ----C---- C:\WINDOWS\system32\pwdrvio.sys
2014-05-04 00:26:33 ----C---- C:\WINDOWS\system32\pwdspio.sys
2014-05-03 23:10:35 ----DC---- C:\Program Files\MiniTool Partition Wizard Home Edition 5.2
2014-05-03 09:01:02 ----DC---- C:\JRT
2014-05-02 18:02:26 ----AC---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\avastSS.scr
2014-04-30 21:34:54 ----DC---- C:\Program Files\Visual Similarity Duplicate Image Finder
2014-04-30 19:57:39 ----DC---- C:\Program Files\Malwarebytes Anti-Malware
======List of files/folders modified in the last 1 month======
2014-05-27 20:55:02 ----RDC---- C:\WINDOWS\System32
2014-05-27 20:55:02 ----DC---- C:\WINDOWS\inf
2014-05-27 20:55:02 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 20:50:27 ----DC---- C:\Users\mixik\AppData\Roaming\USBSafelyRemove
2014-05-27 20:48:58 ----DC---- C:\WINDOWS\system32\config
2014-05-27 20:48:57 ----DC---- C:\WINDOWS\Microsoft.NET
2014-05-27 20:48:57 ----D---- C:\WINDOWS\WinSxS
2014-05-27 20:48:42 ----DC---- C:\WINDOWS\Temp
2014-05-27 20:45:33 ----RD---- C:\WINDOWS\ToastData
2014-05-27 20:45:32 ----RDC---- C:\WINDOWS\ImmersiveControlPanel
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\oobe
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\Drivers
2014-05-27 20:45:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 18:39:25 ----DC---- C:\Users\mixik\AppData\Roaming\uTorrent
2014-05-27 18:35:30 ----ADC---- C:\ProgramData\TEMP
2014-05-27 18:01:48 ----DC---- C:\WINDOWS\system32\Tasks
2014-05-27 18:01:09 ----SHD---- C:\System Volume Information
2014-05-27 17:58:16 ----DC---- C:\WINDOWS\CbsTemp
2014-05-27 17:47:13 ----DC---- C:\WINDOWS\SoftwareDistribution
2014-05-27 17:47:07 ----ADC---- C:\Windows
2014-05-26 21:56:50 ----DC---- C:\WINDOWS\debug
2014-05-26 21:42:05 ----DC---- C:\Users\mixik\AppData\Roaming\vlc
2014-05-25 19:05:47 ----HDC---- C:\ProgramData
2014-05-25 18:35:21 ----RDC---- C:\Program Files
2014-05-23 22:55:10 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 22:57:32 ----DC---- C:\Users\mixik\AppData\Roaming\MyPhoneExplorer
2014-05-18 19:52:20 ----DC---- C:\Program Files\MyPhoneExplorer
2014-05-18 18:37:57 ----SHDC---- C:\WINDOWS\Installer
2014-05-18 18:37:57 ----HDC---- C:\Program Files\InstallShield Installation Information
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\twain_32
2014-05-18 11:06:30 ----DC---- C:\Users\mixik\AppData\Roaming\Skype
2014-05-18 10:50:59 ----DC---- C:\Program Files\Mozilla Firefox
2014-05-15 21:08:08 ----SHDC---- C:\Boot
2014-05-15 21:04:14 ----DC---- C:\Program Files\Windows Defender
2014-05-15 21:04:13 ----DC---- C:\WINDOWS\apppatch
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\WinStore
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\system32\cs-CZ
2014-05-15 20:39:12 ----SDC---- C:\Users\mixik\AppData\Roaming\Microsoft
2014-05-15 20:38:58 ----DC---- C:\ProgramData\Microsoft Help
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files
2014-05-15 20:35:04 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-15 20:34:59 ----DC---- C:\WINDOWS\system32\MRT
2014-05-15 20:31:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2014-05-15 20:25:40 ----DC---- C:\WINDOWS\system32\catroot2
2014-05-15 20:09:04 ----DC---- C:\WINDOWS\system32\catroot
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\Tasks
2014-05-15 19:47:20 ----DC---- C:\WINDOWS\system32\RTCOM
2014-05-15 19:44:00 ----AC---- C:\log.txt
2014-05-15 19:36:12 ----DC---- C:\Program Files\IObit
2014-05-13 21:05:22 ----DC---- C:\WINDOWS\en-US
2014-05-11 23:12:34 ----DC---- C:\Program Files\Common Files\InstallShield
2014-05-11 14:44:25 ----DC---- C:\Users\mixik\AppData\Roaming\Malwarebytes
2014-05-07 18:00:29 ----DC---- C:\Program Files\Acoustica CD Label Maker
2014-05-06 19:38:53 ----DC---- C:\Program Files\Samsung
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-10-22 86304]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-10-22 185120]
R0 tib;Acronis TIB Manager; C:\WINDOWS\system32\DRIVERS\tib.sys [2013-10-21 736192]
R0 tib_mounter;Acronis TIB Mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [2013-10-22 130488]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 sp_rsdrv2;Spyware Terminator 2012 Realtime Shield Driver; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2011-06-21 32768]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-12 68312]
R2 irda;@netirda.inf,%IrDA.DisplayName%;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2013-08-22 95232]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2010-02-10 19384]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2013-10-04 35088]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-10-22 234752]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 10071040]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 290304]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\b57nd60x.sys [2013-06-18 376832]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2010-02-10 987704]
R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2010-02-10 214072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2014-05-15 3017112]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 22856]
R3 netwlv32;@netwlv32.inf, %NIC_Service_DispName_VISTA%; Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\WINDOWS\system32\DRIVERS\netwlv32.sys [2013-06-18 6637056]
R3 NSCIRDA;@oem2.inf,%NSCIRDA.ServiceDesc%;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-02-23 198064]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 176768]
S3 CV2K1;@oem62.inf,%CommView_Desc%;CommView Network Monitor; C:\WINDOWS\system32\DRIVERS\cv2k1.sys []
S3 dg_ssudbus;@oem43.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 PAC207;@oem89.inf,%DI_Description%;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2010-08-16 16472]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2010-08-16 11104]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\WINDOWS\system32\DRIVERS\taphss6.sys [2013-02-22 37064]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2013-10-22 889888]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-02-15 88192]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 uvhid;Unified Virtual HID; C:\WINDOWS\System32\drivers\uvhid.sys [2013-02-27 18432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 777584]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-10-22 3869688]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HsfXAudioService;@oem53.inf,%XAudio2.SVCDESC%;HsfXAudioService; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service; C:\Program Files\Spyware Terminator\st_rsser.exe [2014-05-13 585112]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2012-05-29 1005440]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S3 LiveUpdateSvc;LiveUpdate; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2014-01-25 2151744]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
-----------------EOF-----------------
Re: Zpomalený start win 8.1
Já ho tam stále vidím. Pokud jste ho opravdu odinstaloval, zkuste použít ccleaner - odinstalování, jeslti je v seznamu, případně přes něj vyčištěte registry.
A Spyware terminátor už je také poněkud zastaralý
A Spyware terminátor už je také poněkud zastaralý
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
tak ještě pročištěno cc cleanerem a nový log
Logfile of random's system information tool 1.10 (written by random/random)
Run by mixik at 2014-05-27 22:10:08
Microsoft Windows 8.1 Pro
System drive C: has 41 GB (58%) free of 71 GB
Total RAM: 2046 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:27, on 27. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x86__8wekyb3d8bbwe\LiveComm.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\Users\mixik\Downloads\RSIT.exe
C:\Program Files\trend micro\mixik.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartupDelayer] "C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe" /LaunchType=Auto /LaunchApps=Common
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{867B2987-0686-48EF-8AAC-51ED664334C8}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: skype-ie-addon-data - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Crystal Rich Ltd - C:\Program Files\USB Safely Remove\USBSRService.exe
--
End of file - 5255 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "https://www.google.com/search"
prefs.js - "keyword.url" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-15 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-23 3888648]
"StartupDelayer"=C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [2014-02-16 1256520]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2012-12-28 2587136]
"uTorrent"=C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe [2014-01-01 393728]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2013-08-29 2023424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
c:\program files\samsung\kies\kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
c:\program files\samsung\kies\kiestrayagent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
c:\program files\common files\java\java update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
c:\program files\zoner\photo studio 15\program32\zpstray.exe [2013-06-07 774680]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-27 21:13:59 ----DC---- C:\ProgramData\r2 Studios
2014-05-27 17:57:36 ----AC---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-27 17:57:34 ----AC---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-27 17:57:27 ----AC---- C:\WINDOWS\system32\mstscax.dll
2014-05-27 17:57:26 ----AC---- C:\WINDOWS\system32\shell32.dll
2014-05-27 17:57:20 ----AC---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-27 17:57:19 ----AC---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-27 17:57:17 ----AC---- C:\WINDOWS\system32\gpsvc.dll
2014-05-27 17:57:16 ----AC---- C:\WINDOWS\system32\twinui.dll
2014-05-27 17:57:13 ----AC---- C:\WINDOWS\system32\d3d9.dll
2014-05-27 17:57:12 ----AC---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-27 17:57:11 ----AC---- C:\WINDOWS\system32\mfcore.dll
2014-05-27 17:57:10 ----AC---- C:\WINDOWS\system32\win32k.sys
2014-05-27 17:57:08 ----AC---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\services.exe
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\localspl.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\winmde.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\srvsvc.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\MDEServer.exe
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpencom.dll
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\win32spl.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\mfsvr.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\ploptin.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\dwmapi.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\defragsvc.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\lsasrv.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\gpapi.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\rpchttp.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\wscsvc.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\propsys.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mfplat.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mf.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioSes.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioEng.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\wintrust.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\audiodg.exe
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\VSSVC.exe
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\energyprov.dll
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\clusapi.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\swprv.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\srcore.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\resutils.dll
2014-05-27 17:56:46 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\tlscsp.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\rdpudd.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\d3d8thk.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\wlansvc.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\mispace.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\audiosrv.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\wlanapi.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\srclient.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-27 17:56:41 ----AC---- C:\WINDOWS\system32\rstrui.exe
2014-05-27 17:56:40 ----AC---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-26 19:06:39 ----DC---- C:\WINDOWS\Minidump
2014-05-26 19:06:36 ----ASH---- C:\pagefile.sys
2014-05-25 18:50:39 ----AC---- C:\WINDOWS\system32\sqlite3.dll
2014-05-25 18:48:49 ----DC---- C:\AdwCleaner
2014-05-23 22:55:00 ----AC---- C:\WINDOWS\system32\drivers\mbam.sys
2014-05-20 19:43:57 ----DC---- C:\Program Files\Spyware Terminator
2014-05-18 19:47:37 ----AC---- C:\WINDOWS\system32\PAStiSvc.exe
2014-05-18 18:38:06 ----DC---- C:\ProgramData\Application Data
2014-05-18 18:34:06 ----DC---- C:\ProgramData\IMSIDesign
2014-05-18 18:34:06 ----DC---- C:\Program Files\IMSIDesign
2014-05-18 18:20:27 ----AC---- C:\StiImg.dat
2014-05-18 18:19:46 ----DC---- C:\Program Files\Zeallsoft
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\PixArt
2014-05-18 15:54:52 ----DC---- C:\rsit
2014-05-18 15:54:52 ----DC---- C:\Program Files\trend micro
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files\DESIGNER
2014-05-15 20:30:22 ----AC---- C:\WINDOWS\system32\wusa.exe
2014-05-15 20:29:27 ----AC---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-15 20:29:02 ----AC---- C:\WINDOWS\system32\wuaueng.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\WSShared.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wucltux.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wuapi.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\ubpm.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wups.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wudriver.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wuauclt.exe
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\storewuauth.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuwebv.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuapp.exe
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\WSReset.exe
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt100.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt_map.dll
2014-05-15 19:44:30 ----AC---- C:\WINDOWS\system32\WavesGUILib.dll
2014-05-15 19:44:28 ----AC---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-15 19:44:27 ----AC---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2014-05-15 19:44:26 ----AC---- C:\WINDOWS\system32\RtkCoInstII.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkApoApi.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkAPO.dll
2014-05-15 19:44:23 ----AC---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-15 19:44:16 ----AC---- C:\WINDOWS\system32\RCoRes.dat
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2014-05-15 19:44:11 ----AC---- C:\WINDOWS\system32\MaxxAudioVnN.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioVnA.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek2.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2014-05-15 19:44:03 ----AC---- C:\WINDOWS\system32\FMAPO.dll
2014-05-15 19:34:51 ----DC---- C:\Users\mixik\AppData\Roaming\MAGIX
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplayx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2014-05-11 22:37:16 ----DC---- C:\Program Files\directx
2014-05-11 14:17:45 ----AC---- C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
2014-05-08 09:20:23 ----DC---- C:\Program Files\H264LevelEditor_1.5.1
2014-05-07 17:42:10 ----AC---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-04 09:26:36 ----DC---- C:\WINDOWS\system32\Samsung_USB_Drivers
2014-05-04 09:25:45 ----AC---- C:\WINDOWS\system32\drivers\StarOpen.sys
2014-05-04 08:43:50 ----DC---- C:\Program Files\SDA
2014-05-04 00:27:40 ----C---- C:\WINDOWS\system32\pwdrvio.sys
2014-05-04 00:26:33 ----C---- C:\WINDOWS\system32\pwdspio.sys
2014-05-03 23:10:35 ----DC---- C:\Program Files\MiniTool Partition Wizard Home Edition 5.2
2014-05-03 09:01:02 ----DC---- C:\JRT
2014-05-02 18:02:26 ----AC---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\avastSS.scr
2014-04-30 21:34:54 ----DC---- C:\Program Files\Visual Similarity Duplicate Image Finder
2014-04-30 19:57:39 ----DC---- C:\Program Files\Malwarebytes Anti-Malware
======List of files/folders modified in the last 1 month======
2014-05-27 22:10:24 ----DC---- C:\Users\mixik\AppData\Roaming\uTorrent
2014-05-27 22:09:41 ----DC---- C:\Users\mixik\AppData\Roaming\USBSafelyRemove
2014-05-27 22:08:58 ----DC---- C:\WINDOWS\Temp
2014-05-27 22:07:41 ----ADC---- C:\Windows
2014-05-27 22:05:29 ----ADC---- C:\ProgramData\TEMP
2014-05-27 22:04:00 ----HDC---- C:\ProgramData
2014-05-27 21:58:54 ----RSDC---- C:\WINDOWS\Fonts
2014-05-27 21:50:44 ----DC---- C:\WINDOWS\inf
2014-05-27 21:33:43 ----RDC---- C:\WINDOWS\System32
2014-05-27 21:33:42 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 21:23:04 ----RDC---- C:\Program Files
2014-05-27 21:19:33 ----RSDC---- C:\WINDOWS\assembly
2014-05-27 21:19:33 ----DC---- C:\WINDOWS\Microsoft.NET
2014-05-27 21:14:11 ----DC---- C:\WINDOWS\system32\Tasks
2014-05-27 21:13:53 ----DC---- C:\Program Files\r2 Studios
2014-05-27 20:48:58 ----DC---- C:\WINDOWS\system32\config
2014-05-27 20:48:57 ----D---- C:\WINDOWS\WinSxS
2014-05-27 20:45:33 ----RD---- C:\WINDOWS\ToastData
2014-05-27 20:45:32 ----RDC---- C:\WINDOWS\ImmersiveControlPanel
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\oobe
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\Drivers
2014-05-27 20:45:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 18:01:09 ----SHD---- C:\System Volume Information
2014-05-27 17:58:16 ----DC---- C:\WINDOWS\CbsTemp
2014-05-27 17:47:13 ----DC---- C:\WINDOWS\SoftwareDistribution
2014-05-26 21:56:50 ----DC---- C:\WINDOWS\debug
2014-05-26 21:42:05 ----DC---- C:\Users\mixik\AppData\Roaming\vlc
2014-05-23 22:55:10 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 22:57:32 ----DC---- C:\Users\mixik\AppData\Roaming\MyPhoneExplorer
2014-05-18 19:52:20 ----DC---- C:\Program Files\MyPhoneExplorer
2014-05-18 18:37:57 ----SHDC---- C:\WINDOWS\Installer
2014-05-18 18:37:57 ----HDC---- C:\Program Files\InstallShield Installation Information
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\twain_32
2014-05-18 11:06:30 ----DC---- C:\Users\mixik\AppData\Roaming\Skype
2014-05-18 10:50:59 ----DC---- C:\Program Files\Mozilla Firefox
2014-05-15 21:08:08 ----SHDC---- C:\Boot
2014-05-15 21:04:14 ----DC---- C:\Program Files\Windows Defender
2014-05-15 21:04:13 ----DC---- C:\WINDOWS\apppatch
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\WinStore
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\system32\cs-CZ
2014-05-15 20:39:12 ----SDC---- C:\Users\mixik\AppData\Roaming\Microsoft
2014-05-15 20:38:58 ----DC---- C:\ProgramData\Microsoft Help
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files
2014-05-15 20:35:04 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-15 20:34:59 ----DC---- C:\WINDOWS\system32\MRT
2014-05-15 20:31:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2014-05-15 20:25:40 ----DC---- C:\WINDOWS\system32\catroot2
2014-05-15 20:09:04 ----DC---- C:\WINDOWS\system32\catroot
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\Tasks
2014-05-15 19:47:20 ----DC---- C:\WINDOWS\system32\RTCOM
2014-05-15 19:44:00 ----AC---- C:\log.txt
2014-05-13 21:05:22 ----DC---- C:\WINDOWS\en-US
2014-05-11 23:12:34 ----DC---- C:\Program Files\Common Files\InstallShield
2014-05-11 14:44:25 ----DC---- C:\Users\mixik\AppData\Roaming\Malwarebytes
2014-05-07 18:00:29 ----DC---- C:\Program Files\Acoustica CD Label Maker
2014-05-06 19:38:53 ----DC---- C:\Program Files\Samsung
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-10-22 86304]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-10-22 185120]
R0 tib;Acronis TIB Manager; C:\WINDOWS\system32\DRIVERS\tib.sys [2013-10-21 736192]
R0 tib_mounter;Acronis TIB Mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [2013-10-22 130488]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-12 68312]
R2 irda;@netirda.inf,%IrDA.DisplayName%;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2013-08-22 95232]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2010-02-10 19384]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2013-10-04 35088]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-10-22 234752]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 10071040]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 290304]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\b57nd60x.sys [2013-06-18 376832]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2010-02-10 987704]
R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2010-02-10 214072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2014-05-15 3017112]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 22856]
R3 netwlv32;@netwlv32.inf, %NIC_Service_DispName_VISTA%; Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\WINDOWS\system32\DRIVERS\netwlv32.sys [2013-06-18 6637056]
R3 NSCIRDA;@oem2.inf,%NSCIRDA.ServiceDesc%;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-02-23 198064]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 176768]
S3 CV2K1;@oem62.inf,%CommView_Desc%;CommView Network Monitor; C:\WINDOWS\system32\DRIVERS\cv2k1.sys []
S3 dg_ssudbus;@oem43.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 PAC207;@oem89.inf,%DI_Description%;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2010-08-16 16472]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2010-08-16 11104]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\WINDOWS\system32\DRIVERS\taphss6.sys [2013-02-22 37064]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2013-10-22 889888]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-02-15 88192]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 uvhid;Unified Virtual HID; C:\WINDOWS\System32\drivers\uvhid.sys [2013-02-27 18432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 777584]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-10-22 3869688]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HsfXAudioService;@oem53.inf,%XAudio2.SVCDESC%;HsfXAudioService; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2012-05-29 1005440]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by mixik at 2014-05-27 22:10:08
Microsoft Windows 8.1 Pro
System drive C: has 41 GB (58%) free of 71 GB
Total RAM: 2046 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:27, on 27. 5. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x86__8wekyb3d8bbwe\LiveComm.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\USB Safely Remove\USBSafelyRemove.exe
C:\Users\mixik\Downloads\RSIT.exe
C:\Program Files\trend micro\mixik.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [StartupDelayer] "C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe" /LaunchType=Auto /LaunchApps=Common
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [USB Safely Remove] C:\Program Files\USB Safely Remove\USBSafelyRemove.exe /startup
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 6] "C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{867B2987-0686-48EF-8AAC-51ED664334C8}: NameServer = 10.0.0.1,82.119.243.5
O18 - Protocol: skype-ie-addon-data - (no CLSID) - (no file)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Crystal Rich Ltd - C:\Program Files\USB Safely Remove\USBSRService.exe
--
End of file - 5255 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Administrator.job - C:\Program Files\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "https://www.google.com/search"
prefs.js - "keyword.url" - "http://www.google.com/search?ie=UTF-8&o ... &gfns=1&q="
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\mixik\AppData\Roaming\Mozilla\Firefox\Profiles\vl1r3vqq.default-1393357930394\searchplugins\
yahoo_ff.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-02 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-06 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-15 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-23 3888648]
"StartupDelayer"=C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [2014-02-16 1256520]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2012-12-28 2587136]
"uTorrent"=C:\Users\mixik\AppData\Roaming\uTorrent\utorrent.exe [2014-01-01 393728]
"USB Safely Remove"=C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [2013-08-29 2023424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
c:\program files\samsung\kies\kies.exe [2014-02-14 1564992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
c:\program files\samsung\kies\kiestrayagent.exe [2014-02-14 311616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
c:\program files\common files\java\java update\jusched.exe [2013-07-02 254336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
c:\program files\zoner\photo studio 15\program32\zpstray.exe [2013-06-07 774680]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-05-27 21:13:59 ----DC---- C:\ProgramData\r2 Studios
2014-05-27 17:57:36 ----AC---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-27 17:57:34 ----AC---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-27 17:57:27 ----AC---- C:\WINDOWS\system32\mstscax.dll
2014-05-27 17:57:26 ----AC---- C:\WINDOWS\system32\shell32.dll
2014-05-27 17:57:20 ----AC---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-27 17:57:19 ----AC---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-27 17:57:17 ----AC---- C:\WINDOWS\system32\gpsvc.dll
2014-05-27 17:57:16 ----AC---- C:\WINDOWS\system32\twinui.dll
2014-05-27 17:57:13 ----AC---- C:\WINDOWS\system32\d3d9.dll
2014-05-27 17:57:12 ----AC---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-27 17:57:11 ----AC---- C:\WINDOWS\system32\mfcore.dll
2014-05-27 17:57:10 ----AC---- C:\WINDOWS\system32\win32k.sys
2014-05-27 17:57:08 ----AC---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-27 17:57:07 ----AC---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\services.exe
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\localspl.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-27 17:57:06 ----AC---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\winmde.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-27 17:57:05 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\srvsvc.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\MDEServer.exe
2014-05-27 17:57:04 ----AC---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-27 17:57:03 ----AC---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpencom.dll
2014-05-27 17:57:02 ----AC---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\win32spl.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\mfsvr.dll
2014-05-27 17:57:01 ----AC---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\ploptin.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\dwmapi.dll
2014-05-27 17:57:00 ----AC---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-27 17:56:59 ----AC---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-27 17:56:58 ----AC---- C:\WINDOWS\system32\defragsvc.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\lsasrv.dll
2014-05-27 17:56:57 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-27 17:56:56 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-27 17:56:55 ----AC---- C:\WINDOWS\system32\gpapi.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\rpchttp.dll
2014-05-27 17:56:54 ----AC---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\wscsvc.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\propsys.dll
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-27 17:56:53 ----AC---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mfplat.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\mf.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioSes.dll
2014-05-27 17:56:52 ----AC---- C:\WINDOWS\system32\AudioEng.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\wintrust.dll
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-27 17:56:51 ----AC---- C:\WINDOWS\system32\audiodg.exe
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-27 17:56:50 ----AC---- C:\WINDOWS\system32\VSSVC.exe
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\energyprov.dll
2014-05-27 17:56:49 ----AC---- C:\WINDOWS\system32\clusapi.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\swprv.dll
2014-05-27 17:56:48 ----AC---- C:\WINDOWS\system32\srcore.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-27 17:56:47 ----AC---- C:\WINDOWS\system32\resutils.dll
2014-05-27 17:56:46 ----AC---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\tlscsp.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\rdpudd.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\d3d8thk.dll
2014-05-27 17:56:45 ----AC---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\wlansvc.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\mispace.dll
2014-05-27 17:56:44 ----AC---- C:\WINDOWS\system32\audiosrv.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-27 17:56:43 ----AC---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\wlanapi.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\srclient.dll
2014-05-27 17:56:42 ----AC---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-27 17:56:41 ----AC---- C:\WINDOWS\system32\rstrui.exe
2014-05-27 17:56:40 ----AC---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-26 19:06:39 ----DC---- C:\WINDOWS\Minidump
2014-05-26 19:06:36 ----ASH---- C:\pagefile.sys
2014-05-25 18:50:39 ----AC---- C:\WINDOWS\system32\sqlite3.dll
2014-05-25 18:48:49 ----DC---- C:\AdwCleaner
2014-05-23 22:55:00 ----AC---- C:\WINDOWS\system32\drivers\mbam.sys
2014-05-20 19:43:57 ----DC---- C:\Program Files\Spyware Terminator
2014-05-18 19:47:37 ----AC---- C:\WINDOWS\system32\PAStiSvc.exe
2014-05-18 18:38:06 ----DC---- C:\ProgramData\Application Data
2014-05-18 18:34:06 ----DC---- C:\ProgramData\IMSIDesign
2014-05-18 18:34:06 ----DC---- C:\Program Files\IMSIDesign
2014-05-18 18:20:27 ----AC---- C:\StiImg.dat
2014-05-18 18:19:46 ----DC---- C:\Program Files\Zeallsoft
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\PixArt
2014-05-18 15:54:52 ----DC---- C:\rsit
2014-05-18 15:54:52 ----DC---- C:\Program Files\trend micro
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files\DESIGNER
2014-05-15 20:30:22 ----AC---- C:\WINDOWS\system32\wusa.exe
2014-05-15 20:29:27 ----AC---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-15 20:29:26 ----AC---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-15 20:29:02 ----AC---- C:\WINDOWS\system32\wuaueng.dll
2014-05-15 20:29:01 ----AC---- C:\WINDOWS\system32\WSShared.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wucltux.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\wuapi.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\ubpm.dll
2014-05-15 20:29:00 ----AC---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wups.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wudriver.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\wuauclt.exe
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-15 20:28:59 ----AC---- C:\WINDOWS\system32\storewuauth.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuwebv.dll
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\wuapp.exe
2014-05-15 20:28:58 ----AC---- C:\WINDOWS\system32\WSReset.exe
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt100.dll
2014-05-15 20:27:23 ----AC---- C:\WINDOWS\system32\mrt_map.dll
2014-05-15 19:44:30 ----AC---- C:\WINDOWS\system32\WavesGUILib.dll
2014-05-15 19:44:28 ----AC---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-15 19:44:27 ----AC---- C:\WINDOWS\system32\drivers\RTKVHDA.sys
2014-05-15 19:44:26 ----AC---- C:\WINDOWS\system32\RtkCoInstII.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkApoApi.dll
2014-05-15 19:44:25 ----AC---- C:\WINDOWS\system32\RtkAPO.dll
2014-05-15 19:44:23 ----AC---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-15 19:44:16 ----AC---- C:\WINDOWS\system32\RCoRes.dat
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO30.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxVoiceAPO20.dll
2014-05-15 19:44:12 ----AC---- C:\WINDOWS\system32\MaxxSpeechAPO.dll
2014-05-15 19:44:11 ----AC---- C:\WINDOWS\system32\MaxxAudioVnN.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioVnA.dll
2014-05-15 19:44:08 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek2.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioRealtek.dll
2014-05-15 19:44:07 ----AC---- C:\WINDOWS\system32\MaxxAudioEQ.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPOShell.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO60.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO50.dll
2014-05-15 19:44:06 ----AC---- C:\WINDOWS\system32\MaxxAudioAPO40.dll
2014-05-15 19:44:03 ----AC---- C:\WINDOWS\system32\FMAPO.dll
2014-05-15 19:34:51 ----DC---- C:\Users\mixik\AppData\Roaming\MAGIX
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-05-12 18:02:30 ----AC---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2014-05-11 22:38:53 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplayx.dll
2014-05-11 22:38:52 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2014-05-11 22:37:16 ----DC---- C:\Program Files\directx
2014-05-11 14:17:45 ----AC---- C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
2014-05-08 09:20:23 ----DC---- C:\Program Files\H264LevelEditor_1.5.1
2014-05-07 17:42:10 ----AC---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-04 09:26:36 ----DC---- C:\WINDOWS\system32\Samsung_USB_Drivers
2014-05-04 09:25:45 ----AC---- C:\WINDOWS\system32\drivers\StarOpen.sys
2014-05-04 08:43:50 ----DC---- C:\Program Files\SDA
2014-05-04 00:27:40 ----C---- C:\WINDOWS\system32\pwdrvio.sys
2014-05-04 00:26:33 ----C---- C:\WINDOWS\system32\pwdspio.sys
2014-05-03 23:10:35 ----DC---- C:\Program Files\MiniTool Partition Wizard Home Edition 5.2
2014-05-03 09:01:02 ----DC---- C:\JRT
2014-05-02 18:02:26 ----AC---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\avastSS.scr
2014-04-30 21:34:54 ----DC---- C:\Program Files\Visual Similarity Duplicate Image Finder
2014-04-30 19:57:39 ----DC---- C:\Program Files\Malwarebytes Anti-Malware
======List of files/folders modified in the last 1 month======
2014-05-27 22:10:24 ----DC---- C:\Users\mixik\AppData\Roaming\uTorrent
2014-05-27 22:09:41 ----DC---- C:\Users\mixik\AppData\Roaming\USBSafelyRemove
2014-05-27 22:08:58 ----DC---- C:\WINDOWS\Temp
2014-05-27 22:07:41 ----ADC---- C:\Windows
2014-05-27 22:05:29 ----ADC---- C:\ProgramData\TEMP
2014-05-27 22:04:00 ----HDC---- C:\ProgramData
2014-05-27 21:58:54 ----RSDC---- C:\WINDOWS\Fonts
2014-05-27 21:50:44 ----DC---- C:\WINDOWS\inf
2014-05-27 21:33:43 ----RDC---- C:\WINDOWS\System32
2014-05-27 21:33:42 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 21:23:04 ----RDC---- C:\Program Files
2014-05-27 21:19:33 ----RSDC---- C:\WINDOWS\assembly
2014-05-27 21:19:33 ----DC---- C:\WINDOWS\Microsoft.NET
2014-05-27 21:14:11 ----DC---- C:\WINDOWS\system32\Tasks
2014-05-27 21:13:53 ----DC---- C:\Program Files\r2 Studios
2014-05-27 20:48:58 ----DC---- C:\WINDOWS\system32\config
2014-05-27 20:48:57 ----D---- C:\WINDOWS\WinSxS
2014-05-27 20:45:33 ----RD---- C:\WINDOWS\ToastData
2014-05-27 20:45:32 ----RDC---- C:\WINDOWS\ImmersiveControlPanel
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\oobe
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-27 20:45:32 ----DC---- C:\WINDOWS\system32\Drivers
2014-05-27 20:45:28 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 18:01:09 ----SHD---- C:\System Volume Information
2014-05-27 17:58:16 ----DC---- C:\WINDOWS\CbsTemp
2014-05-27 17:47:13 ----DC---- C:\WINDOWS\SoftwareDistribution
2014-05-26 21:56:50 ----DC---- C:\WINDOWS\debug
2014-05-26 21:42:05 ----DC---- C:\Users\mixik\AppData\Roaming\vlc
2014-05-23 22:55:10 ----DC---- C:\Program Files\Malwarebytes' Anti-Malware
2014-05-21 22:57:32 ----DC---- C:\Users\mixik\AppData\Roaming\MyPhoneExplorer
2014-05-18 19:52:20 ----DC---- C:\Program Files\MyPhoneExplorer
2014-05-18 18:37:57 ----SHDC---- C:\WINDOWS\Installer
2014-05-18 18:37:57 ----HDC---- C:\Program Files\InstallShield Installation Information
2014-05-18 18:06:53 ----DC---- C:\WINDOWS\twain_32
2014-05-18 11:06:30 ----DC---- C:\Users\mixik\AppData\Roaming\Skype
2014-05-18 10:50:59 ----DC---- C:\Program Files\Mozilla Firefox
2014-05-15 21:08:08 ----SHDC---- C:\Boot
2014-05-15 21:04:14 ----DC---- C:\Program Files\Windows Defender
2014-05-15 21:04:13 ----DC---- C:\WINDOWS\apppatch
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\WinStore
2014-05-15 21:04:12 ----DC---- C:\WINDOWS\system32\cs-CZ
2014-05-15 20:39:12 ----SDC---- C:\Users\mixik\AppData\Roaming\Microsoft
2014-05-15 20:38:58 ----DC---- C:\ProgramData\Microsoft Help
2014-05-15 20:38:03 ----DC---- C:\Program Files\Common Files
2014-05-15 20:35:04 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-15 20:34:59 ----DC---- C:\WINDOWS\system32\MRT
2014-05-15 20:31:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2014-05-15 20:25:40 ----DC---- C:\WINDOWS\system32\catroot2
2014-05-15 20:09:04 ----DC---- C:\WINDOWS\system32\catroot
2014-05-15 20:00:01 ----DC---- C:\WINDOWS\Tasks
2014-05-15 19:47:20 ----DC---- C:\WINDOWS\system32\RTCOM
2014-05-15 19:44:00 ----AC---- C:\log.txt
2014-05-13 21:05:22 ----DC---- C:\WINDOWS\en-US
2014-05-11 23:12:34 ----DC---- C:\Program Files\Common Files\InstallShield
2014-05-11 14:44:25 ----DC---- C:\Users\mixik\AppData\Roaming\Malwarebytes
2014-05-07 18:00:29 ----DC---- C:\Program Files\Acoustica CD Label Maker
2014-05-06 19:38:53 ----DC---- C:\Program Files\Samsung
2014-05-02 18:02:19 ----AC---- C:\WINDOWS\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-02 49944]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-02 180632]
R0 fltsrv;Acronis Storage Filter Management; C:\WINDOWS\system32\DRIVERS\fltsrv.sys [2013-10-22 86304]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2013-10-22 185120]
R0 tib;Acronis TIB Manager; C:\WINDOWS\system32\DRIVERS\tib.sys [2013-10-21 736192]
R0 tib_mounter;Acronis TIB Mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [2013-10-22 130488]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-02 81768]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-12 777488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-12 411680]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-05-02 24184]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-02 67824]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-12 68312]
R2 irda;@netirda.inf,%IrDA.DisplayName%;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2013-08-22 95232]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2010-02-10 19384]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2013-10-04 35088]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2013-10-22 234752]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2012-06-19 10071040]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2012-06-19 290304]
R3 b57nd60x;@netb57vx.inf,%SvcDispName%;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\b57nd60x.sys [2013-06-18 376832]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2010-02-10 987704]
R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2010-02-10 214072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2014-05-15 3017112]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2013-04-04 22856]
R3 netwlv32;@netwlv32.inf, %NIC_Service_DispName_VISTA%; Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\WINDOWS\system32\DRIVERS\netwlv32.sys [2013-06-18 6637056]
R3 NSCIRDA;@oem2.inf,%NSCIRDA.ServiceDesc%;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-01-19 30720]
R3 SynTP;@oem29.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-02-23 198064]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2007-05-02 290816]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 176768]
S3 CV2K1;@oem62.inf,%CommView_Desc%;CommView Network Monitor; C:\WINDOWS\system32\DRIVERS\cv2k1.sys []
S3 dg_ssudbus;@oem43.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]
S3 dgderdrv;dgderdrv; C:\WINDOWS\System32\drivers\dgderdrv.sys []
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 137632]
S3 Dot4Print;@oem15.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 22432]
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 42912]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2013-07-23 22016]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2013-07-23 61936]
S3 PAC207;@oem89.inf,%DI_Description%;VideoCAM GE111; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-04-08 162176]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2010-08-16 16472]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2010-08-16 11104]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\WINDOWS\system32\DRIVERS\taphss6.sys [2013-02-22 37064]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [2013-10-22 889888]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2014-02-15 88192]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 37888]
S3 uvhid;Unified Virtual HID; C:\WINDOWS\System32\drivers\uvhid.sys [2013-02-27 18432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 777584]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-10-22 3869688]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-02 50344]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R2 HsfXAudioService;@oem53.inf,%XAudio2.SVCDESC%;HsfXAudioService; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2013-08-22 31552]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 31552]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files\USB Safely Remove\USBSRService.exe [2012-05-29 1005440]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2013-08-22 31552]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-01 116648]
-----------------EOF-----------------
Re: Zpomalený start win 8.1
Když dáte nástroje - odinstalovat v ccleaneru, je tam ten ASC napsaný?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Zpomalený start win 8.1
Zdravím ne není
...a ntb vypadá i svižnější,takže děkuji
...a ntb vypadá i svižnější,takže děkuji
Re: Zpomalený start win 8.1
Tak ještě drobná kosmetická úprava
:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript
-klikněte na červené tlačítko Moveit!
-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem
Jinak by to mělo být v pořádku, sice ve rsitu je vidět odkaz ve spouštění po startu, ale u klíčů už ne.
A pokud nejsou problémy, je to vše
:arrow:Stáhněte OTM http://oldtimer.geekstogo.com/OTM.exe
Stáhněte na plochu Otm, 2krát klikněte na Otm,spustí se program,
Do levého okna "Paste Instructions for Items to be Moved" pod žlutou čáru zkopírujete skript
Kód: Vybrat vše
:processes
explorer.exe
:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
C:\log.txt
C:\TDSSKiller.2.8.16.0_11.05.2014_14.17.45_log.txt
:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBSafelyRemove.exe]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=-
:commands
[emptytemp]
[EMPTYFLASH]
[Reboot]-sem vložte obsah zeleného okénka
-Pokud se bude chtít restartovat pc, dejte YES,log pak najdete C:\_OTM\MovedFiles. Log vložte sem
Jinak by to mělo být v pořádku, sice ve rsitu je vidět odkaz ve spouštění po startu, ale u klíčů už ne.
A pokud nejsou problémy, je to vše
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?