prosím o pomoc - po spuštění NTB na něm nelze pracovat, vytížení procesoru i HDD je téměř maximální po dobu několika minut a NORTON mi nenalezl žádný vir...
přikládám log. Děkuji moc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by s-geo at 2015-01-17 14:37:17
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 149 GB (65%) free of 228 GB
Total RAM: 1977 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:38:02, on 17.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\system32\taskeng.exe
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Sandboxie\SandboxieRpcSs.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Program Files\Sandboxie\SandboxieCrypto.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\s-geo\Desktop\RSIT.exe
C:\Program Files\trend micro\s-geo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cdr.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.19.146:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hp.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{780864AE-ADBE-41C3-981C-6BEFE490871E}: NameServer = 192.168.0.1,217.112.162.34
O18 - Protocol: HPPUDCS - {522CC7E5-F378-4F97-8BD7-125D17F5B332} - C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\APP\hplidcsapp.dll
O18 - Protocol: hppufile - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppusam - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppuzip - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Windows\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Windows\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Windows\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Vodafone Mobile Connect Service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
--
End of file - 10053 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Norton Security Scan for s-geo.job - C:\PROGRA~1\NORTON~2\Engine\410~1.29\Nss.exe /scan-quick /scheduled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-04-16 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-07 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-07 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-04-16 10240000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSI Updater 11]
C:\Program Files\HSI\Updater\Updater.exe [2013-03-27 332288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFXSPMGT]
c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-10-24 78336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PUStarter]
C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe [2007-05-31 81920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunPUTasktray]
C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe [2007-05-31 68608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2014-10-14 632328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-10-24 1893888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-01-17 14:09:03 ----D---- C:\AdwCleaner
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-01-17 13:35:15 ----D---- C:\Program Files\trend micro
2015-01-17 13:35:12 ----D---- C:\rsit
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers\NSS
2015-01-17 13:16:33 ----D---- C:\Program Files\Norton Security Scan
2015-01-17 13:16:31 ----D---- C:\ProgramData\Norton
2015-01-17 13:16:21 ----D---- C:\ProgramData\NortonInstaller
2015-01-17 13:16:21 ----D---- C:\Program Files\NortonInstaller
2015-01-17 13:06:47 ----D---- C:\Program Files\ESET
2015-01-17 12:53:03 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-17 12:31:34 ----D---- C:\d7ce78d22f82d07844dd45e866f4adf7
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlasvc.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlaapi.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\ncsi.dll
2015-01-17 12:30:09 ----A---- C:\windows\system32\profsvc.dll
2015-01-09 08:45:14 ----A---- C:\windows\system32\drivers\netio.sys
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10warp.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10level9.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\FntCache.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\DWrite.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\d2d1.dll
2015-01-09 07:40:40 ----A---- C:\windows\system32\XpsPrint.dll
2015-01-08 22:10:04 ----D---- C:\Program Files\Windows Portable Devices
2015-01-08 21:56:38 ----A---- C:\windows\system32\infocardapi.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardres.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardagt.exe
2015-01-08 21:56:36 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscories.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscorier.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\dfshim.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\msaudite.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\adtschema.dll
2015-01-08 21:53:07 ----A---- C:\windows\system32\termsrv.dll
2015-01-08 21:52:24 ----A---- C:\windows\system32\tzres.dll
2015-01-08 21:51:44 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-01-08 21:50:49 ----A---- C:\windows\system32\UIAnimation.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbonRes.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbon.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\WPDShextAutoplay.exe
2015-01-08 21:49:34 ----A---- C:\windows\system32\wpdbusenum.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\BthMtpContextHandler.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDSp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDShServiceObj.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpdshext.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtpUS.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdConns.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpd_ci.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceWMDRM.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceTypes.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceConnectApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceClassExtension.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\drivers\WpdUsb.sys
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3r.dll
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3.dll
2015-01-08 21:42:02 ----A---- C:\windows\system32\kerberos.dll
2015-01-08 21:41:13 ----A---- C:\windows\system32\packager.dll
2015-01-08 21:33:27 ----D---- C:\windows\Migration
2015-01-08 21:25:00 ----A---- C:\windows\system32\gdi32.dll
2015-01-08 21:15:12 ----A---- C:\windows\system32\IMJP10K.DLL
2015-01-08 21:13:17 ----A---- C:\windows\system32\wininet.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\urlmon.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\msrating.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\msls31.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\mshtmler.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\jsproxy.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\ieui.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iesysprep.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iertutil.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\wextract.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\webcheck.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\vbscript.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\url.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\pngfilt.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\occache.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtmled.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtml.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\msfeeds.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\licmgr10.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\inseng.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iexpress.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieUnatt.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\iesetup.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iernonce.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieframe.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iedkcs32.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dat
2015-01-08 21:13:16 ----A---- C:\windows\system32\ie4uinit.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\icardie.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtrans.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\mshta.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedssync.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedsbs.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript9.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\imgutil.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\iepeers.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakui.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieaksie.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakeng.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\IEAdvpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\advpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\admparse.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\shdocvw.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfreadwrite.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfps.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfplat.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfmp4src.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFHEAACdec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFH264Dec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mf.dll
2015-01-08 21:12:25 ----A---- C:\windows\system32\stobject.dll
2015-01-08 21:12:24 ----A---- C:\windows\system32\XpsRasterService.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\xpsservices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\OpcServices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\dxgi.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WMPhoto.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiagn.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiag.exe
2015-01-08 21:11:50 ----A---- C:\windows\system32\d3d11.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\EncDump.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\audiosrv.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AudioEng.dll
2015-01-08 20:41:05 ----A---- C:\windows\system32\oleaut32.dll
2015-01-08 20:31:38 ----A---- C:\windows\system32\drivers\fastfat.sys
2015-01-08 20:30:52 ----A---- C:\windows\system32\schannel.dll
2015-01-08 20:30:52 ----A---- C:\windows\system32\lsasrv.dll
2015-01-08 20:30:03 ----A---- C:\windows\system32\Wdfres.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFSvc.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\winusb.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFx.dll
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFHost.exe
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-01-08 20:08:48 ----A---- C:\windows\system32\win32k.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-01-08 20:06:55 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-08 20:06:31 ----A---- C:\windows\system32\shell32.dll
2015-01-08 20:06:29 ----A---- C:\windows\system32\psisdecd.dll
2015-01-08 20:06:25 ----A---- C:\windows\system32\usp10.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\msi.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\consent.exe
2015-01-08 20:06:23 ----A---- C:\windows\system32\authui.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\appinfo.dll
2015-01-08 20:06:22 ----A---- C:\windows\system32\msihnd.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\icaapi.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-01-08 20:06:16 ----A---- C:\windows\system32\winmm.dll
2015-01-08 20:06:16 ----A---- C:\windows\system32\mciseq.dll
2015-01-08 20:06:14 ----A---- C:\windows\system32\localspl.dll
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnsvr.exe
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnet.dll
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\bthport.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\portcls.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\drmk.sys
2015-01-08 20:05:47 ----A---- C:\windows\system32\rpcrt4.dll
2015-01-08 20:05:46 ----A---- C:\windows\system32\synceng.dll
2015-01-08 20:05:44 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-01-08 20:04:49 ----A---- C:\windows\system32\EncDec.dll
2015-01-08 20:04:21 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023x.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-01-08 20:03:27 ----A---- C:\windows\system32\cdd.dll
2015-01-08 20:03:26 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-01-08 20:02:59 ----A---- C:\windows\system32\netapi32.dll
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbport.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbd.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-01-08 20:02:04 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-01-08 20:01:29 ----A---- C:\windows\system32\qedit.dll
2015-01-08 20:01:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-01-08 20:00:34 ----A---- C:\windows\system32\msxml6.dll
2015-01-08 20:00:06 ----A---- C:\windows\system32\quartz.dll
2015-01-08 19:59:38 ----A---- C:\windows\system32\kernel32.dll
2015-01-08 19:56:45 ----A---- C:\windows\system32\ncrypt.dll
2015-01-08 19:56:19 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-01-08 19:54:16 ----A---- C:\windows\system32\themeui.dll
2015-01-08 19:53:48 ----A---- C:\windows\system32\shlwapi.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wshcon.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wscript.exe
2015-01-08 19:52:52 ----A---- C:\windows\system32\scrrun.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\cscript.exe
2015-01-08 19:52:30 ----A---- C:\windows\system32\crypt32.dll
2015-01-08 19:51:53 ----A---- C:\windows\system32\imagehlp.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\wmi.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmlib.dll
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmfd.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\win32spl.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\printcom.dll
2015-01-08 19:50:30 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-01-08 19:49:35 ----A---- C:\windows\system32\msvcrt.dll
2015-01-08 19:49:06 ----A---- C:\windows\system32\drivers\afd.sys
2015-01-08 19:48:16 ----A---- C:\windows\system32\certutil.exe
2015-01-08 19:48:16 ----A---- C:\windows\system32\certenc.dll
2015-01-08 19:46:42 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\IKEEXT.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-01-08 19:45:20 ----A---- C:\windows\system32\winhttp.dll
2015-01-08 19:44:23 ----A---- C:\windows\system32\qdvd.dll
2015-01-08 19:43:55 ----A---- C:\windows\system32\wer.dll
2015-01-08 19:43:00 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\smss.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntdll.dll
2015-01-08 19:42:59 ----A---- C:\windows\system32\csrsrv.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\UIAutomationCore.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleaccrc.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleacc.dll
2015-01-08 19:41:02 ----A---- C:\windows\system32\mstscax.dll
2015-01-08 19:40:34 ----A---- C:\windows\system32\xmllite.dll
2015-01-08 19:40:07 ----A---- C:\windows\system32\comctl32.dll
2015-01-08 19:39:39 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-01-08 19:39:11 ----A---- C:\windows\system32\winsrv.dll
2015-01-08 19:38:51 ----A---- C:\windows\system32\cryptdlg.dll
2015-01-08 19:38:12 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-01-08 19:34:51 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-01-08 19:34:50 ----A---- C:\windows\system32\secur32.dll
2015-01-08 19:34:50 ----A---- C:\windows\system32\lsass.exe
2015-01-08 19:34:22 ----A---- C:\windows\system32\msshsq.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\wintrust.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptsvc.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptnet.dll
2015-01-08 18:09:37 ----A---- C:\windows\system32\rdpencom.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wups2.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wucltux.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuaueng.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuauclt.exe
2015-01-08 17:43:39 ----A---- C:\windows\system32\wups.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wudriver.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wuapi.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuwebv.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuapp.exe
2015-01-07 21:08:36 ----D---- C:\windows\pss
2015-01-07 19:19:18 ----D---- C:\Program Files\CCleaner
2015-01-07 18:37:58 ----D---- C:\windows\system32\eu-ES
2015-01-07 18:37:58 ----D---- C:\windows\system32\ca-ES
2015-01-07 18:37:57 ----D---- C:\windows\system32\vi-VN
2015-01-07 18:15:40 ----D---- C:\ProgramData\Oracle
2015-01-07 18:15:27 ----D---- C:\ProgramData\Sun
2015-01-07 18:15:25 ----D---- C:\Program Files\Common Files\Java
2015-01-07 18:15:19 ----A---- C:\windows\system32\javaws.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-01-07 18:14:28 ----A---- C:\windows\system32\javaw.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\java.exe
2015-01-07 18:13:26 ----D---- C:\Program Files\Java
2015-01-07 18:06:41 ----D---- C:\windows\system32\EventProviders
======List of files/folders modified in the last 1 month======
2015-01-17 14:38:03 ----D---- C:\windows\Temp
2015-01-17 14:32:36 ----D---- C:\ProgramData\hpqLog
2015-01-17 14:22:44 ----D---- C:\windows\System32
2015-01-17 14:22:44 ----D---- C:\windows\inf
2015-01-17 14:22:44 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-17 14:12:33 ----RD---- C:\Program Files
2015-01-17 14:12:31 ----HD---- C:\ProgramData
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files
2015-01-17 13:16:55 ----D---- C:\windows\system32\Tasks
2015-01-17 13:16:54 ----D---- C:\windows\Tasks
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers
2015-01-17 12:53:15 ----D---- C:\windows\winsxs
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot2
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot
2015-01-17 12:52:57 ----SHD---- C:\System Volume Information
2015-01-17 12:50:12 ----D---- C:\Windows
2015-01-17 12:50:12 ----A---- C:\windows\Sandboxie.ini
2015-01-17 12:33:04 ----D---- C:\windows\system32\MRT
2015-01-17 12:32:57 ----D---- C:\windows\Debug
2015-01-17 12:32:43 ----A---- C:\windows\system32\mrt.exe
2015-01-09 08:46:00 ----SD---- C:\ProgramData\Microsoft
2015-01-09 08:33:43 ----SHD---- C:\Config.Msi
2015-01-09 08:04:09 ----D---- C:\windows\Microsoft.NET
2015-01-09 07:59:31 ----RSD---- C:\windows\assembly
2015-01-09 07:56:34 ----D---- C:\windows\rescache
2015-01-09 07:54:57 ----SHD---- C:\windows\Installer
2015-01-08 22:16:18 ----D---- C:\windows\Panther
2015-01-08 22:10:07 ----AD---- C:\windows\system32\cs-CZ
2015-01-08 22:10:06 ----D---- C:\Program Files\Windows Journal
2015-01-08 22:10:04 ----D---- C:\windows\system32\wbem
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-TW
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-HK
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-CN
2015-01-08 22:10:01 ----D---- C:\windows\system32\uk-UA
2015-01-08 22:10:01 ----D---- C:\windows\system32\tr-TR
2015-01-08 22:10:01 ----D---- C:\windows\system32\th-TH
2015-01-08 22:10:01 ----D---- C:\windows\system32\sv-SE
2015-01-08 22:10:01 ----D---- C:\windows\system32\sr-Latn-CS
2015-01-08 22:10:01 ----D---- C:\windows\system32\ru-RU
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-PT
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-BR
2015-01-08 22:10:01 ----D---- C:\windows\system32\pl-PL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nl-NL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nb-NO
2015-01-08 22:10:01 ----D---- C:\windows\system32\ko-KR
2015-01-08 22:10:01 ----D---- C:\windows\system32\ja-JP
2015-01-08 22:10:01 ----D---- C:\windows\system32\it-IT
2015-01-08 22:10:01 ----D---- C:\windows\system32\hu-HU
2015-01-08 22:10:01 ----D---- C:\windows\system32\he-IL
2015-01-08 22:10:01 ----D---- C:\windows\system32\fr-FR
2015-01-08 22:10:01 ----D---- C:\windows\system32\fi-FI
2015-01-08 22:10:01 ----D---- C:\windows\system32\es-ES
2015-01-08 22:10:01 ----D---- C:\windows\system32\en-US
2015-01-08 22:10:01 ----D---- C:\windows\system32\el-GR
2015-01-08 22:10:01 ----D---- C:\windows\system32\de-DE
2015-01-08 22:10:01 ----D---- C:\windows\system32\da-DK
2015-01-08 22:10:01 ----D---- C:\windows\system32\ar-SA
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sl-SI
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sk-SK
2015-01-08 22:10:01 ----AD---- C:\windows\system32\ro-RO
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lv-LV
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lt-LT
2015-01-08 22:10:01 ----AD---- C:\windows\system32\hr-HR
2015-01-08 22:10:01 ----AD---- C:\windows\system32\et-EE
2015-01-08 22:10:01 ----AD---- C:\windows\system32\bg-BG
2015-01-08 22:09:56 ----RSD---- C:\windows\Fonts
2015-01-08 22:09:54 ----RD---- C:\windows\Offline Web Pages
2015-01-08 22:09:54 ----D---- C:\windows\system32\migration
2015-01-08 22:09:54 ----D---- C:\windows\PolicyDefinitions
2015-01-08 22:09:54 ----D---- C:\Program Files\Internet Explorer
2015-01-08 22:09:53 ----SD---- C:\windows\Downloaded Program Files
2015-01-08 22:09:52 ----D---- C:\windows\system32\drivers\cs-CZ
2015-01-08 22:09:48 ----D---- C:\windows\system32\XPSViewer
2015-01-08 22:09:47 ----D---- C:\Program Files\Windows Mail
2015-01-08 22:09:44 ----D---- C:\Program Files\Common Files\System
2015-01-08 22:09:43 ----D---- C:\windows\AppPatch
2015-01-08 22:09:33 ----D---- C:\windows\system32\drivers\UMDF
2015-01-08 21:13:40 ----D---- C:\windows\Logs
2015-01-07 22:09:10 ----D---- C:\ProgramData\HSI
2015-01-07 19:29:37 ----D---- C:\Program Files\PDFCreator
2015-01-07 19:29:07 ----D---- C:\windows\ModemLogs
2015-01-07 18:50:28 ----SHD---- C:\boot
2015-01-07 18:50:21 ----D---- C:\windows\Prefetch
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Sidebar
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Calendar
2015-01-07 18:39:08 ----D---- C:\Program Files\Movie Maker
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Photo Gallery
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Media Player
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Collaboration
2015-01-07 18:39:06 ----D---- C:\windows\servicing
2015-01-07 18:39:06 ----D---- C:\Program Files\Windows Defender
2015-01-07 18:39:01 ----D---- C:\windows\IME
2015-01-07 18:38:59 ----D---- C:\windows\system32\oobe
2015-01-07 18:38:59 ----D---- C:\windows\system32\AdvancedInstallers
2015-01-07 18:38:58 ----D---- C:\windows\system32\setup
2015-01-07 18:38:58 ----D---- C:\windows\system32\cs
2015-01-07 18:38:56 ----D---- C:\windows\system32\SLUI
2015-01-07 18:38:55 ----D---- C:\windows\system32\manifeststore
2015-01-07 18:38:36 ----D---- C:\windows\system32\migwiz
2015-01-07 18:37:57 ----D---- C:\windows\system32\Boot
2015-01-07 18:25:59 ----A---- C:\windows\fonts\GlobalUserInterface.CompositeFont
2015-01-06 04:36:02 ----N---- C:\windows\system32\MpSigStub.exe
2014-12-22 19:12:22 ----D---- C:\Users\s-geo\AppData\Roaming\HpUpdate
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2008-04-08 44944]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2008-05-14 108752]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2008-05-14 51376]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2008-05-14 12928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2015-01-17 378672]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2008-03-21 39712]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 Haspnt;Haspnt; \??\C:\windows\system32\drivers\Haspnt.sys [2003-01-17 47616]
R2 Sentinel;Sentinel; C:\windows\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-08-01 244040]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-08-01 296200]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2014-10-14 161288]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\windows\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2007-07-05 101376]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;Sentinel LDK License Manager; C:\windows\system32\hasplms.exe [2013-08-01 4609928]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-04-16 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
R2 IFXTCS;Trusted Platform Core Service; c:\Windows\system32\ifxtcs.exe [2008-03-21 980248]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Windows\system32\IfxPsdSv.exe [2008-03-21 210200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2014-10-14 134664]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-26 316992]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2007-04-27 206400]
R2 VmbService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [2013-10-24 8704]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2008-01-21 21504]
S2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2008-01-21 21504]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
NTB - zahlceni hned po startu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
přikládám vygenerovaný log. Děkuji za pomoc.
# AdwCleaner v4.108 - Report created 18/01/2015 at 09:13:13
# Updated 17/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : s-geo - S-GEO-NT
# Running from : C:\Users\s-geo\Desktop\adwcleaner_4.108 (1).exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16599
-\\ Google Chrome v39.0.2171.95
[C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://slirsredirect.search.aol.com/slirs_hxxp/sredir?sredir=1632&query={searchTerms}&invocationType=tb50hpcmnbie7-cs-cz
[C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
*************************
AdwCleaner[R0].txt - [2776 octets] - [17/01/2015 14:09:05]
AdwCleaner[R1].txt - [1363 octets] - [18/01/2015 09:10:20]
AdwCleaner[S0].txt - [2891 octets] - [17/01/2015 14:12:29]
AdwCleaner[S1].txt - [1290 octets] - [18/01/2015 09:13:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1350 octets] ##########
# AdwCleaner v4.108 - Report created 18/01/2015 at 09:13:13
# Updated 17/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Username : s-geo - S-GEO-NT
# Running from : C:\Users\s-geo\Desktop\adwcleaner_4.108 (1).exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16599
-\\ Google Chrome v39.0.2171.95
[C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://slirsredirect.search.aol.com/slirs_hxxp/sredir?sredir=1632&query={searchTerms}&invocationType=tb50hpcmnbie7-cs-cz
[C:\Users\s-geo\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
*************************
AdwCleaner[R0].txt - [2776 octets] - [17/01/2015 14:09:05]
AdwCleaner[R1].txt - [1363 octets] - [18/01/2015 09:10:20]
AdwCleaner[S0].txt - [2891 octets] - [17/01/2015 14:12:29]
AdwCleaner[S1].txt - [1290 octets] - [18/01/2015 09:13:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1350 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Poprosím o nový RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
přikládám nový log RSIT. Děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by s-geo at 2015-01-18 12:01:02
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 148 GB (65%) free of 228 GB
Total RAM: 1977 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:01:09, on 18.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskeng.exe
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\s-geo\Desktop\RSIT.exe
C:\Program Files\trend micro\s-geo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cdr.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.19.146:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hp.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{780864AE-ADBE-41C3-981C-6BEFE490871E}: NameServer = 192.168.0.1,217.112.162.34
O18 - Protocol: HPPUDCS - {522CC7E5-F378-4F97-8BD7-125D17F5B332} - C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\APP\hplidcsapp.dll
O18 - Protocol: hppufile - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppusam - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppuzip - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Windows\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Windows\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Windows\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Vodafone Mobile Connect Service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
--
End of file - 9633 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Norton Security Scan for s-geo.job - C:\PROGRA~1\NORTON~2\Engine\410~1.29\Nss.exe /scan-quick /scheduled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-04-16 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-07 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-07 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-04-16 10240000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSI Updater 11]
C:\Program Files\HSI\Updater\Updater.exe [2013-03-27 332288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFXSPMGT]
c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-10-24 78336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PUStarter]
C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe [2007-05-31 81920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunPUTasktray]
C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe [2007-05-31 68608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2014-10-14 632328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-10-24 1893888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-01-17 14:09:03 ----D---- C:\AdwCleaner
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-01-17 13:35:15 ----D---- C:\Program Files\trend micro
2015-01-17 13:35:12 ----D---- C:\rsit
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers\NSS
2015-01-17 13:16:33 ----D---- C:\Program Files\Norton Security Scan
2015-01-17 13:16:31 ----D---- C:\ProgramData\Norton
2015-01-17 13:16:21 ----D---- C:\ProgramData\NortonInstaller
2015-01-17 13:16:21 ----D---- C:\Program Files\NortonInstaller
2015-01-17 13:06:47 ----D---- C:\Program Files\ESET
2015-01-17 12:53:03 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-17 12:31:34 ----D---- C:\d7ce78d22f82d07844dd45e866f4adf7
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlasvc.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlaapi.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\ncsi.dll
2015-01-17 12:30:09 ----A---- C:\windows\system32\profsvc.dll
2015-01-09 08:45:14 ----A---- C:\windows\system32\drivers\netio.sys
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10warp.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10level9.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\FntCache.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\DWrite.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\d2d1.dll
2015-01-09 07:40:40 ----A---- C:\windows\system32\XpsPrint.dll
2015-01-08 22:10:04 ----D---- C:\Program Files\Windows Portable Devices
2015-01-08 21:56:38 ----A---- C:\windows\system32\infocardapi.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardres.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardagt.exe
2015-01-08 21:56:36 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscories.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscorier.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\dfshim.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\msaudite.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\adtschema.dll
2015-01-08 21:53:07 ----A---- C:\windows\system32\termsrv.dll
2015-01-08 21:52:24 ----A---- C:\windows\system32\tzres.dll
2015-01-08 21:51:44 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-01-08 21:50:49 ----A---- C:\windows\system32\UIAnimation.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbonRes.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbon.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\WPDShextAutoplay.exe
2015-01-08 21:49:34 ----A---- C:\windows\system32\wpdbusenum.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\BthMtpContextHandler.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDSp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDShServiceObj.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpdshext.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtpUS.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdConns.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpd_ci.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceWMDRM.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceTypes.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceConnectApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceClassExtension.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\drivers\WpdUsb.sys
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3r.dll
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3.dll
2015-01-08 21:42:02 ----A---- C:\windows\system32\kerberos.dll
2015-01-08 21:41:13 ----A---- C:\windows\system32\packager.dll
2015-01-08 21:33:27 ----D---- C:\windows\Migration
2015-01-08 21:25:00 ----A---- C:\windows\system32\gdi32.dll
2015-01-08 21:15:12 ----A---- C:\windows\system32\IMJP10K.DLL
2015-01-08 21:13:17 ----A---- C:\windows\system32\wininet.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\urlmon.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\msrating.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\msls31.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\mshtmler.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\jsproxy.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\ieui.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iesysprep.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iertutil.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\wextract.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\webcheck.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\vbscript.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\url.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\pngfilt.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\occache.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtmled.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtml.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\msfeeds.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\licmgr10.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\inseng.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iexpress.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieUnatt.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\iesetup.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iernonce.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieframe.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iedkcs32.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dat
2015-01-08 21:13:16 ----A---- C:\windows\system32\ie4uinit.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\icardie.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtrans.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\mshta.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedssync.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedsbs.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript9.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\imgutil.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\iepeers.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakui.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieaksie.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakeng.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\IEAdvpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\advpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\admparse.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\shdocvw.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfreadwrite.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfps.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfplat.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfmp4src.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFHEAACdec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFH264Dec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mf.dll
2015-01-08 21:12:25 ----A---- C:\windows\system32\stobject.dll
2015-01-08 21:12:24 ----A---- C:\windows\system32\XpsRasterService.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\xpsservices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\OpcServices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\dxgi.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WMPhoto.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiagn.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiag.exe
2015-01-08 21:11:50 ----A---- C:\windows\system32\d3d11.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\EncDump.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\audiosrv.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AudioEng.dll
2015-01-08 20:41:05 ----A---- C:\windows\system32\oleaut32.dll
2015-01-08 20:31:38 ----A---- C:\windows\system32\drivers\fastfat.sys
2015-01-08 20:30:52 ----A---- C:\windows\system32\schannel.dll
2015-01-08 20:30:52 ----A---- C:\windows\system32\lsasrv.dll
2015-01-08 20:30:03 ----A---- C:\windows\system32\Wdfres.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFSvc.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\winusb.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFx.dll
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFHost.exe
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-01-08 20:08:48 ----A---- C:\windows\system32\win32k.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-01-08 20:06:55 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-08 20:06:31 ----A---- C:\windows\system32\shell32.dll
2015-01-08 20:06:29 ----A---- C:\windows\system32\psisdecd.dll
2015-01-08 20:06:25 ----A---- C:\windows\system32\usp10.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\msi.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\consent.exe
2015-01-08 20:06:23 ----A---- C:\windows\system32\authui.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\appinfo.dll
2015-01-08 20:06:22 ----A---- C:\windows\system32\msihnd.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\icaapi.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-01-08 20:06:16 ----A---- C:\windows\system32\winmm.dll
2015-01-08 20:06:16 ----A---- C:\windows\system32\mciseq.dll
2015-01-08 20:06:14 ----A---- C:\windows\system32\localspl.dll
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnsvr.exe
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnet.dll
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\bthport.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\portcls.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\drmk.sys
2015-01-08 20:05:47 ----A---- C:\windows\system32\rpcrt4.dll
2015-01-08 20:05:46 ----A---- C:\windows\system32\synceng.dll
2015-01-08 20:05:44 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-01-08 20:04:49 ----A---- C:\windows\system32\EncDec.dll
2015-01-08 20:04:21 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023x.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-01-08 20:03:27 ----A---- C:\windows\system32\cdd.dll
2015-01-08 20:03:26 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-01-08 20:02:59 ----A---- C:\windows\system32\netapi32.dll
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbport.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbd.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-01-08 20:02:04 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-01-08 20:01:29 ----A---- C:\windows\system32\qedit.dll
2015-01-08 20:01:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-01-08 20:00:34 ----A---- C:\windows\system32\msxml6.dll
2015-01-08 20:00:06 ----A---- C:\windows\system32\quartz.dll
2015-01-08 19:59:38 ----A---- C:\windows\system32\kernel32.dll
2015-01-08 19:56:45 ----A---- C:\windows\system32\ncrypt.dll
2015-01-08 19:56:19 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-01-08 19:54:16 ----A---- C:\windows\system32\themeui.dll
2015-01-08 19:53:48 ----A---- C:\windows\system32\shlwapi.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wshcon.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wscript.exe
2015-01-08 19:52:52 ----A---- C:\windows\system32\scrrun.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\cscript.exe
2015-01-08 19:52:30 ----A---- C:\windows\system32\crypt32.dll
2015-01-08 19:51:53 ----A---- C:\windows\system32\imagehlp.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\wmi.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmlib.dll
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmfd.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\win32spl.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\printcom.dll
2015-01-08 19:50:30 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-01-08 19:49:35 ----A---- C:\windows\system32\msvcrt.dll
2015-01-08 19:49:06 ----A---- C:\windows\system32\drivers\afd.sys
2015-01-08 19:48:16 ----A---- C:\windows\system32\certutil.exe
2015-01-08 19:48:16 ----A---- C:\windows\system32\certenc.dll
2015-01-08 19:46:42 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\IKEEXT.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-01-08 19:45:20 ----A---- C:\windows\system32\winhttp.dll
2015-01-08 19:44:23 ----A---- C:\windows\system32\qdvd.dll
2015-01-08 19:43:55 ----A---- C:\windows\system32\wer.dll
2015-01-08 19:43:00 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\smss.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntdll.dll
2015-01-08 19:42:59 ----A---- C:\windows\system32\csrsrv.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\UIAutomationCore.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleaccrc.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleacc.dll
2015-01-08 19:41:02 ----A---- C:\windows\system32\mstscax.dll
2015-01-08 19:40:34 ----A---- C:\windows\system32\xmllite.dll
2015-01-08 19:40:07 ----A---- C:\windows\system32\comctl32.dll
2015-01-08 19:39:39 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-01-08 19:39:11 ----A---- C:\windows\system32\winsrv.dll
2015-01-08 19:38:51 ----A---- C:\windows\system32\cryptdlg.dll
2015-01-08 19:38:12 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-01-08 19:34:51 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-01-08 19:34:50 ----A---- C:\windows\system32\secur32.dll
2015-01-08 19:34:50 ----A---- C:\windows\system32\lsass.exe
2015-01-08 19:34:22 ----A---- C:\windows\system32\msshsq.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\wintrust.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptsvc.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptnet.dll
2015-01-08 18:09:37 ----A---- C:\windows\system32\rdpencom.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wups2.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wucltux.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuaueng.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuauclt.exe
2015-01-08 17:43:39 ----A---- C:\windows\system32\wups.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wudriver.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wuapi.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuwebv.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuapp.exe
2015-01-07 21:08:36 ----D---- C:\windows\pss
2015-01-07 19:19:18 ----D---- C:\Program Files\CCleaner
2015-01-07 18:37:58 ----D---- C:\windows\system32\eu-ES
2015-01-07 18:37:58 ----D---- C:\windows\system32\ca-ES
2015-01-07 18:37:57 ----D---- C:\windows\system32\vi-VN
2015-01-07 18:15:40 ----D---- C:\ProgramData\Oracle
2015-01-07 18:15:27 ----D---- C:\ProgramData\Sun
2015-01-07 18:15:25 ----D---- C:\Program Files\Common Files\Java
2015-01-07 18:15:19 ----A---- C:\windows\system32\javaws.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-01-07 18:14:28 ----A---- C:\windows\system32\javaw.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\java.exe
2015-01-07 18:13:26 ----D---- C:\Program Files\Java
2015-01-07 18:06:41 ----D---- C:\windows\system32\EventProviders
======List of files/folders modified in the last 1 month======
2015-01-18 12:01:06 ----D---- C:\windows\Temp
2015-01-18 10:05:34 ----D---- C:\windows\System32
2015-01-18 10:05:34 ----D---- C:\windows\inf
2015-01-18 10:05:34 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-18 09:15:16 ----D---- C:\ProgramData\hpqLog
2015-01-18 09:08:18 ----SHD---- C:\System Volume Information
2015-01-17 14:12:33 ----RD---- C:\Program Files
2015-01-17 14:12:31 ----HD---- C:\ProgramData
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files
2015-01-17 13:16:55 ----D---- C:\windows\system32\Tasks
2015-01-17 13:16:54 ----D---- C:\windows\Tasks
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers
2015-01-17 12:53:15 ----D---- C:\windows\winsxs
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot2
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot
2015-01-17 12:50:12 ----D---- C:\Windows
2015-01-17 12:50:12 ----A---- C:\windows\Sandboxie.ini
2015-01-17 12:33:04 ----D---- C:\windows\system32\MRT
2015-01-17 12:32:57 ----D---- C:\windows\Debug
2015-01-17 12:32:43 ----A---- C:\windows\system32\mrt.exe
2015-01-09 08:46:00 ----SD---- C:\ProgramData\Microsoft
2015-01-09 08:33:43 ----SHD---- C:\Config.Msi
2015-01-09 08:04:09 ----D---- C:\windows\Microsoft.NET
2015-01-09 07:59:31 ----RSD---- C:\windows\assembly
2015-01-09 07:56:34 ----D---- C:\windows\rescache
2015-01-09 07:54:57 ----SHD---- C:\windows\Installer
2015-01-08 22:16:18 ----D---- C:\windows\Panther
2015-01-08 22:10:07 ----AD---- C:\windows\system32\cs-CZ
2015-01-08 22:10:06 ----D---- C:\Program Files\Windows Journal
2015-01-08 22:10:04 ----D---- C:\windows\system32\wbem
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-TW
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-HK
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-CN
2015-01-08 22:10:01 ----D---- C:\windows\system32\uk-UA
2015-01-08 22:10:01 ----D---- C:\windows\system32\tr-TR
2015-01-08 22:10:01 ----D---- C:\windows\system32\th-TH
2015-01-08 22:10:01 ----D---- C:\windows\system32\sv-SE
2015-01-08 22:10:01 ----D---- C:\windows\system32\sr-Latn-CS
2015-01-08 22:10:01 ----D---- C:\windows\system32\ru-RU
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-PT
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-BR
2015-01-08 22:10:01 ----D---- C:\windows\system32\pl-PL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nl-NL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nb-NO
2015-01-08 22:10:01 ----D---- C:\windows\system32\ko-KR
2015-01-08 22:10:01 ----D---- C:\windows\system32\ja-JP
2015-01-08 22:10:01 ----D---- C:\windows\system32\it-IT
2015-01-08 22:10:01 ----D---- C:\windows\system32\hu-HU
2015-01-08 22:10:01 ----D---- C:\windows\system32\he-IL
2015-01-08 22:10:01 ----D---- C:\windows\system32\fr-FR
2015-01-08 22:10:01 ----D---- C:\windows\system32\fi-FI
2015-01-08 22:10:01 ----D---- C:\windows\system32\es-ES
2015-01-08 22:10:01 ----D---- C:\windows\system32\en-US
2015-01-08 22:10:01 ----D---- C:\windows\system32\el-GR
2015-01-08 22:10:01 ----D---- C:\windows\system32\de-DE
2015-01-08 22:10:01 ----D---- C:\windows\system32\da-DK
2015-01-08 22:10:01 ----D---- C:\windows\system32\ar-SA
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sl-SI
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sk-SK
2015-01-08 22:10:01 ----AD---- C:\windows\system32\ro-RO
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lv-LV
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lt-LT
2015-01-08 22:10:01 ----AD---- C:\windows\system32\hr-HR
2015-01-08 22:10:01 ----AD---- C:\windows\system32\et-EE
2015-01-08 22:10:01 ----AD---- C:\windows\system32\bg-BG
2015-01-08 22:09:56 ----RSD---- C:\windows\Fonts
2015-01-08 22:09:54 ----RD---- C:\windows\Offline Web Pages
2015-01-08 22:09:54 ----D---- C:\windows\system32\migration
2015-01-08 22:09:54 ----D---- C:\windows\PolicyDefinitions
2015-01-08 22:09:54 ----D---- C:\Program Files\Internet Explorer
2015-01-08 22:09:53 ----SD---- C:\windows\Downloaded Program Files
2015-01-08 22:09:52 ----D---- C:\windows\system32\drivers\cs-CZ
2015-01-08 22:09:48 ----D---- C:\windows\system32\XPSViewer
2015-01-08 22:09:47 ----D---- C:\Program Files\Windows Mail
2015-01-08 22:09:44 ----D---- C:\Program Files\Common Files\System
2015-01-08 22:09:43 ----D---- C:\windows\AppPatch
2015-01-08 22:09:33 ----D---- C:\windows\system32\drivers\UMDF
2015-01-08 21:13:40 ----D---- C:\windows\Logs
2015-01-07 22:09:10 ----D---- C:\ProgramData\HSI
2015-01-07 19:29:37 ----D---- C:\Program Files\PDFCreator
2015-01-07 19:29:07 ----D---- C:\windows\ModemLogs
2015-01-07 18:50:28 ----SHD---- C:\boot
2015-01-07 18:50:21 ----D---- C:\windows\Prefetch
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Sidebar
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Calendar
2015-01-07 18:39:08 ----D---- C:\Program Files\Movie Maker
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Photo Gallery
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Media Player
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Collaboration
2015-01-07 18:39:06 ----D---- C:\windows\servicing
2015-01-07 18:39:06 ----D---- C:\Program Files\Windows Defender
2015-01-07 18:39:01 ----D---- C:\windows\IME
2015-01-07 18:38:59 ----D---- C:\windows\system32\oobe
2015-01-07 18:38:59 ----D---- C:\windows\system32\AdvancedInstallers
2015-01-07 18:38:58 ----D---- C:\windows\system32\setup
2015-01-07 18:38:58 ----D---- C:\windows\system32\cs
2015-01-07 18:38:56 ----D---- C:\windows\system32\SLUI
2015-01-07 18:38:55 ----D---- C:\windows\system32\manifeststore
2015-01-07 18:38:36 ----D---- C:\windows\system32\migwiz
2015-01-07 18:37:57 ----D---- C:\windows\system32\Boot
2015-01-07 18:25:59 ----A---- C:\windows\fonts\GlobalUserInterface.CompositeFont
2015-01-06 04:36:02 ----N---- C:\windows\system32\MpSigStub.exe
2014-12-22 19:12:22 ----D---- C:\Users\s-geo\AppData\Roaming\HpUpdate
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2008-04-08 44944]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2008-05-14 108752]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2008-05-14 51376]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2008-05-14 12928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2015-01-17 378672]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2008-03-21 39712]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 Haspnt;Haspnt; \??\C:\windows\system32\drivers\Haspnt.sys [2003-01-17 47616]
R2 Sentinel;Sentinel; C:\windows\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-08-01 244040]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-08-01 296200]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2014-10-14 161288]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2007-07-05 101376]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\windows\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;Sentinel LDK License Manager; C:\windows\system32\hasplms.exe [2013-08-01 4609928]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-04-16 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
R2 IFXTCS;Trusted Platform Core Service; c:\Windows\system32\ifxtcs.exe [2008-03-21 980248]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Windows\system32\IfxPsdSv.exe [2008-03-21 210200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2014-10-14 134664]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-26 316992]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2007-04-27 206400]
R2 VmbService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [2013-10-24 8704]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2008-01-21 21504]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by s-geo at 2015-01-18 12:01:02
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 148 GB (65%) free of 228 GB
Total RAM: 1977 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:01:09, on 18.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskeng.exe
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\windows\system32\SearchFilterHost.exe
C:\Users\s-geo\Desktop\RSIT.exe
C:\Program Files\trend micro\s-geo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cdr.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.19.146:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hp.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{780864AE-ADBE-41C3-981C-6BEFE490871E}: NameServer = 192.168.0.1,217.112.162.34
O18 - Protocol: HPPUDCS - {522CC7E5-F378-4F97-8BD7-125D17F5B332} - C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\APP\hplidcsapp.dll
O18 - Protocol: hppufile - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppusam - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppuzip - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Windows\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Windows\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Windows\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Vodafone Mobile Connect Service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
--
End of file - 9633 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Norton Security Scan for s-geo.job - C:\PROGRA~1\NORTON~2\Engine\410~1.29\Nss.exe /scan-quick /scheduled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-04-16 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-07 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-07 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-04-16 10240000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSI Updater 11]
C:\Program Files\HSI\Updater\Updater.exe [2013-03-27 332288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFXSPMGT]
c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-10-24 78336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PUStarter]
C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe [2007-05-31 81920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunPUTasktray]
C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe [2007-05-31 68608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2014-10-14 632328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-10-24 1893888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-01-17 14:09:03 ----D---- C:\AdwCleaner
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-01-17 13:35:15 ----D---- C:\Program Files\trend micro
2015-01-17 13:35:12 ----D---- C:\rsit
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers\NSS
2015-01-17 13:16:33 ----D---- C:\Program Files\Norton Security Scan
2015-01-17 13:16:31 ----D---- C:\ProgramData\Norton
2015-01-17 13:16:21 ----D---- C:\ProgramData\NortonInstaller
2015-01-17 13:16:21 ----D---- C:\Program Files\NortonInstaller
2015-01-17 13:06:47 ----D---- C:\Program Files\ESET
2015-01-17 12:53:03 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-17 12:31:34 ----D---- C:\d7ce78d22f82d07844dd45e866f4adf7
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlasvc.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlaapi.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\ncsi.dll
2015-01-17 12:30:09 ----A---- C:\windows\system32\profsvc.dll
2015-01-09 08:45:14 ----A---- C:\windows\system32\drivers\netio.sys
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10warp.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10level9.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\FntCache.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\DWrite.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\d2d1.dll
2015-01-09 07:40:40 ----A---- C:\windows\system32\XpsPrint.dll
2015-01-08 22:10:04 ----D---- C:\Program Files\Windows Portable Devices
2015-01-08 21:56:38 ----A---- C:\windows\system32\infocardapi.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardres.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardagt.exe
2015-01-08 21:56:36 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscories.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscorier.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\dfshim.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\msaudite.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\adtschema.dll
2015-01-08 21:53:07 ----A---- C:\windows\system32\termsrv.dll
2015-01-08 21:52:24 ----A---- C:\windows\system32\tzres.dll
2015-01-08 21:51:44 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-01-08 21:50:49 ----A---- C:\windows\system32\UIAnimation.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbonRes.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbon.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\WPDShextAutoplay.exe
2015-01-08 21:49:34 ----A---- C:\windows\system32\wpdbusenum.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\BthMtpContextHandler.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDSp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDShServiceObj.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpdshext.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtpUS.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdConns.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpd_ci.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceWMDRM.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceTypes.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceConnectApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceClassExtension.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\drivers\WpdUsb.sys
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3r.dll
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3.dll
2015-01-08 21:42:02 ----A---- C:\windows\system32\kerberos.dll
2015-01-08 21:41:13 ----A---- C:\windows\system32\packager.dll
2015-01-08 21:33:27 ----D---- C:\windows\Migration
2015-01-08 21:25:00 ----A---- C:\windows\system32\gdi32.dll
2015-01-08 21:15:12 ----A---- C:\windows\system32\IMJP10K.DLL
2015-01-08 21:13:17 ----A---- C:\windows\system32\wininet.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\urlmon.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\msrating.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\msls31.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\mshtmler.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\jsproxy.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\ieui.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iesysprep.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iertutil.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\wextract.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\webcheck.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\vbscript.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\url.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\pngfilt.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\occache.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtmled.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtml.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\msfeeds.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\licmgr10.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\inseng.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iexpress.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieUnatt.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\iesetup.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iernonce.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieframe.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iedkcs32.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dat
2015-01-08 21:13:16 ----A---- C:\windows\system32\ie4uinit.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\icardie.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtrans.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\mshta.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedssync.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedsbs.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript9.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\imgutil.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\iepeers.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakui.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieaksie.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakeng.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\IEAdvpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\advpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\admparse.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\shdocvw.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfreadwrite.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfps.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfplat.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfmp4src.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFHEAACdec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFH264Dec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mf.dll
2015-01-08 21:12:25 ----A---- C:\windows\system32\stobject.dll
2015-01-08 21:12:24 ----A---- C:\windows\system32\XpsRasterService.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\xpsservices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\OpcServices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\dxgi.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WMPhoto.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiagn.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiag.exe
2015-01-08 21:11:50 ----A---- C:\windows\system32\d3d11.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\EncDump.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\audiosrv.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AudioEng.dll
2015-01-08 20:41:05 ----A---- C:\windows\system32\oleaut32.dll
2015-01-08 20:31:38 ----A---- C:\windows\system32\drivers\fastfat.sys
2015-01-08 20:30:52 ----A---- C:\windows\system32\schannel.dll
2015-01-08 20:30:52 ----A---- C:\windows\system32\lsasrv.dll
2015-01-08 20:30:03 ----A---- C:\windows\system32\Wdfres.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFSvc.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\winusb.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFx.dll
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFHost.exe
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-01-08 20:08:48 ----A---- C:\windows\system32\win32k.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-01-08 20:06:55 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-08 20:06:31 ----A---- C:\windows\system32\shell32.dll
2015-01-08 20:06:29 ----A---- C:\windows\system32\psisdecd.dll
2015-01-08 20:06:25 ----A---- C:\windows\system32\usp10.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\msi.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\consent.exe
2015-01-08 20:06:23 ----A---- C:\windows\system32\authui.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\appinfo.dll
2015-01-08 20:06:22 ----A---- C:\windows\system32\msihnd.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\icaapi.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-01-08 20:06:16 ----A---- C:\windows\system32\winmm.dll
2015-01-08 20:06:16 ----A---- C:\windows\system32\mciseq.dll
2015-01-08 20:06:14 ----A---- C:\windows\system32\localspl.dll
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnsvr.exe
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnet.dll
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\bthport.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\portcls.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\drmk.sys
2015-01-08 20:05:47 ----A---- C:\windows\system32\rpcrt4.dll
2015-01-08 20:05:46 ----A---- C:\windows\system32\synceng.dll
2015-01-08 20:05:44 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-01-08 20:04:49 ----A---- C:\windows\system32\EncDec.dll
2015-01-08 20:04:21 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023x.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-01-08 20:03:27 ----A---- C:\windows\system32\cdd.dll
2015-01-08 20:03:26 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-01-08 20:02:59 ----A---- C:\windows\system32\netapi32.dll
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbport.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbd.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-01-08 20:02:04 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-01-08 20:01:29 ----A---- C:\windows\system32\qedit.dll
2015-01-08 20:01:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-01-08 20:00:34 ----A---- C:\windows\system32\msxml6.dll
2015-01-08 20:00:06 ----A---- C:\windows\system32\quartz.dll
2015-01-08 19:59:38 ----A---- C:\windows\system32\kernel32.dll
2015-01-08 19:56:45 ----A---- C:\windows\system32\ncrypt.dll
2015-01-08 19:56:19 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-01-08 19:54:16 ----A---- C:\windows\system32\themeui.dll
2015-01-08 19:53:48 ----A---- C:\windows\system32\shlwapi.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wshcon.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wscript.exe
2015-01-08 19:52:52 ----A---- C:\windows\system32\scrrun.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\cscript.exe
2015-01-08 19:52:30 ----A---- C:\windows\system32\crypt32.dll
2015-01-08 19:51:53 ----A---- C:\windows\system32\imagehlp.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\wmi.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmlib.dll
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmfd.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\win32spl.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\printcom.dll
2015-01-08 19:50:30 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-01-08 19:49:35 ----A---- C:\windows\system32\msvcrt.dll
2015-01-08 19:49:06 ----A---- C:\windows\system32\drivers\afd.sys
2015-01-08 19:48:16 ----A---- C:\windows\system32\certutil.exe
2015-01-08 19:48:16 ----A---- C:\windows\system32\certenc.dll
2015-01-08 19:46:42 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\IKEEXT.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-01-08 19:45:20 ----A---- C:\windows\system32\winhttp.dll
2015-01-08 19:44:23 ----A---- C:\windows\system32\qdvd.dll
2015-01-08 19:43:55 ----A---- C:\windows\system32\wer.dll
2015-01-08 19:43:00 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\smss.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntdll.dll
2015-01-08 19:42:59 ----A---- C:\windows\system32\csrsrv.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\UIAutomationCore.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleaccrc.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleacc.dll
2015-01-08 19:41:02 ----A---- C:\windows\system32\mstscax.dll
2015-01-08 19:40:34 ----A---- C:\windows\system32\xmllite.dll
2015-01-08 19:40:07 ----A---- C:\windows\system32\comctl32.dll
2015-01-08 19:39:39 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-01-08 19:39:11 ----A---- C:\windows\system32\winsrv.dll
2015-01-08 19:38:51 ----A---- C:\windows\system32\cryptdlg.dll
2015-01-08 19:38:12 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-01-08 19:34:51 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-01-08 19:34:50 ----A---- C:\windows\system32\secur32.dll
2015-01-08 19:34:50 ----A---- C:\windows\system32\lsass.exe
2015-01-08 19:34:22 ----A---- C:\windows\system32\msshsq.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\wintrust.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptsvc.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptnet.dll
2015-01-08 18:09:37 ----A---- C:\windows\system32\rdpencom.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wups2.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wucltux.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuaueng.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuauclt.exe
2015-01-08 17:43:39 ----A---- C:\windows\system32\wups.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wudriver.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wuapi.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuwebv.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuapp.exe
2015-01-07 21:08:36 ----D---- C:\windows\pss
2015-01-07 19:19:18 ----D---- C:\Program Files\CCleaner
2015-01-07 18:37:58 ----D---- C:\windows\system32\eu-ES
2015-01-07 18:37:58 ----D---- C:\windows\system32\ca-ES
2015-01-07 18:37:57 ----D---- C:\windows\system32\vi-VN
2015-01-07 18:15:40 ----D---- C:\ProgramData\Oracle
2015-01-07 18:15:27 ----D---- C:\ProgramData\Sun
2015-01-07 18:15:25 ----D---- C:\Program Files\Common Files\Java
2015-01-07 18:15:19 ----A---- C:\windows\system32\javaws.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-01-07 18:14:28 ----A---- C:\windows\system32\javaw.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\java.exe
2015-01-07 18:13:26 ----D---- C:\Program Files\Java
2015-01-07 18:06:41 ----D---- C:\windows\system32\EventProviders
======List of files/folders modified in the last 1 month======
2015-01-18 12:01:06 ----D---- C:\windows\Temp
2015-01-18 10:05:34 ----D---- C:\windows\System32
2015-01-18 10:05:34 ----D---- C:\windows\inf
2015-01-18 10:05:34 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-18 09:15:16 ----D---- C:\ProgramData\hpqLog
2015-01-18 09:08:18 ----SHD---- C:\System Volume Information
2015-01-17 14:12:33 ----RD---- C:\Program Files
2015-01-17 14:12:31 ----HD---- C:\ProgramData
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files
2015-01-17 13:16:55 ----D---- C:\windows\system32\Tasks
2015-01-17 13:16:54 ----D---- C:\windows\Tasks
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers
2015-01-17 12:53:15 ----D---- C:\windows\winsxs
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot2
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot
2015-01-17 12:50:12 ----D---- C:\Windows
2015-01-17 12:50:12 ----A---- C:\windows\Sandboxie.ini
2015-01-17 12:33:04 ----D---- C:\windows\system32\MRT
2015-01-17 12:32:57 ----D---- C:\windows\Debug
2015-01-17 12:32:43 ----A---- C:\windows\system32\mrt.exe
2015-01-09 08:46:00 ----SD---- C:\ProgramData\Microsoft
2015-01-09 08:33:43 ----SHD---- C:\Config.Msi
2015-01-09 08:04:09 ----D---- C:\windows\Microsoft.NET
2015-01-09 07:59:31 ----RSD---- C:\windows\assembly
2015-01-09 07:56:34 ----D---- C:\windows\rescache
2015-01-09 07:54:57 ----SHD---- C:\windows\Installer
2015-01-08 22:16:18 ----D---- C:\windows\Panther
2015-01-08 22:10:07 ----AD---- C:\windows\system32\cs-CZ
2015-01-08 22:10:06 ----D---- C:\Program Files\Windows Journal
2015-01-08 22:10:04 ----D---- C:\windows\system32\wbem
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-TW
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-HK
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-CN
2015-01-08 22:10:01 ----D---- C:\windows\system32\uk-UA
2015-01-08 22:10:01 ----D---- C:\windows\system32\tr-TR
2015-01-08 22:10:01 ----D---- C:\windows\system32\th-TH
2015-01-08 22:10:01 ----D---- C:\windows\system32\sv-SE
2015-01-08 22:10:01 ----D---- C:\windows\system32\sr-Latn-CS
2015-01-08 22:10:01 ----D---- C:\windows\system32\ru-RU
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-PT
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-BR
2015-01-08 22:10:01 ----D---- C:\windows\system32\pl-PL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nl-NL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nb-NO
2015-01-08 22:10:01 ----D---- C:\windows\system32\ko-KR
2015-01-08 22:10:01 ----D---- C:\windows\system32\ja-JP
2015-01-08 22:10:01 ----D---- C:\windows\system32\it-IT
2015-01-08 22:10:01 ----D---- C:\windows\system32\hu-HU
2015-01-08 22:10:01 ----D---- C:\windows\system32\he-IL
2015-01-08 22:10:01 ----D---- C:\windows\system32\fr-FR
2015-01-08 22:10:01 ----D---- C:\windows\system32\fi-FI
2015-01-08 22:10:01 ----D---- C:\windows\system32\es-ES
2015-01-08 22:10:01 ----D---- C:\windows\system32\en-US
2015-01-08 22:10:01 ----D---- C:\windows\system32\el-GR
2015-01-08 22:10:01 ----D---- C:\windows\system32\de-DE
2015-01-08 22:10:01 ----D---- C:\windows\system32\da-DK
2015-01-08 22:10:01 ----D---- C:\windows\system32\ar-SA
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sl-SI
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sk-SK
2015-01-08 22:10:01 ----AD---- C:\windows\system32\ro-RO
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lv-LV
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lt-LT
2015-01-08 22:10:01 ----AD---- C:\windows\system32\hr-HR
2015-01-08 22:10:01 ----AD---- C:\windows\system32\et-EE
2015-01-08 22:10:01 ----AD---- C:\windows\system32\bg-BG
2015-01-08 22:09:56 ----RSD---- C:\windows\Fonts
2015-01-08 22:09:54 ----RD---- C:\windows\Offline Web Pages
2015-01-08 22:09:54 ----D---- C:\windows\system32\migration
2015-01-08 22:09:54 ----D---- C:\windows\PolicyDefinitions
2015-01-08 22:09:54 ----D---- C:\Program Files\Internet Explorer
2015-01-08 22:09:53 ----SD---- C:\windows\Downloaded Program Files
2015-01-08 22:09:52 ----D---- C:\windows\system32\drivers\cs-CZ
2015-01-08 22:09:48 ----D---- C:\windows\system32\XPSViewer
2015-01-08 22:09:47 ----D---- C:\Program Files\Windows Mail
2015-01-08 22:09:44 ----D---- C:\Program Files\Common Files\System
2015-01-08 22:09:43 ----D---- C:\windows\AppPatch
2015-01-08 22:09:33 ----D---- C:\windows\system32\drivers\UMDF
2015-01-08 21:13:40 ----D---- C:\windows\Logs
2015-01-07 22:09:10 ----D---- C:\ProgramData\HSI
2015-01-07 19:29:37 ----D---- C:\Program Files\PDFCreator
2015-01-07 19:29:07 ----D---- C:\windows\ModemLogs
2015-01-07 18:50:28 ----SHD---- C:\boot
2015-01-07 18:50:21 ----D---- C:\windows\Prefetch
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Sidebar
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Calendar
2015-01-07 18:39:08 ----D---- C:\Program Files\Movie Maker
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Photo Gallery
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Media Player
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Collaboration
2015-01-07 18:39:06 ----D---- C:\windows\servicing
2015-01-07 18:39:06 ----D---- C:\Program Files\Windows Defender
2015-01-07 18:39:01 ----D---- C:\windows\IME
2015-01-07 18:38:59 ----D---- C:\windows\system32\oobe
2015-01-07 18:38:59 ----D---- C:\windows\system32\AdvancedInstallers
2015-01-07 18:38:58 ----D---- C:\windows\system32\setup
2015-01-07 18:38:58 ----D---- C:\windows\system32\cs
2015-01-07 18:38:56 ----D---- C:\windows\system32\SLUI
2015-01-07 18:38:55 ----D---- C:\windows\system32\manifeststore
2015-01-07 18:38:36 ----D---- C:\windows\system32\migwiz
2015-01-07 18:37:57 ----D---- C:\windows\system32\Boot
2015-01-07 18:25:59 ----A---- C:\windows\fonts\GlobalUserInterface.CompositeFont
2015-01-06 04:36:02 ----N---- C:\windows\system32\MpSigStub.exe
2014-12-22 19:12:22 ----D---- C:\Users\s-geo\AppData\Roaming\HpUpdate
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2008-04-08 44944]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2008-05-14 108752]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2008-05-14 51376]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2008-05-14 12928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2015-01-17 378672]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2008-03-21 39712]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 Haspnt;Haspnt; \??\C:\windows\system32\drivers\Haspnt.sys [2003-01-17 47616]
R2 Sentinel;Sentinel; C:\windows\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-08-01 244040]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-08-01 296200]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2014-10-14 161288]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2007-07-05 101376]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\windows\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;Sentinel LDK License Manager; C:\windows\system32\hasplms.exe [2013-08-01 4609928]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-04-16 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
R2 IFXTCS;Trusted Platform Core Service; c:\Windows\system32\ifxtcs.exe [2008-03-21 980248]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Windows\system32\IfxPsdSv.exe [2008-03-21 210200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2014-10-14 134664]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-26 316992]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2007-04-27 206400]
R2 VmbService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [2013-10-24 8704]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2008-01-21 21504]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
přikládám nový log RSIT. Děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by s-geo at 2015-01-18 13:12:10
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 148 GB (65%) free of 228 GB
Total RAM: 1977 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:16, on 18.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\windows\System32\mobsync.exe
C:\Users\s-geo\Desktop\RSIT.exe
C:\Program Files\trend micro\s-geo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cdr.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.19.146:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hp.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{780864AE-ADBE-41C3-981C-6BEFE490871E}: NameServer = 192.168.0.1,217.112.162.34
O18 - Protocol: HPPUDCS - {522CC7E5-F378-4F97-8BD7-125D17F5B332} - C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\APP\hplidcsapp.dll
O18 - Protocol: hppufile - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppusam - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppuzip - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Windows\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Windows\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Windows\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Vodafone Mobile Connect Service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
--
End of file - 9512 bytes
======Scheduled tasks folder======
C:\windows\tasks\Norton Security Scan for s-geo.job - C:\PROGRA~1\NORTON~2\Engine\410~1.29\Nss.exe /scan-quick /scheduled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-04-16 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-07 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-07 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-04-16 10240000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSI Updater 11]
C:\Program Files\HSI\Updater\Updater.exe [2013-03-27 332288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFXSPMGT]
c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-10-24 78336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PUStarter]
C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe [2007-05-31 81920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunPUTasktray]
C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe [2007-05-31 68608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2014-10-14 632328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-10-24 1893888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-01-18 13:05:54 ----D---- C:\_OTM
2015-01-17 14:09:03 ----D---- C:\AdwCleaner
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-01-17 13:35:15 ----D---- C:\Program Files\trend micro
2015-01-17 13:35:12 ----D---- C:\rsit
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers\NSS
2015-01-17 13:16:33 ----D---- C:\Program Files\Norton Security Scan
2015-01-17 13:16:31 ----D---- C:\ProgramData\Norton
2015-01-17 13:16:21 ----D---- C:\ProgramData\NortonInstaller
2015-01-17 13:16:21 ----D---- C:\Program Files\NortonInstaller
2015-01-17 13:06:47 ----D---- C:\Program Files\ESET
2015-01-17 12:53:03 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-17 12:31:34 ----D---- C:\d7ce78d22f82d07844dd45e866f4adf7
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlasvc.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlaapi.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\ncsi.dll
2015-01-17 12:30:09 ----A---- C:\windows\system32\profsvc.dll
2015-01-09 08:45:14 ----A---- C:\windows\system32\drivers\netio.sys
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10warp.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10level9.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\FntCache.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\DWrite.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\d2d1.dll
2015-01-09 07:40:40 ----A---- C:\windows\system32\XpsPrint.dll
2015-01-08 22:10:04 ----D---- C:\Program Files\Windows Portable Devices
2015-01-08 21:56:38 ----A---- C:\windows\system32\infocardapi.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardres.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardagt.exe
2015-01-08 21:56:36 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscories.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscorier.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\dfshim.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\msaudite.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\adtschema.dll
2015-01-08 21:53:07 ----A---- C:\windows\system32\termsrv.dll
2015-01-08 21:52:24 ----A---- C:\windows\system32\tzres.dll
2015-01-08 21:51:44 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-01-08 21:50:49 ----A---- C:\windows\system32\UIAnimation.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbonRes.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbon.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\WPDShextAutoplay.exe
2015-01-08 21:49:34 ----A---- C:\windows\system32\wpdbusenum.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\BthMtpContextHandler.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDSp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDShServiceObj.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpdshext.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtpUS.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdConns.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpd_ci.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceWMDRM.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceTypes.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceConnectApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceClassExtension.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\drivers\WpdUsb.sys
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3r.dll
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3.dll
2015-01-08 21:42:02 ----A---- C:\windows\system32\kerberos.dll
2015-01-08 21:41:13 ----A---- C:\windows\system32\packager.dll
2015-01-08 21:33:27 ----D---- C:\windows\Migration
2015-01-08 21:25:00 ----A---- C:\windows\system32\gdi32.dll
2015-01-08 21:15:12 ----A---- C:\windows\system32\IMJP10K.DLL
2015-01-08 21:13:17 ----A---- C:\windows\system32\wininet.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\urlmon.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\msrating.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\msls31.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\mshtmler.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\jsproxy.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\ieui.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iesysprep.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iertutil.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\wextract.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\webcheck.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\vbscript.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\url.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\pngfilt.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\occache.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtmled.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtml.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\msfeeds.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\licmgr10.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\inseng.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iexpress.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieUnatt.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\iesetup.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iernonce.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieframe.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iedkcs32.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dat
2015-01-08 21:13:16 ----A---- C:\windows\system32\ie4uinit.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\icardie.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtrans.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\mshta.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedssync.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedsbs.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript9.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\imgutil.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\iepeers.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakui.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieaksie.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakeng.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\IEAdvpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\advpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\admparse.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\shdocvw.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfreadwrite.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfps.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfplat.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfmp4src.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFHEAACdec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFH264Dec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mf.dll
2015-01-08 21:12:25 ----A---- C:\windows\system32\stobject.dll
2015-01-08 21:12:24 ----A---- C:\windows\system32\XpsRasterService.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\xpsservices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\OpcServices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\dxgi.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WMPhoto.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiagn.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiag.exe
2015-01-08 21:11:50 ----A---- C:\windows\system32\d3d11.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\EncDump.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\audiosrv.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AudioEng.dll
2015-01-08 20:41:05 ----A---- C:\windows\system32\oleaut32.dll
2015-01-08 20:31:38 ----A---- C:\windows\system32\drivers\fastfat.sys
2015-01-08 20:30:52 ----A---- C:\windows\system32\schannel.dll
2015-01-08 20:30:52 ----A---- C:\windows\system32\lsasrv.dll
2015-01-08 20:30:03 ----A---- C:\windows\system32\Wdfres.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFSvc.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\winusb.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFx.dll
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFHost.exe
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-01-08 20:08:48 ----A---- C:\windows\system32\win32k.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-01-08 20:06:55 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-08 20:06:31 ----A---- C:\windows\system32\shell32.dll
2015-01-08 20:06:29 ----A---- C:\windows\system32\psisdecd.dll
2015-01-08 20:06:25 ----A---- C:\windows\system32\usp10.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\msi.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\consent.exe
2015-01-08 20:06:23 ----A---- C:\windows\system32\authui.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\appinfo.dll
2015-01-08 20:06:22 ----A---- C:\windows\system32\msihnd.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\icaapi.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-01-08 20:06:16 ----A---- C:\windows\system32\winmm.dll
2015-01-08 20:06:16 ----A---- C:\windows\system32\mciseq.dll
2015-01-08 20:06:14 ----A---- C:\windows\system32\localspl.dll
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnsvr.exe
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnet.dll
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\bthport.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\portcls.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\drmk.sys
2015-01-08 20:05:47 ----A---- C:\windows\system32\rpcrt4.dll
2015-01-08 20:05:46 ----A---- C:\windows\system32\synceng.dll
2015-01-08 20:05:44 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-01-08 20:04:49 ----A---- C:\windows\system32\EncDec.dll
2015-01-08 20:04:21 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023x.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-01-08 20:03:27 ----A---- C:\windows\system32\cdd.dll
2015-01-08 20:03:26 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-01-08 20:02:59 ----A---- C:\windows\system32\netapi32.dll
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbport.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbd.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-01-08 20:02:04 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-01-08 20:01:29 ----A---- C:\windows\system32\qedit.dll
2015-01-08 20:01:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-01-08 20:00:34 ----A---- C:\windows\system32\msxml6.dll
2015-01-08 20:00:06 ----A---- C:\windows\system32\quartz.dll
2015-01-08 19:59:38 ----A---- C:\windows\system32\kernel32.dll
2015-01-08 19:56:45 ----A---- C:\windows\system32\ncrypt.dll
2015-01-08 19:56:19 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-01-08 19:54:16 ----A---- C:\windows\system32\themeui.dll
2015-01-08 19:53:48 ----A---- C:\windows\system32\shlwapi.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wshcon.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wscript.exe
2015-01-08 19:52:52 ----A---- C:\windows\system32\scrrun.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\cscript.exe
2015-01-08 19:52:30 ----A---- C:\windows\system32\crypt32.dll
2015-01-08 19:51:53 ----A---- C:\windows\system32\imagehlp.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\wmi.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmlib.dll
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmfd.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\win32spl.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\printcom.dll
2015-01-08 19:50:30 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-01-08 19:49:35 ----A---- C:\windows\system32\msvcrt.dll
2015-01-08 19:49:06 ----A---- C:\windows\system32\drivers\afd.sys
2015-01-08 19:48:16 ----A---- C:\windows\system32\certutil.exe
2015-01-08 19:48:16 ----A---- C:\windows\system32\certenc.dll
2015-01-08 19:46:42 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\IKEEXT.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-01-08 19:45:20 ----A---- C:\windows\system32\winhttp.dll
2015-01-08 19:44:23 ----A---- C:\windows\system32\qdvd.dll
2015-01-08 19:43:55 ----A---- C:\windows\system32\wer.dll
2015-01-08 19:43:00 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\smss.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntdll.dll
2015-01-08 19:42:59 ----A---- C:\windows\system32\csrsrv.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\UIAutomationCore.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleaccrc.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleacc.dll
2015-01-08 19:41:02 ----A---- C:\windows\system32\mstscax.dll
2015-01-08 19:40:34 ----A---- C:\windows\system32\xmllite.dll
2015-01-08 19:40:07 ----A---- C:\windows\system32\comctl32.dll
2015-01-08 19:39:39 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-01-08 19:39:11 ----A---- C:\windows\system32\winsrv.dll
2015-01-08 19:38:51 ----A---- C:\windows\system32\cryptdlg.dll
2015-01-08 19:38:12 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-01-08 19:34:51 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-01-08 19:34:50 ----A---- C:\windows\system32\secur32.dll
2015-01-08 19:34:50 ----A---- C:\windows\system32\lsass.exe
2015-01-08 19:34:22 ----A---- C:\windows\system32\msshsq.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\wintrust.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptsvc.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptnet.dll
2015-01-08 18:09:37 ----A---- C:\windows\system32\rdpencom.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wups2.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wucltux.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuaueng.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuauclt.exe
2015-01-08 17:43:39 ----A---- C:\windows\system32\wups.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wudriver.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wuapi.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuwebv.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuapp.exe
2015-01-07 21:08:36 ----D---- C:\windows\pss
2015-01-07 19:19:18 ----D---- C:\Program Files\CCleaner
2015-01-07 18:37:58 ----D---- C:\windows\system32\eu-ES
2015-01-07 18:37:58 ----D---- C:\windows\system32\ca-ES
2015-01-07 18:37:57 ----D---- C:\windows\system32\vi-VN
2015-01-07 18:15:40 ----D---- C:\ProgramData\Oracle
2015-01-07 18:15:27 ----D---- C:\ProgramData\Sun
2015-01-07 18:15:25 ----D---- C:\Program Files\Common Files\Java
2015-01-07 18:15:19 ----A---- C:\windows\system32\javaws.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-01-07 18:14:28 ----A---- C:\windows\system32\javaw.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\java.exe
2015-01-07 18:13:26 ----D---- C:\Program Files\Java
2015-01-07 18:06:41 ----D---- C:\windows\system32\EventProviders
======List of files/folders modified in the last 1 month======
2015-01-18 13:12:12 ----D---- C:\windows\Temp
2015-01-18 13:08:46 ----D---- C:\ProgramData\hpqLog
2015-01-18 13:05:55 ----D---- C:\windows\Tasks
2015-01-18 10:05:34 ----D---- C:\windows\System32
2015-01-18 10:05:34 ----D---- C:\windows\inf
2015-01-18 10:05:34 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-18 09:08:18 ----SHD---- C:\System Volume Information
2015-01-17 14:12:33 ----RD---- C:\Program Files
2015-01-17 14:12:31 ----HD---- C:\ProgramData
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files
2015-01-17 13:16:55 ----D---- C:\windows\system32\Tasks
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers
2015-01-17 12:53:15 ----D---- C:\windows\winsxs
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot2
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot
2015-01-17 12:50:12 ----D---- C:\Windows
2015-01-17 12:50:12 ----A---- C:\windows\Sandboxie.ini
2015-01-17 12:33:04 ----D---- C:\windows\system32\MRT
2015-01-17 12:32:57 ----D---- C:\windows\Debug
2015-01-17 12:32:43 ----A---- C:\windows\system32\mrt.exe
2015-01-09 08:46:00 ----SD---- C:\ProgramData\Microsoft
2015-01-09 08:33:43 ----SHD---- C:\Config.Msi
2015-01-09 08:04:09 ----D---- C:\windows\Microsoft.NET
2015-01-09 07:59:31 ----RSD---- C:\windows\assembly
2015-01-09 07:56:34 ----D---- C:\windows\rescache
2015-01-09 07:54:57 ----SHD---- C:\windows\Installer
2015-01-08 22:16:18 ----D---- C:\windows\Panther
2015-01-08 22:10:07 ----AD---- C:\windows\system32\cs-CZ
2015-01-08 22:10:06 ----D---- C:\Program Files\Windows Journal
2015-01-08 22:10:04 ----D---- C:\windows\system32\wbem
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-TW
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-HK
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-CN
2015-01-08 22:10:01 ----D---- C:\windows\system32\uk-UA
2015-01-08 22:10:01 ----D---- C:\windows\system32\tr-TR
2015-01-08 22:10:01 ----D---- C:\windows\system32\th-TH
2015-01-08 22:10:01 ----D---- C:\windows\system32\sv-SE
2015-01-08 22:10:01 ----D---- C:\windows\system32\sr-Latn-CS
2015-01-08 22:10:01 ----D---- C:\windows\system32\ru-RU
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-PT
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-BR
2015-01-08 22:10:01 ----D---- C:\windows\system32\pl-PL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nl-NL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nb-NO
2015-01-08 22:10:01 ----D---- C:\windows\system32\ko-KR
2015-01-08 22:10:01 ----D---- C:\windows\system32\ja-JP
2015-01-08 22:10:01 ----D---- C:\windows\system32\it-IT
2015-01-08 22:10:01 ----D---- C:\windows\system32\hu-HU
2015-01-08 22:10:01 ----D---- C:\windows\system32\he-IL
2015-01-08 22:10:01 ----D---- C:\windows\system32\fr-FR
2015-01-08 22:10:01 ----D---- C:\windows\system32\fi-FI
2015-01-08 22:10:01 ----D---- C:\windows\system32\es-ES
2015-01-08 22:10:01 ----D---- C:\windows\system32\en-US
2015-01-08 22:10:01 ----D---- C:\windows\system32\el-GR
2015-01-08 22:10:01 ----D---- C:\windows\system32\de-DE
2015-01-08 22:10:01 ----D---- C:\windows\system32\da-DK
2015-01-08 22:10:01 ----D---- C:\windows\system32\ar-SA
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sl-SI
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sk-SK
2015-01-08 22:10:01 ----AD---- C:\windows\system32\ro-RO
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lv-LV
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lt-LT
2015-01-08 22:10:01 ----AD---- C:\windows\system32\hr-HR
2015-01-08 22:10:01 ----AD---- C:\windows\system32\et-EE
2015-01-08 22:10:01 ----AD---- C:\windows\system32\bg-BG
2015-01-08 22:09:56 ----RSD---- C:\windows\Fonts
2015-01-08 22:09:54 ----RD---- C:\windows\Offline Web Pages
2015-01-08 22:09:54 ----D---- C:\windows\system32\migration
2015-01-08 22:09:54 ----D---- C:\windows\PolicyDefinitions
2015-01-08 22:09:54 ----D---- C:\Program Files\Internet Explorer
2015-01-08 22:09:53 ----SD---- C:\windows\Downloaded Program Files
2015-01-08 22:09:52 ----D---- C:\windows\system32\drivers\cs-CZ
2015-01-08 22:09:48 ----D---- C:\windows\system32\XPSViewer
2015-01-08 22:09:47 ----D---- C:\Program Files\Windows Mail
2015-01-08 22:09:44 ----D---- C:\Program Files\Common Files\System
2015-01-08 22:09:43 ----D---- C:\windows\AppPatch
2015-01-08 22:09:33 ----D---- C:\windows\system32\drivers\UMDF
2015-01-08 21:13:40 ----D---- C:\windows\Logs
2015-01-07 22:09:10 ----D---- C:\ProgramData\HSI
2015-01-07 19:29:37 ----D---- C:\Program Files\PDFCreator
2015-01-07 19:29:07 ----D---- C:\windows\ModemLogs
2015-01-07 18:50:28 ----SHD---- C:\boot
2015-01-07 18:50:21 ----D---- C:\windows\Prefetch
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Sidebar
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Calendar
2015-01-07 18:39:08 ----D---- C:\Program Files\Movie Maker
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Photo Gallery
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Media Player
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Collaboration
2015-01-07 18:39:06 ----D---- C:\windows\servicing
2015-01-07 18:39:06 ----D---- C:\Program Files\Windows Defender
2015-01-07 18:39:01 ----D---- C:\windows\IME
2015-01-07 18:38:59 ----D---- C:\windows\system32\oobe
2015-01-07 18:38:59 ----D---- C:\windows\system32\AdvancedInstallers
2015-01-07 18:38:58 ----D---- C:\windows\system32\setup
2015-01-07 18:38:58 ----D---- C:\windows\system32\cs
2015-01-07 18:38:56 ----D---- C:\windows\system32\SLUI
2015-01-07 18:38:55 ----D---- C:\windows\system32\manifeststore
2015-01-07 18:38:36 ----D---- C:\windows\system32\migwiz
2015-01-07 18:37:57 ----D---- C:\windows\system32\Boot
2015-01-07 18:25:59 ----A---- C:\windows\fonts\GlobalUserInterface.CompositeFont
2015-01-06 04:36:02 ----N---- C:\windows\system32\MpSigStub.exe
2014-12-22 19:12:22 ----D---- C:\Users\s-geo\AppData\Roaming\HpUpdate
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2008-04-08 44944]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2008-05-14 108752]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2008-05-14 51376]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2008-05-14 12928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2015-01-17 378672]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2008-03-21 39712]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 Haspnt;Haspnt; \??\C:\windows\system32\drivers\Haspnt.sys [2003-01-17 47616]
R2 Sentinel;Sentinel; C:\windows\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-08-01 244040]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-08-01 296200]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2014-10-14 161288]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2007-07-05 101376]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\windows\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;Sentinel LDK License Manager; C:\windows\system32\hasplms.exe [2013-08-01 4609928]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-04-16 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
R2 IFXTCS;Trusted Platform Core Service; c:\Windows\system32\ifxtcs.exe [2008-03-21 980248]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Windows\system32\IfxPsdSv.exe [2008-03-21 210200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2014-10-14 134664]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-26 316992]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2007-04-27 206400]
R2 VmbService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [2013-10-24 8704]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2008-01-21 21504]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by s-geo at 2015-01-18 13:12:10
Microsoft® Windows Vista™ Business Service Pack 2
System drive C: has 148 GB (65%) free of 228 GB
Total RAM: 1977 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:12:16, on 18.1.2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\windows\system32\taskeng.exe
C:\windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\windows\System32\mobsync.exe
C:\Users\s-geo\Desktop\RSIT.exe
C:\Program Files\trend micro\s-geo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cdr.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... ll&pf=cmnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.19.146:80
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.hp.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{780864AE-ADBE-41C3-981C-6BEFE490871E}: NameServer = 192.168.0.1,217.112.162.34
O18 - Protocol: HPPUDCS - {522CC7E5-F378-4F97-8BD7-125D17F5B332} - C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\APP\hplidcsapp.dll
O18 - Protocol: hppufile - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppusam - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Protocol: hppuzip - {4BCA8E33-E18F-4358-9F6F-3C7206BCF72F} - C:\Program Files\Hewlett-Packard\HP Printer Utility\hpluCtrls.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: APSHook.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\windows\system32\browseui.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\windows\system32\agrsmsvc.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - c:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - SafeNet Inc. - C:\windows\system32\hasplms.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Security Platform Management Service (IFXSpMgtSrv) - Infineon Technologies AG - c:\Windows\system32\ifxspmgt.exe
O23 - Service: Trusted Platform Core Service (IFXTCS) - Infineon Technologies AG - c:\Windows\system32\ifxtcs.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Personal Secure Drive Service (PersonalSecureDriveService) - Infineon Technologies AG - c:\Windows\system32\IfxPsdSv.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Vodafone Mobile Connect Service (VmbService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
--
End of file - 9512 bytes
======Scheduled tasks folder======
C:\windows\tasks\Norton Security Scan for s-geo.job - C:\PROGRA~1\NORTON~2\Engine\410~1.29\Nss.exe /scan-quick /scheduled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-04-16 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-07 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-07 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\accrdsub]
c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-12-12 5489944]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CognizanceTS]
c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-04-16 10240000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2008-06-04 170520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSI Updater 11]
C:\Program Files\HSI\Updater\Updater.exe [2013-03-27 332288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IFXSPMGT]
c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe [2008-06-04 150040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MobileBroadband]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [2013-10-24 78336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe [2008-06-04 141848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PUStarter]
C:\Program Files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe [2007-05-31 81920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-03-31 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RunPUTasktray]
C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe [2007-05-31 68608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2014-10-14 632328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VmbNotifier]
C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe [2013-10-24 1893888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center]
C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^DVD Check.lnk]
C:\PROGRA~1\INTERV~1\DVDCHE~1\DVDCheck.exe [2008-04-21 197904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-20 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe"="C:\Program Files\Hewlett-Packard\HP Printer Utility\HPPU.exe:*:Enabled:HP Printer Utility HPPURun"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.siren"=sirenacm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\windows\System32\Notepad.exe %1
.js - open - C:\windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-01-18 13:05:54 ----D---- C:\_OTM
2015-01-17 14:09:03 ----D---- C:\AdwCleaner
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-01-17 13:35:15 ----D---- C:\Program Files\trend micro
2015-01-17 13:35:12 ----D---- C:\rsit
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers\NSS
2015-01-17 13:16:33 ----D---- C:\Program Files\Norton Security Scan
2015-01-17 13:16:31 ----D---- C:\ProgramData\Norton
2015-01-17 13:16:21 ----D---- C:\ProgramData\NortonInstaller
2015-01-17 13:16:21 ----D---- C:\Program Files\NortonInstaller
2015-01-17 13:06:47 ----D---- C:\Program Files\ESET
2015-01-17 12:53:03 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-01-17 12:31:34 ----D---- C:\d7ce78d22f82d07844dd45e866f4adf7
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlasvc.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\nlaapi.dll
2015-01-17 12:30:36 ----A---- C:\windows\system32\ncsi.dll
2015-01-17 12:30:09 ----A---- C:\windows\system32\profsvc.dll
2015-01-09 08:45:14 ----A---- C:\windows\system32\drivers\netio.sys
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10warp.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10level9.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1core.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10_1.dll
2015-01-09 07:40:42 ----A---- C:\windows\system32\d3d10.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\FntCache.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\DWrite.dll
2015-01-09 07:40:41 ----A---- C:\windows\system32\d2d1.dll
2015-01-09 07:40:40 ----A---- C:\windows\system32\XpsPrint.dll
2015-01-08 22:10:04 ----D---- C:\Program Files\Windows Portable Devices
2015-01-08 21:56:38 ----A---- C:\windows\system32\infocardapi.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardres.dll
2015-01-08 21:56:38 ----A---- C:\windows\system32\icardagt.exe
2015-01-08 21:56:36 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscories.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\mscorier.dll
2015-01-08 21:55:14 ----A---- C:\windows\system32\dfshim.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\msaudite.dll
2015-01-08 21:53:08 ----A---- C:\windows\system32\adtschema.dll
2015-01-08 21:53:07 ----A---- C:\windows\system32\termsrv.dll
2015-01-08 21:52:24 ----A---- C:\windows\system32\tzres.dll
2015-01-08 21:51:44 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-01-08 21:50:49 ----A---- C:\windows\system32\UIAnimation.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbonRes.dll
2015-01-08 21:50:48 ----A---- C:\windows\system32\UIRibbon.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\WPDShextAutoplay.exe
2015-01-08 21:49:34 ----A---- C:\windows\system32\wpdbusenum.dll
2015-01-08 21:49:34 ----A---- C:\windows\system32\BthMtpContextHandler.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDSp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WPDShServiceObj.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpdshext.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtpUS.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdMtp.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\WpdConns.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\wpd_ci.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceWMDRM.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceTypes.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceConnectApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceClassExtension.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\PortableDeviceApi.dll
2015-01-08 21:49:33 ----A---- C:\windows\system32\drivers\WpdUsb.sys
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3r.dll
2015-01-08 21:46:25 ----A---- C:\windows\system32\msxml3.dll
2015-01-08 21:42:02 ----A---- C:\windows\system32\kerberos.dll
2015-01-08 21:41:13 ----A---- C:\windows\system32\packager.dll
2015-01-08 21:33:27 ----D---- C:\windows\Migration
2015-01-08 21:25:00 ----A---- C:\windows\system32\gdi32.dll
2015-01-08 21:15:12 ----A---- C:\windows\system32\IMJP10K.DLL
2015-01-08 21:13:17 ----A---- C:\windows\system32\wininet.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\urlmon.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\SetIEInstalledDate.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\RegisterIEPKEYs.exe
2015-01-08 21:13:17 ----A---- C:\windows\system32\msrating.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\msls31.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\mshtmler.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\jsproxy.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\ieui.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iesysprep.dll
2015-01-08 21:13:17 ----A---- C:\windows\system32\iertutil.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\wextract.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\webcheck.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\vbscript.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\url.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\pngfilt.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\occache.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtmled.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\mshtml.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\msfeeds.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\licmgr10.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\inseng.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iexpress.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieUnatt.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\iesetup.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iernonce.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieframe.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\iedkcs32.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\ieapfltr.dat
2015-01-08 21:13:16 ----A---- C:\windows\system32\ie4uinit.exe
2015-01-08 21:13:16 ----A---- C:\windows\system32\icardie.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtrans.dll
2015-01-08 21:13:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\mshta.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedssync.exe
2015-01-08 21:13:15 ----A---- C:\windows\system32\msfeedsbs.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript9.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\jscript.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\imgutil.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\iepeers.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakui.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieaksie.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\ieakeng.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\IEAdvpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\advpack.dll
2015-01-08 21:13:15 ----A---- C:\windows\system32\admparse.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\shdocvw.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfreadwrite.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfps.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfplat.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mfmp4src.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFHEAACdec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\MFH264Dec.dll
2015-01-08 21:12:26 ----A---- C:\windows\system32\mf.dll
2015-01-08 21:12:25 ----A---- C:\windows\system32\stobject.dll
2015-01-08 21:12:24 ----A---- C:\windows\system32\XpsRasterService.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\xpsservices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2015-01-08 21:12:23 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\OpcServices.dll
2015-01-08 21:12:23 ----A---- C:\windows\system32\dxgi.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WMPhoto.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiagn.dll
2015-01-08 21:11:50 ----A---- C:\windows\system32\dxdiag.exe
2015-01-08 21:11:50 ----A---- C:\windows\system32\d3d11.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\EncDump.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\audiosrv.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-01-08 20:59:06 ----A---- C:\windows\system32\AudioEng.dll
2015-01-08 20:41:05 ----A---- C:\windows\system32\oleaut32.dll
2015-01-08 20:31:38 ----A---- C:\windows\system32\drivers\fastfat.sys
2015-01-08 20:30:52 ----A---- C:\windows\system32\schannel.dll
2015-01-08 20:30:52 ----A---- C:\windows\system32\lsasrv.dll
2015-01-08 20:30:03 ----A---- C:\windows\system32\Wdfres.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFSvc.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\winusb.dll
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-01-08 20:30:01 ----A---- C:\windows\system32\drivers\WdfLdr.sys
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFx.dll
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFHost.exe
2015-01-08 20:30:00 ----A---- C:\windows\system32\WUDFCoinstaller.dll
2015-01-08 20:08:48 ----A---- C:\windows\system32\win32k.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-01-08 20:07:06 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-01-08 20:06:55 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-08 20:06:31 ----A---- C:\windows\system32\shell32.dll
2015-01-08 20:06:29 ----A---- C:\windows\system32\psisdecd.dll
2015-01-08 20:06:25 ----A---- C:\windows\system32\usp10.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\msi.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\consent.exe
2015-01-08 20:06:23 ----A---- C:\windows\system32\authui.dll
2015-01-08 20:06:23 ----A---- C:\windows\system32\appinfo.dll
2015-01-08 20:06:22 ----A---- C:\windows\system32\msihnd.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\icaapi.dll
2015-01-08 20:06:17 ----A---- C:\windows\system32\drivers\tssecsrv.sys
2015-01-08 20:06:16 ----A---- C:\windows\system32\winmm.dll
2015-01-08 20:06:16 ----A---- C:\windows\system32\mciseq.dll
2015-01-08 20:06:14 ----A---- C:\windows\system32\localspl.dll
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnsvr.exe
2015-01-08 20:06:07 ----A---- C:\windows\system32\dpnet.dll
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2015-01-08 20:06:05 ----A---- C:\windows\system32\drivers\bthport.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\portcls.sys
2015-01-08 20:06:03 ----A---- C:\windows\system32\drivers\drmk.sys
2015-01-08 20:05:47 ----A---- C:\windows\system32\rpcrt4.dll
2015-01-08 20:05:46 ----A---- C:\windows\system32\synceng.dll
2015-01-08 20:05:44 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-01-08 20:04:49 ----A---- C:\windows\system32\EncDec.dll
2015-01-08 20:04:21 ----A---- C:\windows\system32\drivers\partmgr.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023x.sys
2015-01-08 20:03:55 ----A---- C:\windows\system32\drivers\usb8023.sys
2015-01-08 20:03:27 ----A---- C:\windows\system32\cdd.dll
2015-01-08 20:03:26 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-01-08 20:02:59 ----A---- C:\windows\system32\netapi32.dll
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbport.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbd.sys
2015-01-08 20:02:34 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-01-08 20:02:33 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-01-08 20:02:04 ----A---- C:\windows\system32\drivers\usbvideo.sys
2015-01-08 20:01:29 ----A---- C:\windows\system32\qedit.dll
2015-01-08 20:01:02 ----A---- C:\windows\system32\drivers\Wdf01000.sys
2015-01-08 20:00:34 ----A---- C:\windows\system32\msxml6.dll
2015-01-08 20:00:06 ----A---- C:\windows\system32\quartz.dll
2015-01-08 19:59:38 ----A---- C:\windows\system32\kernel32.dll
2015-01-08 19:56:45 ----A---- C:\windows\system32\ncrypt.dll
2015-01-08 19:56:19 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-01-08 19:54:16 ----A---- C:\windows\system32\themeui.dll
2015-01-08 19:53:48 ----A---- C:\windows\system32\shlwapi.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wshcon.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\wscript.exe
2015-01-08 19:52:52 ----A---- C:\windows\system32\scrrun.dll
2015-01-08 19:52:52 ----A---- C:\windows\system32\cscript.exe
2015-01-08 19:52:30 ----A---- C:\windows\system32\crypt32.dll
2015-01-08 19:51:53 ----A---- C:\windows\system32\imagehlp.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\wmi.dll
2015-01-08 19:51:52 ----A---- C:\windows\system32\drivers\fs_rec.sys
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmlib.dll
2015-01-08 19:51:25 ----A---- C:\windows\system32\atmfd.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\win32spl.dll
2015-01-08 19:50:58 ----A---- C:\windows\system32\printcom.dll
2015-01-08 19:50:30 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-01-08 19:49:35 ----A---- C:\windows\system32\msvcrt.dll
2015-01-08 19:49:06 ----A---- C:\windows\system32\drivers\afd.sys
2015-01-08 19:48:16 ----A---- C:\windows\system32\certutil.exe
2015-01-08 19:48:16 ----A---- C:\windows\system32\certenc.dll
2015-01-08 19:46:42 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\IKEEXT.DLL
2015-01-08 19:46:15 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-01-08 19:45:20 ----A---- C:\windows\system32\winhttp.dll
2015-01-08 19:44:23 ----A---- C:\windows\system32\qdvd.dll
2015-01-08 19:43:55 ----A---- C:\windows\system32\wer.dll
2015-01-08 19:43:00 ----A---- C:\windows\system32\ntkrnlpa.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\smss.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntoskrnl.exe
2015-01-08 19:42:59 ----A---- C:\windows\system32\ntdll.dll
2015-01-08 19:42:59 ----A---- C:\windows\system32\csrsrv.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\UIAutomationCore.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleaccrc.dll
2015-01-08 19:42:36 ----A---- C:\windows\system32\oleacc.dll
2015-01-08 19:41:02 ----A---- C:\windows\system32\mstscax.dll
2015-01-08 19:40:34 ----A---- C:\windows\system32\xmllite.dll
2015-01-08 19:40:07 ----A---- C:\windows\system32\comctl32.dll
2015-01-08 19:39:39 ----A---- C:\windows\system32\drivers\rdpwd.sys
2015-01-08 19:39:11 ----A---- C:\windows\system32\winsrv.dll
2015-01-08 19:38:51 ----A---- C:\windows\system32\cryptdlg.dll
2015-01-08 19:38:12 ----A---- C:\windows\system32\drivers\hidparse.sys
2015-01-08 19:34:51 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-01-08 19:34:50 ----A---- C:\windows\system32\secur32.dll
2015-01-08 19:34:50 ----A---- C:\windows\system32\lsass.exe
2015-01-08 19:34:22 ----A---- C:\windows\system32\msshsq.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\wintrust.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptsvc.dll
2015-01-08 18:28:47 ----A---- C:\windows\system32\cryptnet.dll
2015-01-08 18:09:37 ----A---- C:\windows\system32\rdpencom.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wups2.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wucltux.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuaueng.dll
2015-01-08 17:44:00 ----A---- C:\windows\system32\wuauclt.exe
2015-01-08 17:43:39 ----A---- C:\windows\system32\wups.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wudriver.dll
2015-01-08 17:43:39 ----A---- C:\windows\system32\wuapi.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuwebv.dll
2015-01-08 17:43:32 ----A---- C:\windows\system32\wuapp.exe
2015-01-07 21:08:36 ----D---- C:\windows\pss
2015-01-07 19:19:18 ----D---- C:\Program Files\CCleaner
2015-01-07 18:37:58 ----D---- C:\windows\system32\eu-ES
2015-01-07 18:37:58 ----D---- C:\windows\system32\ca-ES
2015-01-07 18:37:57 ----D---- C:\windows\system32\vi-VN
2015-01-07 18:15:40 ----D---- C:\ProgramData\Oracle
2015-01-07 18:15:27 ----D---- C:\ProgramData\Sun
2015-01-07 18:15:25 ----D---- C:\Program Files\Common Files\Java
2015-01-07 18:15:19 ----A---- C:\windows\system32\javaws.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2015-01-07 18:14:28 ----A---- C:\windows\system32\javaw.exe
2015-01-07 18:14:28 ----A---- C:\windows\system32\java.exe
2015-01-07 18:13:26 ----D---- C:\Program Files\Java
2015-01-07 18:06:41 ----D---- C:\windows\system32\EventProviders
======List of files/folders modified in the last 1 month======
2015-01-18 13:12:12 ----D---- C:\windows\Temp
2015-01-18 13:08:46 ----D---- C:\ProgramData\hpqLog
2015-01-18 13:05:55 ----D---- C:\windows\Tasks
2015-01-18 10:05:34 ----D---- C:\windows\System32
2015-01-18 10:05:34 ----D---- C:\windows\inf
2015-01-18 10:05:34 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-01-18 09:08:18 ----SHD---- C:\System Volume Information
2015-01-17 14:12:33 ----RD---- C:\Program Files
2015-01-17 14:12:31 ----HD---- C:\ProgramData
2015-01-17 13:53:46 ----D---- C:\Program Files\Common Files
2015-01-17 13:16:55 ----D---- C:\windows\system32\Tasks
2015-01-17 13:16:33 ----D---- C:\windows\system32\drivers
2015-01-17 12:53:15 ----D---- C:\windows\winsxs
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot2
2015-01-17 12:53:14 ----D---- C:\windows\system32\catroot
2015-01-17 12:50:12 ----D---- C:\Windows
2015-01-17 12:50:12 ----A---- C:\windows\Sandboxie.ini
2015-01-17 12:33:04 ----D---- C:\windows\system32\MRT
2015-01-17 12:32:57 ----D---- C:\windows\Debug
2015-01-17 12:32:43 ----A---- C:\windows\system32\mrt.exe
2015-01-09 08:46:00 ----SD---- C:\ProgramData\Microsoft
2015-01-09 08:33:43 ----SHD---- C:\Config.Msi
2015-01-09 08:04:09 ----D---- C:\windows\Microsoft.NET
2015-01-09 07:59:31 ----RSD---- C:\windows\assembly
2015-01-09 07:56:34 ----D---- C:\windows\rescache
2015-01-09 07:54:57 ----SHD---- C:\windows\Installer
2015-01-08 22:16:18 ----D---- C:\windows\Panther
2015-01-08 22:10:07 ----AD---- C:\windows\system32\cs-CZ
2015-01-08 22:10:06 ----D---- C:\Program Files\Windows Journal
2015-01-08 22:10:04 ----D---- C:\windows\system32\wbem
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-TW
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-HK
2015-01-08 22:10:01 ----D---- C:\windows\system32\zh-CN
2015-01-08 22:10:01 ----D---- C:\windows\system32\uk-UA
2015-01-08 22:10:01 ----D---- C:\windows\system32\tr-TR
2015-01-08 22:10:01 ----D---- C:\windows\system32\th-TH
2015-01-08 22:10:01 ----D---- C:\windows\system32\sv-SE
2015-01-08 22:10:01 ----D---- C:\windows\system32\sr-Latn-CS
2015-01-08 22:10:01 ----D---- C:\windows\system32\ru-RU
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-PT
2015-01-08 22:10:01 ----D---- C:\windows\system32\pt-BR
2015-01-08 22:10:01 ----D---- C:\windows\system32\pl-PL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nl-NL
2015-01-08 22:10:01 ----D---- C:\windows\system32\nb-NO
2015-01-08 22:10:01 ----D---- C:\windows\system32\ko-KR
2015-01-08 22:10:01 ----D---- C:\windows\system32\ja-JP
2015-01-08 22:10:01 ----D---- C:\windows\system32\it-IT
2015-01-08 22:10:01 ----D---- C:\windows\system32\hu-HU
2015-01-08 22:10:01 ----D---- C:\windows\system32\he-IL
2015-01-08 22:10:01 ----D---- C:\windows\system32\fr-FR
2015-01-08 22:10:01 ----D---- C:\windows\system32\fi-FI
2015-01-08 22:10:01 ----D---- C:\windows\system32\es-ES
2015-01-08 22:10:01 ----D---- C:\windows\system32\en-US
2015-01-08 22:10:01 ----D---- C:\windows\system32\el-GR
2015-01-08 22:10:01 ----D---- C:\windows\system32\de-DE
2015-01-08 22:10:01 ----D---- C:\windows\system32\da-DK
2015-01-08 22:10:01 ----D---- C:\windows\system32\ar-SA
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sl-SI
2015-01-08 22:10:01 ----AD---- C:\windows\system32\sk-SK
2015-01-08 22:10:01 ----AD---- C:\windows\system32\ro-RO
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lv-LV
2015-01-08 22:10:01 ----AD---- C:\windows\system32\lt-LT
2015-01-08 22:10:01 ----AD---- C:\windows\system32\hr-HR
2015-01-08 22:10:01 ----AD---- C:\windows\system32\et-EE
2015-01-08 22:10:01 ----AD---- C:\windows\system32\bg-BG
2015-01-08 22:09:56 ----RSD---- C:\windows\Fonts
2015-01-08 22:09:54 ----RD---- C:\windows\Offline Web Pages
2015-01-08 22:09:54 ----D---- C:\windows\system32\migration
2015-01-08 22:09:54 ----D---- C:\windows\PolicyDefinitions
2015-01-08 22:09:54 ----D---- C:\Program Files\Internet Explorer
2015-01-08 22:09:53 ----SD---- C:\windows\Downloaded Program Files
2015-01-08 22:09:52 ----D---- C:\windows\system32\drivers\cs-CZ
2015-01-08 22:09:48 ----D---- C:\windows\system32\XPSViewer
2015-01-08 22:09:47 ----D---- C:\Program Files\Windows Mail
2015-01-08 22:09:44 ----D---- C:\Program Files\Common Files\System
2015-01-08 22:09:43 ----D---- C:\windows\AppPatch
2015-01-08 22:09:33 ----D---- C:\windows\system32\drivers\UMDF
2015-01-08 21:13:40 ----D---- C:\windows\Logs
2015-01-07 22:09:10 ----D---- C:\ProgramData\HSI
2015-01-07 19:29:37 ----D---- C:\Program Files\PDFCreator
2015-01-07 19:29:07 ----D---- C:\windows\ModemLogs
2015-01-07 18:50:28 ----SHD---- C:\boot
2015-01-07 18:50:21 ----D---- C:\windows\Prefetch
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Sidebar
2015-01-07 18:39:08 ----D---- C:\Program Files\Windows Calendar
2015-01-07 18:39:08 ----D---- C:\Program Files\Movie Maker
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Photo Gallery
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Media Player
2015-01-07 18:39:07 ----D---- C:\Program Files\Windows Collaboration
2015-01-07 18:39:06 ----D---- C:\windows\servicing
2015-01-07 18:39:06 ----D---- C:\Program Files\Windows Defender
2015-01-07 18:39:01 ----D---- C:\windows\IME
2015-01-07 18:38:59 ----D---- C:\windows\system32\oobe
2015-01-07 18:38:59 ----D---- C:\windows\system32\AdvancedInstallers
2015-01-07 18:38:58 ----D---- C:\windows\system32\setup
2015-01-07 18:38:58 ----D---- C:\windows\system32\cs
2015-01-07 18:38:56 ----D---- C:\windows\system32\SLUI
2015-01-07 18:38:55 ----D---- C:\windows\system32\manifeststore
2015-01-07 18:38:36 ----D---- C:\windows\system32\migwiz
2015-01-07 18:37:57 ----D---- C:\windows\system32\Boot
2015-01-07 18:25:59 ----A---- C:\windows\fonts\GlobalUserInterface.CompositeFont
2015-01-06 04:36:02 ----N---- C:\windows\system32\MpSigStub.exe
2014-12-22 19:12:22 ----D---- C:\Users\s-geo\AppData\Roaming\HpUpdate
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2008-04-07 25448]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iastor.sys [2008-04-15 312344]
R0 MegaSR;MegaSR; C:\windows\system32\drivers\megasr.sys [2008-01-21 386616]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2008-04-08 44944]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2008-05-14 108752]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2008-05-14 51376]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2008-05-14 12928]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2015-01-17 378672]
R1 PersonalSecureDrive;PersonalSecureDrive; C:\windows\System32\drivers\psd.sys [2008-03-21 39712]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-08-01 376200]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-08-01 608648]
R2 Haspnt;Haspnt; \??\C:\windows\system32\drivers\Haspnt.sys [2003-01-17 47616]
R2 Sentinel;Sentinel; C:\windows\System32\Drivers\SENTINEL.SYS [2007-04-27 90688]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-08-01 244040]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-08-01 296200]
R3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\windows\System32\Drivers\ATSwpWDF.sys [2008-05-13 475520]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2007-11-29 181760]
R3 BthEnum;Služba Bluetooth Enumerator; C:\windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-20 2360832]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2014-10-14 161288]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
R3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2007-07-05 101376]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\windows\system32\DRIVERS\SNTNLUSB.SYS [2007-04-27 35328]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 134272]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ATService;AuthenTec Fingerprint Service; c:\Program Files\Fingerprint Sensor\AtService.exe [2008-05-10 1168632]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 hasplms;Sentinel LDK License Manager; C:\windows\system32\hasplms.exe [2013-08-01 4609928]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-04-16 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IFXSpMgtSrv;Security Platform Management Service; c:\Windows\system32\ifxspmgt.exe [2008-03-21 1090840]
R2 IFXTCS;Trusted Platform Core Service; c:\Windows\system32\ifxtcs.exe [2008-03-21 980248]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 PersonalSecureDriveService;Personal Secure Drive Service; c:\Windows\system32\IfxPsdSv.exe [2008-03-21 210200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2014-10-14 134664]
R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-26 316992]
R2 SentinelProtectionServer;Sentinel Protection Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2007-04-27 206400]
R2 VmbService;Vodafone Mobile Connect Service; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [2013-10-24 8704]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2008-01-21 21504]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2008-04-16 165192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-26 107912]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WPFFontCache_v0400;@C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; c:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
vytížení procesoru sice kleslo, nicméně při psaní této odpovědi mi stále kolísá od 10-ti do skoro 40-ti procent (nic jiného kromě systému, chrome a ccleaneru) a zatížení disku je téměř neustálé - vypadá to na něco v systému. Teď po cca 10-ti minutách po startu systému zatížení disku pomalu kleslo na "rozumnou" míru - dá se pracovat. Tak nevím... Každopádně díky za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Zkusíme ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
přikládám LOG. Děkuji.
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 18.1.2015
Scan Time: 18:46:19
Logfile:
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.01.18.06
Rootkit Database: v2015.01.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: s-geo
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 313634
Time Elapsed: 13 min, 8 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 18.1.2015
Scan Time: 18:46:19
Logfile:
Administrator: Yes
Version: 2.00.4.1028
Malware Database: v2015.01.18.06
Rootkit Database: v2015.01.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: s-geo
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 313634
Time Elapsed: 13 min, 8 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Je čistý. Který proces systém nejvíc zatěžuje?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: NTB - zahlceni hned po startu
byl tam hlavně svchost, ale ten se mi docela podařilo eliminovat zakázáním automatických aktualizací a snad se mi podařilo zastavit i defender. Nicméně svchost spolu s taskmgr a dwm je tam vidět stále nejvíc. Na druhou stranu se s notebookem díky tomu dá dělat už cca 5 minut po startu. Zatížení procesoru už je do 20-ti procent. Hledám dál. Díky.
-
Rudy
- Site Admin
- Příspěvky: 119679
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: NTB - zahlceni hned po startu
Buď tam máte něco, co se stále k internetu připojuje a něco tahá. Svchost je proces, který spravuje síť. služby. Zkuste přeinstlovat antivir. Jinak už nevím co, vše vypadá čisté.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?