Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

NTB se zadrhává, je pomalý,...

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

NTB se zadrhává, je pomalý,...

#1 Příspěvek od Rawmen »

Dobrý den,
poslední dobou mi přijde, že se notebook zpomalil. Projevuje se to zadrháváním, pokud si například otevřu více oken v prohlížeči (namátkou YT), když si chci pustit film/seriá, tak trvá delší dobu, než se program (VLC player) spustí atd.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Rawmen at 2015-03-17 15:31:58
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 93 GB (20%) free of 464 GB
Total RAM: 4007 MB (62% free)

HijackThis download failed

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-81e0b5be-f51b-4df6-b6e1-29f0a6c47e5f -SystemEventPortName:HostProcess-63459641-3fce-4fee-8a8c-78f69c3dc17e -IoCancelEventPortName:HostProcess-27d6b72f-b625-4a72-ad74-190baea28c12 -NonStateChangingEventPortName:HostProcess-9a5f9450-19a8-4289-ac64-1f2b6158eff3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9f3fc02c-b3e0-4849-9843-f398620108c5 -DeviceGroupId:
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
WLIDSvcM.exe 2388
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
atieclxx
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\Dwm.exe"
"taskhost.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
taskeng.exe {25B26B6E-6216-4F8F-9DB3-655DF5E0F73F}
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\Windows\Explorer.EXE
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe"
"C:\Windows\WindowsMobile\wmdcBase.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe" /start
"MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey C95700B4-FD79-5F00-6556-C9B0282B8FE2 -Reinvoke
"C:\Users\Rawmen\Desktop\RSITx64.exe"
taskeng.exe {74AB3499-BB45-44A1-8B1A-C5F066A36FEC}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02 383840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02 226736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-06 2785064]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2011-01-14 380776]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-01-27 41320]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2010-12-17 281448]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2012-09-21 85864]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe /WinStart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyEmergency]
C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2012-04-01 1390368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Kaspersky Anti-Hacker.lnk]
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe /silence []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\Rawmen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-01-29 74160]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2014-02-14 450560]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10 1861968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2012-09-21 136040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-03-17 15:32:00 ----D---- C:\Program Files\trend micro
2015-03-17 15:31:58 ----D---- C:\rsit
2015-03-11 07:18:41 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 07:18:41 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 07:18:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 07:18:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 07:18:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 07:18:31 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 07:18:30 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 07:18:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 07:18:29 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 07:18:28 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 07:18:28 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 07:18:24 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 07:18:21 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 07:18:11 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 07:18:10 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 07:18:09 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 07:18:08 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 07:18:07 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 07:18:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 07:18:05 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 07:18:05 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\evr.dll
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 07:18:03 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 07:18:02 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 07:18:01 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 07:18:00 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 07:18:00 ----A---- C:\Windows\system32\winresume.exe
2015-03-11 07:17:59 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 07:17:58 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 07:17:57 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\mf.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 07:17:56 ----A---- C:\Windows\system32\winload.exe
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\ci.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 07:17:54 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 07:17:54 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 07:17:52 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\smss.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 07:17:47 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 07:17:45 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 07:17:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 07:17:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 07:17:39 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 07:17:38 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 07:17:33 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 07:17:33 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 07:16:37 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 07:16:37 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 07:16:35 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 07:16:33 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 07:16:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 07:16:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 07:16:25 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 07:16:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 07:16:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 07:16:22 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 07:16:22 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 07:16:20 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 07:16:18 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 07:16:18 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 07:10:56 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 07:05:30 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 07:05:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\wdi.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\powertracker.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\perftrack.dll
2015-03-03 20:45:06 ----A---- C:\Windows\SYSWOW64\wdi.dll

======List of files/folders modified in the last 1 month======

2015-03-17 15:32:00 ----RD---- C:\Program Files
2015-03-17 15:31:33 ----D---- C:\Windows\temp
2015-03-17 15:31:18 ----D---- C:\Users\Rawmen\AppData\Roaming\Skype
2015-03-17 15:30:45 ----D---- C:\Users\Rawmen\AppData\Roaming\DMCache
2015-03-17 15:09:38 ----D---- C:\Downloads
2015-03-17 13:40:20 ----D---- C:\Windows\system32\config
2015-03-17 13:28:06 ----SHD---- C:\System Volume Information
2015-03-17 07:56:58 ----A---- C:\Windows\SYSWOW64\log.txt
2015-03-16 13:06:21 ----D---- C:\Program Files (x86)\Opera
2015-03-16 08:06:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-13 14:53:12 ----D---- C:\Windows\Prefetch
2015-03-12 17:03:07 ----D---- C:\Windows\System32
2015-03-12 17:03:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-12 12:21:17 ----D---- C:\Users\Rawmen\AppData\Roaming\BSplayer
2015-03-11 22:11:27 ----D---- C:\Windows\rescache
2015-03-11 20:49:56 ----D---- C:\Windows\SysWOW64
2015-03-11 18:10:46 ----D---- C:\Windows\winsxs
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 18:07:37 ----D---- C:\Program Files\Windows Media Player
2015-03-11 18:07:37 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 18:07:36 ----D---- C:\Windows\system32\drivers
2015-03-11 18:07:36 ----D---- C:\Windows\system32\Dism
2015-03-11 18:07:36 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 18:07:35 ----D---- C:\Windows\system32\en-US
2015-03-11 18:07:34 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-11 18:07:34 ----D---- C:\Windows\system32\Boot
2015-03-11 18:07:29 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 18:07:29 ----D---- C:\Program Files\Internet Explorer
2015-03-11 18:07:27 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 12:21:58 ----SHD---- C:\Windows\Installer
2015-03-11 12:21:56 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 12:15:29 ----D---- C:\Windows\system32\MRT
2015-03-11 12:09:25 ----D---- C:\Windows\debug
2015-03-11 12:09:15 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 07:04:45 ----D---- C:\Windows\system32\catroot2
2015-03-10 17:59:45 ----D---- C:\Windows\system32\Tasks
2015-03-09 06:40:55 ----AD---- C:\Windows
2015-03-09 06:40:27 ----D---- C:\Windows\twain_32
2015-03-08 19:36:32 ----D---- C:\Users\Rawmen\AppData\Roaming\uTorrent
2015-03-07 08:16:56 ----RD---- C:\Program Files (x86)
2015-03-07 08:16:55 ----D---- C:\ProgramData
2015-02-26 16:51:23 ----D---- C:\Windows\system32\NDF
2015-02-24 03:17:24 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2012-02-01 31872]
R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-01 208416]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-10 557848]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-01-13 139888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-01-31 564824]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-01-13 23664]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-14 254528]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2010-12-03 31592]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2013-01-10 20328]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2013-10-23 454168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-04-23 154272]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 risdxc;risdxc; C:\Windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
R3 5U877;USB Video Device; C:\Windows\system32\DRIVERS\5U877.sys [2011-03-05 166016]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2012-04-01 594472]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-04-01 184872]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-06-22 1586848]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-02-01 39024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-09-30 11523072]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2009-07-02 40512]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2012-05-30 34032]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-06 1439792]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 Klif;Klif; C:\Windows\System32\drivers\klif.sys []
S2 smihlp2;SMI Helper Driver (smihlp2); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder\SysInfoX64.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-09 12289472]
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 PCDSRVC{127174DC-C366ED8B-06020101}_0;PCDSRVC{127174DC-C366ED8B-06020101}_0 - PCDR Kernel Mode Service Helper Driver; \??\c:\program files\pc-doctor\pcdsrvc_x64.pkms [2010-12-09 25072]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-01 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-04-01 957216]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-09 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-02-01 45928]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-01-27 40808]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2010-11-24 45496]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-01-27 59240]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-09 75064]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2010-12-03 114024]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2010-12-02 64440]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-01-29 2445816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2010-12-03 116072]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-16 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-05 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-01-10 1665832]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2013-01-10 1664296]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-01-13 47728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Děkuji. :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#3 Příspěvek od Rawmen »

:arrow: Výsledek

# AdwCleaner v4.112 - Logfile created 17/03/2015 at 19:06:41
# Updated 09/03/2015 by Xplode
# Database : 2015-03-15.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Rawmen - RAWMEN-THINK
# Running from : C:\Users\Rawmen\Desktop\adwcleaner_4.112.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689


-\\ Google Chrome v41.0.2272.89


-\\ Opera v28.0.1750.40


*************************

AdwCleaner[R0].txt - [8927 bytes] - [18/02/2014 10:09:01]
AdwCleaner[R10].txt - [3833 bytes] - [10/08/2014 07:55:34]
AdwCleaner[R11].txt - [8503 bytes] - [05/10/2014 08:59:44]
AdwCleaner[R12].txt - [7721 bytes] - [24/12/2014 14:56:22]
AdwCleaner[R13].txt - [2393 bytes] - [17/03/2015 19:03:46]
AdwCleaner[R1].txt - [1481 bytes] - [26/02/2014 09:09:22]
AdwCleaner[R2].txt - [2672 bytes] - [05/03/2014 14:51:06]
AdwCleaner[R3].txt - [2113 bytes] - [06/03/2014 08:00:11]
AdwCleaner[R4].txt - [1472 bytes] - [09/03/2014 13:22:08]
AdwCleaner[R5].txt - [1629 bytes] - [15/03/2014 20:40:01]
AdwCleaner[R6].txt - [7048 bytes] - [29/03/2014 09:53:26]
AdwCleaner[R7].txt - [2446 bytes] - [26/04/2014 06:18:57]
AdwCleaner[R8].txt - [2438 bytes] - [08/05/2014 16:29:49]
AdwCleaner[R9].txt - [2128 bytes] - [23/05/2014 09:49:18]
AdwCleaner[S0].txt - [7980 bytes] - [18/02/2014 10:11:54]
AdwCleaner[S10].txt - [8024 bytes] - [24/12/2014 15:02:38]
AdwCleaner[S11].txt - [1751 bytes] - [17/03/2015 19:06:41]
AdwCleaner[S1].txt - [1515 bytes] - [26/02/2014 09:26:39]
AdwCleaner[S2].txt - [2594 bytes] - [05/03/2014 15:02:25]
AdwCleaner[S3].txt - [2153 bytes] - [06/03/2014 08:37:54]
AdwCleaner[S4].txt - [1494 bytes] - [09/03/2014 13:23:39]
AdwCleaner[S5].txt - [6750 bytes] - [29/03/2014 09:54:03]
AdwCleaner[S6].txt - [2477 bytes] - [08/05/2014 16:31:24]
AdwCleaner[S7].txt - [2161 bytes] - [23/05/2014 09:51:34]
AdwCleaner[S8].txt - [3862 bytes] - [10/08/2014 07:56:55]
AdwCleaner[S9].txt - [6505 bytes] - [05/10/2014 09:01:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S11].txt - [2342 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#5 Příspěvek od Rawmen »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Rawmen at 2015-03-17 19:45:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 121 GB (26%) free of 464 GB
Total RAM: 4007 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:46:12, on 17.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe
C:\Program Files\trend micro\Rawmen.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 13815 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9bc5276f-eac9-43c3-8501-bdf378f90b6c -SystemEventPortName:HostProcess-73f9874f-d923-4c29-b7ef-39de22b0d5e4 -IoCancelEventPortName:HostProcess-b5e6363b-84bf-40b6-8ef1-2d037015800c -NonStateChangingEventPortName:HostProcess-13c3af8d-f11a-46cc-a74f-6e48d7755724 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ebc94e5c-a0e4-440a-806e-538077561510 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
atieclxx
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3132
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\Dwm.exe"
taskhost.exe USER
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
taskeng.exe {562B5A42-3EDA-4BA1-8936-EA6441DA40EB}
C:\Windows\Explorer.EXE
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe"
"C:\Windows\WindowsMobile\wmdcBase.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe" /start
"MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"taskhost.exe"

"C:\Users\Rawmen\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02 383840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02 226736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-06 2785064]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2011-01-14 380776]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-01-27 41320]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2010-12-17 281448]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2012-09-21 85864]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe /WinStart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyEmergency]
C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2012-04-01 1390368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Kaspersky Anti-Hacker.lnk]
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe /silence []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\Rawmen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-01-29 74160]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2014-02-14 450560]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10 1861968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2012-09-21 136040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-03-17 15:32:00 ----D---- C:\Program Files\trend micro
2015-03-17 15:31:58 ----D---- C:\rsit
2015-03-11 07:18:41 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 07:18:41 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 07:18:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 07:18:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 07:18:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 07:18:31 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 07:18:30 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 07:18:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 07:18:29 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 07:18:28 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 07:18:28 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 07:18:24 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 07:18:21 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 07:18:11 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 07:18:10 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 07:18:09 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 07:18:08 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 07:18:07 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 07:18:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 07:18:05 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 07:18:05 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\evr.dll
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 07:18:03 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 07:18:02 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 07:18:01 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 07:18:00 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 07:18:00 ----A---- C:\Windows\system32\winresume.exe
2015-03-11 07:17:59 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 07:17:58 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 07:17:57 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\mf.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 07:17:56 ----A---- C:\Windows\system32\winload.exe
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\ci.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 07:17:54 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 07:17:54 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 07:17:52 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\smss.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 07:17:47 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 07:17:45 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 07:17:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 07:17:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 07:17:39 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 07:17:38 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 07:17:33 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 07:17:33 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 07:16:37 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 07:16:37 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 07:16:35 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 07:16:33 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 07:16:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 07:16:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 07:16:25 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 07:16:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 07:16:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 07:16:22 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 07:16:22 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 07:16:20 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 07:16:18 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 07:16:18 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 07:10:56 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 07:05:30 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 07:05:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\wdi.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\powertracker.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\perftrack.dll
2015-03-03 20:45:06 ----A---- C:\Windows\SYSWOW64\wdi.dll

======List of files/folders modified in the last 1 month======

2015-03-17 19:45:54 ----D---- C:\Windows\temp
2015-03-17 19:45:45 ----D---- C:\Users\Rawmen\AppData\Roaming\Skype
2015-03-17 19:30:33 ----RD---- C:\Program Files
2015-03-17 19:26:53 ----RD---- C:\Program Files (x86)
2015-03-17 19:25:00 ----D---- C:\Program Files (x86)\DVDVideoSoft
2015-03-17 19:24:58 ----RSD---- C:\Windows\assembly
2015-03-17 19:23:38 ----D---- C:\Downloads
2015-03-17 19:18:55 ----D---- C:\Windows\system32\config
2015-03-17 19:11:00 ----A---- C:\Windows\SYSWOW64\log.txt
2015-03-17 19:06:42 ----D---- C:\AdwCleaner
2015-03-17 16:08:19 ----D---- C:\Users\Rawmen\AppData\Roaming\DMCache
2015-03-17 13:28:06 ----SHD---- C:\System Volume Information
2015-03-16 13:06:21 ----D---- C:\Program Files (x86)\Opera
2015-03-16 08:06:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-13 14:53:12 ----D---- C:\Windows\Prefetch
2015-03-12 17:03:07 ----D---- C:\Windows\System32
2015-03-12 17:03:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-12 12:21:17 ----D---- C:\Users\Rawmen\AppData\Roaming\BSplayer
2015-03-11 22:11:27 ----D---- C:\Windows\rescache
2015-03-11 20:49:56 ----D---- C:\Windows\SysWOW64
2015-03-11 18:10:46 ----D---- C:\Windows\winsxs
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 18:07:37 ----D---- C:\Program Files\Windows Media Player
2015-03-11 18:07:37 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 18:07:36 ----D---- C:\Windows\system32\drivers
2015-03-11 18:07:36 ----D---- C:\Windows\system32\Dism
2015-03-11 18:07:36 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 18:07:35 ----D---- C:\Windows\system32\en-US
2015-03-11 18:07:34 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-11 18:07:34 ----D---- C:\Windows\system32\Boot
2015-03-11 18:07:29 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 18:07:29 ----D---- C:\Program Files\Internet Explorer
2015-03-11 18:07:27 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 12:21:58 ----SHD---- C:\Windows\Installer
2015-03-11 12:21:56 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 12:15:29 ----D---- C:\Windows\system32\MRT
2015-03-11 12:09:25 ----D---- C:\Windows\debug
2015-03-11 12:09:15 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 07:04:45 ----D---- C:\Windows\system32\catroot2
2015-03-10 17:59:45 ----D---- C:\Windows\system32\Tasks
2015-03-09 06:40:55 ----AD---- C:\Windows
2015-03-09 06:40:27 ----D---- C:\Windows\twain_32
2015-03-08 19:36:32 ----D---- C:\Users\Rawmen\AppData\Roaming\uTorrent
2015-03-07 08:16:55 ----D---- C:\ProgramData
2015-02-26 16:51:23 ----D---- C:\Windows\system32\NDF
2015-02-24 03:17:24 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2012-02-01 31872]
R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-01 208416]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-10 557848]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-01-13 139888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-01-31 564824]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-01-13 23664]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-14 254528]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2010-12-03 31592]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2013-01-10 20328]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2013-10-23 454168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-04-23 154272]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 risdxc;risdxc; C:\Windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
R3 5U877;USB Video Device; C:\Windows\system32\DRIVERS\5U877.sys [2011-03-05 166016]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2012-04-01 594472]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-04-01 184872]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-06-22 1586848]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-02-01 39024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-09-30 11523072]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2009-07-02 40512]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2012-05-30 34032]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-06 1439792]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 Klif;Klif; C:\Windows\System32\drivers\klif.sys []
S2 smihlp2;SMI Helper Driver (smihlp2); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder\SysInfoX64.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-09 12289472]
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-01 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-04-01 957216]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-09 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-02-01 45928]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-01-27 40808]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2010-11-24 45496]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-01-27 59240]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-09 75064]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2010-12-03 114024]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2010-12-02 64440]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-01-29 2445816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2010-12-03 116072]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-16 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-05 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-01-10 1665832]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2013-01-10 1664296]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-01-13 47728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Odinstalujte Spybot, antispyware je součástí Avastu. Mohl by vznikat sw konflikt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#7 Příspěvek od Rawmen »

Omlouvám se, ale nějak nevím, který Spybot myslíte? Šlo by to upřesnit?

Logfile of random's system information tool 1.10 (written by random/random)
Run by Rawmen at 2015-03-17 20:46:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 122 GB (26%) free of 464 GB
Total RAM: 4007 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:46:57, on 17.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Rawmen.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 13870 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-da7fa07d-1052-44ce-9b33-3f6f9f868a12 -SystemEventPortName:HostProcess-f9881be8-b971-43c4-9386-c16a9328386b -IoCancelEventPortName:HostProcess-bf257f6a-17e4-4257-9681-2a681047354e -NonStateChangingEventPortName:HostProcess-43f7a970-c4d7-4741-9c09-9b9219d0dd79 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f21027eb-9fbb-4954-9b9b-2367879a165f -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {807DBE2E-82BA-4247-B13B-2593E8BD319A}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
WLIDSvcM.exe 2476
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\wmiprvse.exe
atieclxx
"taskhost.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
taskeng.exe {626064C8-423B-4764-A0FE-A1F0C6F09181}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe"
"C:\Windows\WindowsMobile\wmdcBase.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Rawmen\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02 383840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02 226736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-06 2785064]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2011-01-14 380776]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-01-27 41320]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2010-12-17 281448]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2012-09-21 85864]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe /WinStart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyEmergency]
C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2012-04-01 1390368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Kaspersky Anti-Hacker.lnk]
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe /silence []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\Rawmen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-01-29 74160]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2014-02-14 450560]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10 1861968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2012-09-21 136040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-03-17 20:41:27 ----D---- C:\_OTM
2015-03-17 15:32:00 ----D---- C:\Program Files\trend micro
2015-03-17 15:31:58 ----D---- C:\rsit
2015-03-11 07:18:41 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 07:18:41 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 07:18:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 07:18:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 07:18:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 07:18:31 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 07:18:30 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 07:18:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 07:18:29 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 07:18:28 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 07:18:28 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 07:18:24 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 07:18:21 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 07:18:11 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 07:18:10 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 07:18:09 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 07:18:08 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 07:18:07 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 07:18:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 07:18:05 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 07:18:05 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\evr.dll
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 07:18:03 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 07:18:02 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 07:18:01 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 07:18:00 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 07:18:00 ----A---- C:\Windows\system32\winresume.exe
2015-03-11 07:17:59 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 07:17:58 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 07:17:57 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\mf.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 07:17:56 ----A---- C:\Windows\system32\winload.exe
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\ci.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 07:17:54 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 07:17:54 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 07:17:52 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\smss.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 07:17:47 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 07:17:45 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 07:17:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 07:17:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 07:17:39 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 07:17:38 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 07:17:33 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 07:17:33 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 07:16:37 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 07:16:37 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 07:16:35 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 07:16:33 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 07:16:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 07:16:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 07:16:25 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 07:16:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 07:16:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 07:16:22 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 07:16:22 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 07:16:20 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 07:16:18 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 07:16:18 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 07:10:56 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 07:05:30 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 07:05:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\wdi.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\powertracker.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\perftrack.dll
2015-03-03 20:45:06 ----A---- C:\Windows\SYSWOW64\wdi.dll

======List of files/folders modified in the last 1 month======

2015-03-17 20:46:56 ----D---- C:\Windows\temp
2015-03-17 20:46:08 ----A---- C:\Windows\SYSWOW64\log.txt
2015-03-17 20:45:18 ----D---- C:\Users\Rawmen\AppData\Roaming\Skype
2015-03-17 20:44:09 ----D---- C:\Windows\system32\config
2015-03-17 20:42:07 ----D---- C:\Windows\System32
2015-03-17 20:42:07 ----AD---- C:\Windows
2015-03-17 20:41:29 ----D---- C:\Windows\Tasks
2015-03-17 20:40:49 ----D---- C:\Users\Rawmen\AppData\Roaming\DMCache
2015-03-17 19:30:33 ----RD---- C:\Program Files
2015-03-17 19:26:53 ----RD---- C:\Program Files (x86)
2015-03-17 19:25:00 ----D---- C:\Program Files (x86)\DVDVideoSoft
2015-03-17 19:24:58 ----RSD---- C:\Windows\assembly
2015-03-17 19:23:38 ----D---- C:\Downloads
2015-03-17 19:06:42 ----D---- C:\AdwCleaner
2015-03-17 13:28:06 ----SHD---- C:\System Volume Information
2015-03-16 13:06:21 ----D---- C:\Program Files (x86)\Opera
2015-03-16 08:06:18 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-13 14:53:12 ----D---- C:\Windows\Prefetch
2015-03-12 17:03:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-12 12:21:17 ----D---- C:\Users\Rawmen\AppData\Roaming\BSplayer
2015-03-11 22:11:27 ----D---- C:\Windows\rescache
2015-03-11 20:49:56 ----D---- C:\Windows\SysWOW64
2015-03-11 18:10:46 ----D---- C:\Windows\winsxs
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 18:07:37 ----D---- C:\Program Files\Windows Media Player
2015-03-11 18:07:37 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 18:07:36 ----D---- C:\Windows\system32\drivers
2015-03-11 18:07:36 ----D---- C:\Windows\system32\Dism
2015-03-11 18:07:36 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 18:07:35 ----D---- C:\Windows\system32\en-US
2015-03-11 18:07:34 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-11 18:07:34 ----D---- C:\Windows\system32\Boot
2015-03-11 18:07:29 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 18:07:29 ----D---- C:\Program Files\Internet Explorer
2015-03-11 18:07:27 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 12:21:58 ----SHD---- C:\Windows\Installer
2015-03-11 12:21:56 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 12:15:29 ----D---- C:\Windows\system32\MRT
2015-03-11 12:09:25 ----D---- C:\Windows\debug
2015-03-11 12:09:15 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 07:04:45 ----D---- C:\Windows\system32\catroot2
2015-03-10 17:59:45 ----D---- C:\Windows\system32\Tasks
2015-03-09 06:40:27 ----D---- C:\Windows\twain_32
2015-03-08 19:36:32 ----D---- C:\Users\Rawmen\AppData\Roaming\uTorrent
2015-03-07 08:16:55 ----D---- C:\ProgramData
2015-02-26 16:51:23 ----D---- C:\Windows\system32\NDF
2015-02-24 03:17:24 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2012-02-01 31872]
R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-01 208416]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-10 557848]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-01-13 139888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-01-31 564824]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-01-13 23664]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-14 254528]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2010-12-03 31592]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2013-01-10 20328]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2013-10-23 454168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-04-23 154272]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 risdxc;risdxc; C:\Windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
R3 5U877;USB Video Device; C:\Windows\system32\DRIVERS\5U877.sys [2011-03-05 166016]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2012-04-01 594472]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-04-01 184872]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-06-22 1586848]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-02-01 39024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-09-30 11523072]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2009-07-02 40512]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2012-05-30 34032]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-06 1439792]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 Klif;Klif; C:\Windows\System32\drivers\klif.sys []
S2 smihlp2;SMI Helper Driver (smihlp2); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder\SysInfoX64.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-09 12289472]
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-01 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-04-01 957216]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-09 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-02-01 45928]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-01-27 40808]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2010-11-24 45496]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-01-27 59240]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-09 75064]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2010-12-03 114024]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2010-12-02 64440]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-01-29 2445816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2010-12-03 116072]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-16 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-05 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-01-10 1665832]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2013-01-10 1664296]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-01-13 47728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#8 Příspěvek od Rudy »

Dvouklikem na soubor C:\Program Files\trend micro\Rawmen.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - (no file)
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - (no file)
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#9 Příspěvek od Rawmen »

:arrow: Hotovo. Chtěl jsem se ještě na ten Spybot, který mám odinstalovat, nějak ho nemohu dohledat, co konkrétně myslíte?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#10 Příspěvek od Rudy »

Tzn, že jste ho někdy v systému měl, pak ho odinstaloval a něco po něm zbylo. Spusťte znovu OTM tímto skriptem:
:files
C:\Program Files (x86)\Spybot - Search & Destroy

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]

:commands
[Emptytemp]
[Emptyflash]
Tím budou zbytky odstraněny. Rovněž superantispyware, bych si ponechal jen jako skener a vypnul mu rez.štít. Ze stejného důvodu jako u Spybota.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#11 Příspěvek od Rawmen »

Provedeno.

Nejedná se také o "zbytky" SUPERAntiSpyware? Opět se mi nedaří program dohledat.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#12 Příspěvek od Rudy »

Tak ještě jednou. Spusťte OTM tímto skriptem:
:files
C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]

:commands
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#13 Příspěvek od Rawmen »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Rawmen at 2015-03-18 18:57:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 115 GB (25%) free of 464 GB
Total RAM: 4007 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:57:04, on 18.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\PWMUI.EXE
C:\Program Files\trend micro\Rawmen.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HyperW7 Service (HyperW7Svc) - Lenovo Group Limited - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 12925 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-3ab58ff2-d9cf-488e-a5c0-55b7e4a0ba55 -SystemEventPortName:HostProcess-40d45eb1-2168-465f-9197-94e6362d4d74 -IoCancelEventPortName:HostProcess-81075ee0-c114-4c72-b188-867f22564b41 -NonStateChangingEventPortName:HostProcess-e583ce8e-da21-42dc-ab17-54945a541e4a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d4e5dd23-74db-4f89-86ca-32f7c458a194 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
C:\Windows\system32\WLANExt.exe 15033952
\??\C:\Windows\system32\conhost.exe "-208969627689442950114347036585728386691915460868158055416417994644721693881094
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
taskeng.exe {DB9C7213-BCBA-4138-B779-3716586A549A}
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskeng.exe {53D426AC-CA7D-4F67-A5BD-599955E5CC29}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 3120
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe"
"C:\Windows\WindowsMobile\wmdcBase.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe" /start
C:\PROGRA~2\ThinkPad\UTILIT~1\PWMUI.EXE
"C:\Users\Rawmen\Desktop\RSITx64.exe"
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02 383840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-01 581824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02 226736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-01 436600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06 172968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-05-06 2785064]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2011-01-14 380776]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-01-27 41320]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2010-12-17 281448]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-09 416024]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2012-09-21 85864]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\szninstall.exe -c []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Rawmen\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe -q []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-10 3491264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Malware Fighter]
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe /WinStart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio]
C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2012-06-13 1647616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyEmergency]
C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xvid]
C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2012-04-01 1390368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Kaspersky Anti-Hacker.lnk]
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe /silence []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk]
C:\Users\Rawmen\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rawmen^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-11-30 56128]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-08 3890208]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-09-28 642728]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2014-01-29 74160]
"DivXMediaServer"=C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [2014-02-14 450560]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10 1861968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-09 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2012-09-21 136040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2015-03-18 18:57:00 ----D---- C:\rsit
2015-03-18 07:49:08 ----D---- C:\_OTM
2015-03-17 15:32:00 ----D---- C:\Program Files\trend micro
2015-03-11 07:18:41 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 07:18:41 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 07:18:39 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 07:18:38 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 07:18:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 07:18:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 07:18:37 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 07:18:36 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 07:18:35 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 07:18:34 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 07:18:33 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 07:18:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 07:18:33 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 07:18:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 07:18:32 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 07:18:31 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 07:18:30 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 07:18:30 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 07:18:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 07:18:29 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 07:18:28 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 07:18:28 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 07:18:27 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 07:18:26 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 07:18:25 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 07:18:24 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 07:18:21 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 07:18:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 07:18:20 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 07:18:11 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 07:18:11 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 07:18:10 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 07:18:09 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 07:18:08 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 07:18:08 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 07:18:07 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 07:18:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 07:18:05 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 07:18:05 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 07:18:05 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 07:18:04 ----A---- C:\Windows\system32\evr.dll
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 07:18:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 07:18:03 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 07:18:02 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 07:18:01 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 07:18:00 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 07:18:00 ----A---- C:\Windows\system32\winresume.exe
2015-03-11 07:17:59 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 07:17:58 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 07:17:58 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 07:17:57 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\mf.dll
2015-03-11 07:17:57 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 07:17:56 ----A---- C:\Windows\system32\winload.exe
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 07:17:55 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\ci.dll
2015-03-11 07:17:55 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 07:17:54 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 07:17:54 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 07:17:54 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 07:17:53 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 07:17:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 07:17:52 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 07:17:51 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 07:17:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 07:17:50 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\smss.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 07:17:50 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 07:17:50 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 07:17:49 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 07:17:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 07:17:47 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 07:17:45 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 07:17:43 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 07:17:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 07:17:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 07:17:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 07:17:39 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 07:17:38 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 07:17:33 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 07:17:33 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 07:16:37 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 07:16:37 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 07:16:35 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 07:16:33 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 07:16:27 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 07:16:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 07:16:26 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 07:16:25 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 07:16:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 07:16:24 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 07:16:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 07:16:23 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 07:16:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 07:16:22 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 07:16:22 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 07:16:21 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 07:16:21 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 07:16:21 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 07:16:20 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 07:16:19 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 07:16:19 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 07:16:18 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 07:16:18 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 07:10:59 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 07:10:56 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 07:05:30 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 07:05:29 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\wdi.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\powertracker.dll
2015-03-03 20:45:07 ----A---- C:\Windows\system32\perftrack.dll
2015-03-03 20:45:06 ----A---- C:\Windows\SYSWOW64\wdi.dll

======List of files/folders modified in the last 1 month======

2015-03-18 18:57:03 ----D---- C:\Windows\temp
2015-03-18 18:54:21 ----A---- C:\Windows\SYSWOW64\log.txt
2015-03-18 18:53:52 ----D---- C:\Windows\system32\config
2015-03-18 18:53:51 ----D---- C:\Users\Rawmen\AppData\Roaming\Skype
2015-03-18 18:44:36 ----D---- C:\Windows\Minidump
2015-03-18 18:44:32 ----AD---- C:\Windows
2015-03-18 17:10:49 ----D---- C:\Users\Rawmen\AppData\Roaming\DMCache
2015-03-18 13:35:31 ----D---- C:\Windows\SysWOW64
2015-03-18 13:35:27 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-18 13:07:46 ----D---- C:\Program Files (x86)\Opera
2015-03-18 13:07:44 ----D---- C:\Windows\system32\Tasks
2015-03-17 22:13:43 ----D---- C:\Program Files (x86)\Diablo III
2015-03-17 22:07:21 ----D---- C:\Program Files (x86)\Battle.net
2015-03-17 22:02:11 ----D---- C:\Windows\System32
2015-03-17 22:02:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-17 20:41:29 ----D---- C:\Windows\Tasks
2015-03-17 19:30:33 ----RD---- C:\Program Files
2015-03-17 19:26:53 ----RD---- C:\Program Files (x86)
2015-03-17 19:25:00 ----D---- C:\Program Files (x86)\DVDVideoSoft
2015-03-17 19:24:58 ----RSD---- C:\Windows\assembly
2015-03-17 19:23:38 ----D---- C:\Downloads
2015-03-17 19:06:42 ----D---- C:\AdwCleaner
2015-03-17 13:28:06 ----SHD---- C:\System Volume Information
2015-03-13 14:53:12 ----D---- C:\Windows\Prefetch
2015-03-12 12:21:17 ----D---- C:\Users\Rawmen\AppData\Roaming\BSplayer
2015-03-11 22:11:27 ----D---- C:\Windows\rescache
2015-03-11 18:10:46 ----D---- C:\Windows\winsxs
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-11 18:07:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-11 18:07:37 ----D---- C:\Program Files\Windows Media Player
2015-03-11 18:07:37 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 18:07:36 ----D---- C:\Windows\system32\drivers
2015-03-11 18:07:36 ----D---- C:\Windows\system32\Dism
2015-03-11 18:07:36 ----D---- C:\Windows\system32\cs-CZ
2015-03-11 18:07:35 ----D---- C:\Windows\system32\en-US
2015-03-11 18:07:34 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-11 18:07:34 ----D---- C:\Windows\system32\Boot
2015-03-11 18:07:29 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-11 18:07:29 ----D---- C:\Program Files\Internet Explorer
2015-03-11 18:07:27 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 12:21:58 ----SHD---- C:\Windows\Installer
2015-03-11 12:21:56 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 12:15:29 ----D---- C:\Windows\system32\MRT
2015-03-11 12:09:25 ----D---- C:\Windows\debug
2015-03-11 12:09:15 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 07:04:45 ----D---- C:\Windows\system32\catroot2
2015-03-09 06:40:27 ----D---- C:\Windows\twain_32
2015-03-08 19:36:32 ----D---- C:\Users\Rawmen\AppData\Roaming\uTorrent
2015-03-07 08:16:55 ----D---- C:\ProgramData
2015-02-26 16:51:23 ----D---- C:\Windows\system32\NDF
2015-02-24 03:17:24 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2012-02-01 31872]
R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-05-01 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-05-01 208416]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-10 557848]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2012-11-19 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2012-11-19 28216]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-01-13 139888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-01-31 564824]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-01-13 23664]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-05-01 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-05-15 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-05-15 423240]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-07-14 254528]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2010-12-03 31592]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2013-01-10 20328]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2013-10-23 454168]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-05-01 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-05-01 79184]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-05-15 85328]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-04-23 154272]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 risdxc;risdxc; C:\Windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
R3 5U877;USB Video Device; C:\Windows\system32\DRIVERS\5U877.sys [2011-03-05 166016]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-09-28 10697216]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-09-28 460288]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2012-04-01 594472]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-04-01 184872]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-06-22 1586848]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-02-01 39024]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-09 12289472]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-09-30 11523072]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2009-07-02 40512]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2012-05-30 34032]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-05-06 1439792]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 Klif;Klif; C:\Windows\System32\drivers\klif.sys []
S2 smihlp2;SMI Helper Driver (smihlp2); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder\SysInfoX64.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-09 12289472]
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 30208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-09-28 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-01 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-04-01 957216]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-09 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-11-19 14904]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-02-01 45928]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-24 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-01-27 40808]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2010-11-24 45496]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-01-27 59240]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-09 75064]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2010-12-03 114024]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2010-12-02 64440]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-01-29 2445816]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2010-12-03 116072]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-18 268976]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-14 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-03-05 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-01-10 1665832]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2013-01-10 1664296]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-01-13 47728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-16 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119677
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: NTB se zadrhává, je pomalý,...

#14 Příspěvek od Rudy »

OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Rawmen
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 07 črc 2013 16:30

Re: NTB se zadrhává, je pomalý,...

#15 Příspěvek od Rawmen »

Zatím se vše tváří, že běhá, tak jak běhat má. :wink:
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“