Prosim o kontrolu

Zpráva

mika666 · #1 Příspěvek od **mika666** » 23 bře 2015 09:08

Logfile of random's system information tool 1.10 (written by random/random)
Run by MAS at 2015-03-23 08:54:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 136 GB (20%) free of 692 GB
Total RAM: 3978 MB (36% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 39622144
\??\C:\windows\system32\conhost.exe "-1329903347-16633636077058767161494418202813204-2073911850-202119199-97996095
"C:\Program Files\AVAST Software\Avast_\AvastSvc.exe"
C:\windows\System32\spoolsv.exe
taskeng.exe {69FF2F8B-9C51-421A-A95D-9E4B978B73C4}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast_\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
c:\eISIS\servers\tomcat\bin\tomcat5.exe //RS//eISISTomcat
\??\C:\windows\system32\conhost.exe "13832927692250808217773592121011591808-161242488944792248-1922180903-995027664
"C:\Program Files (x86)\Firebird\bin\fbguard.exe" -s
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\OpenVPN\bin\openvpnserv.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\windows\SysWOW64\ssins.exe
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Firebird\bin\fbserver.exe" -s
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k bthsvcs
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-850326d2-6f25-4ce9-8ea3-1d67f3d220b8 -SystemEventPortName:HostProcess-a042171f-e1fc-4190-b0c1-e725f5db8c22 -IoCancelEventPortName:HostProcess-76080d6f-11c9-43b2-ac60-2e1495a973cc -NonStateChangingEventPortName:HostProcess-801ba276-3bb7-4d39-aef3-e080a6ff6cc8 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:dd88a20f-dfef-41be-9c52-3dc2581bb6a9 -DeviceGroupId:
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
"C:\Users\MAS\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\AVAST Software\Avast_\AvastUI.exe" /nogui
"C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast_\AvastUI.exe" --type=gpu-process --channel="5696.0.579975646\336995141" --no-sandbox --lang=en-US --log-file="C:\Users\MAS\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.2.2214)" --proxy-auto-detect --disable-gpu --disable-software-rasterizer --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.951.6.0 --lang=en-US --log-file="C:\Users\MAS\AppData\Roaming\AVAST Software\Avast\log\avastium.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (10.2.2214)" --proxy-auto-detect --disable-gpu --disable-software-rasterizer --no-sandbox /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7048.0.368040873\2057507197" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.951.6.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderNoUse/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_38/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="7048.3.1327372811\1470525628" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderNoUse/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_38/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="7048.4.2005149587\133563151" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderNoUse/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_38/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="7048.9.1799330347\345818765" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Bootstrap/GoogleNow/Enable/NewProfileManagement/NewAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderNoUse/PrerenderFromOmnibox/OmniboxPrerenderEnabled/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/On/SafeBrowsingIncidentReportingService/Enabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/group_01/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_38/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-accelerated-video-decode --channel="7048.12.983627096\1091499996" /prefetch:673131151
"C:\Users\MAS\Downloads\RSITx64.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5354-2D53-5045-7A786E7484D7}]
Shopping App by Ask - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport_x64.dll [2015-01-31 13720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast_\aswWebRepIE64.dll [2015-03-20 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5354-2D53-5045-7A786E7484D7}]
Shopping App by Ask - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll [2015-01-31 12184]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-01-19 51872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast_\aswWebRepIE.dll [2015-03-20 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
{4F524A2D-5354-2D53-5045-7A786E7484D7} - Shopping App by Ask - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport_x64.dll [2015-01-31 13720]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4F524A2D-5354-2D53-5045-7A786E7484D7} - Shopping App by Ask - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll [2015-01-31 12184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-01-19 1016992]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2012-01-19 800416]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-10-01 22065760]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
"Spybot-S&D Cleaning"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [2013-09-20 3666224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2015-02-14 1949592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackgroundContainer]
C:\windows\SysWOW64\Rundll32.exe [2009-07-14 44544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\MAS\AppData\Roaming\Seznam.cz\szninstall.exe [2012-09-13 1009288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\MAS\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2012-12-19 92296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\windows\system32\hkcmd.exe [2012-03-26 398616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPConnectionManager]
c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2012-03-15 184704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2012-03-14 15232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-03-01 56088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\windows\system32\igfxtray.exe [2012-03-26 170264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-05-26 152392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveSupport]
C:\Program Files (x86)\LiveSupport\LiveSupport.exe /noshow /log []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 1332296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
C:\Program Files (x86)\PDF Complete\pdfsty.exe [2012-03-07 684024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\windows\system32\igfxpers.exe [2012-03-26 439064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2012-03-14 319360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2012-09-13 1009288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-03-30 636032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-03-09 2887440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2012-03-05 1425408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-03-27 291608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2012-12-04 773728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe aml []
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-04-23 43848]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast_\AvastUI.exe [2015-03-20 5511352]
"ApnTBMon"=C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2015-02-14 1949592]

C:\Users\MAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\MAS\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-03-26 434688]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-23 08:54:36 ----D---- C:\Program Files\trend micro
2015-03-23 08:54:35 ----D---- C:\rsit
2015-03-22 15:31:06 ----D---- C:\Users\MAS\AppData\Roaming\Opera Software
2015-03-20 11:42:28 ----D---- C:\Program Files (x86)\ESET
2015-03-20 09:42:22 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2015-03-20 09:41:49 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2015-03-20 09:41:48 ----A---- C:\windows\system32\drivers\mwac.sys
2015-03-20 09:41:47 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-20 09:23:45 ----A---- C:\windows\system32\aswBoot.exe
2015-03-20 09:23:05 ----A---- C:\windows\avastSS.scr
2015-03-20 09:22:17 ----A---- C:\windows\system32\drivers\aswNdisFlt.sys
2015-03-18 18:36:48 ----D---- C:\ProgramData\1st EasySoft
2015-03-18 18:35:40 ----D---- C:\Program Files\1stEasySoft
2015-03-12 00:09:49 ----D---- C:\windows\Minidump
2015-03-10 21:38:09 ----A---- C:\windows\system32\atmfd.dll
2015-03-10 21:38:08 ----A---- C:\windows\SYSWOW64\dciman32.dll
2015-03-10 21:38:08 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-03-10 21:38:08 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-03-10 21:38:08 ----A---- C:\windows\system32\lpk.dll
2015-03-10 21:38:08 ----A---- C:\windows\system32\dciman32.dll
2015-03-10 21:38:08 ----A---- C:\windows\system32\atmlib.dll
2015-03-10 21:38:07 ----A---- C:\windows\SYSWOW64\lpk.dll
2015-03-10 21:38:07 ----A---- C:\windows\SYSWOW64\fontsub.dll
2015-03-10 21:38:07 ----A---- C:\windows\system32\fontsub.dll
2015-03-10 21:37:57 ----A---- C:\windows\SYSWOW64\blackbox.dll
2015-03-10 21:37:57 ----A---- C:\windows\system32\blackbox.dll
2015-03-10 21:37:56 ----A---- C:\windows\system32\drmv2clt.dll
2015-03-10 21:37:55 ----A---- C:\windows\SYSWOW64\drmv2clt.dll
2015-03-10 21:37:54 ----A---- C:\windows\system32\wmp.dll
2015-03-10 21:37:53 ----A---- C:\windows\system32\wmdrmsdk.dll
2015-03-10 21:37:52 ----A---- C:\windows\SYSWOW64\wmdrmsdk.dll
2015-03-10 21:37:52 ----A---- C:\windows\SYSWOW64\mf.dll
2015-03-10 21:37:52 ----A---- C:\windows\system32\ntoskrnl.exe
2015-03-10 21:37:51 ----A---- C:\windows\SYSWOW64\wmp.dll
2015-03-10 21:37:49 ----A---- C:\windows\system32\drmmgrtn.dll
2015-03-10 21:37:49 ----A---- C:\windows\system32\crypt32.dll
2015-03-10 21:37:48 ----A---- C:\windows\SYSWOW64\drmmgrtn.dll
2015-03-10 21:37:48 ----A---- C:\windows\system32\drivers\PEAuth.sys
2015-03-10 21:37:47 ----A---- C:\windows\SYSWOW64\crypt32.dll
2015-03-10 21:37:47 ----A---- C:\windows\system32\quartz.dll
2015-03-10 21:37:47 ----A---- C:\windows\system32\evr.dll
2015-03-10 21:37:46 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-03-10 21:37:45 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-03-10 21:37:45 ----A---- C:\windows\system32\cryptui.dll
2015-03-10 21:37:44 ----A---- C:\windows\SYSWOW64\evr.dll
2015-03-10 21:37:43 ----A---- C:\windows\system32\mfplat.dll
2015-03-10 21:37:42 ----A---- C:\windows\SYSWOW64\quartz.dll
2015-03-10 21:37:42 ----A---- C:\windows\system32\winresume.exe
2015-03-10 21:37:40 ----A---- C:\windows\SYSWOW64\cryptui.dll
2015-03-10 21:37:40 ----A---- C:\windows\system32\pcasvc.dll
2015-03-10 21:37:39 ----A---- C:\windows\SYSWOW64\mfplat.dll
2015-03-10 21:37:39 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-03-10 21:37:38 ----A---- C:\windows\SYSWOW64\cryptsp.dll
2015-03-10 21:37:38 ----A---- C:\windows\system32\mf.dll
2015-03-10 21:37:38 ----A---- C:\windows\system32\cryptsp.dll
2015-03-10 21:37:37 ----A---- C:\windows\system32\msscp.dll
2015-03-10 21:37:36 ----A---- C:\windows\system32\winload.exe
2015-03-10 21:37:35 ----A---- C:\windows\SYSWOW64\wintrust.dll
2015-03-10 21:37:35 ----A---- C:\windows\SYSWOW64\qdvd.dll
2015-03-10 21:37:35 ----A---- C:\windows\SYSWOW64\msscp.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\wintrust.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\msnetobj.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\cryptnet.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\ci.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\audiosrv.dll
2015-03-10 21:37:35 ----A---- C:\windows\system32\appidsvc.dll
2015-03-10 21:37:34 ----A---- C:\windows\SYSWOW64\cryptnet.dll
2015-03-10 21:37:34 ----A---- C:\windows\system32\srcore.dll
2015-03-10 21:37:34 ----A---- C:\windows\system32\rstrui.exe
2015-03-10 21:37:34 ----A---- C:\windows\system32\drivers\appid.sys
2015-03-10 21:37:34 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-03-10 21:37:34 ----A---- C:\windows\system32\audiodg.exe
2015-03-10 21:37:33 ----A---- C:\windows\SYSWOW64\msnetobj.dll
2015-03-10 21:37:33 ----A---- C:\windows\SYSWOW64\cryptsvc.dll
2015-03-10 21:37:33 ----A---- C:\windows\system32\AudioSes.dll
2015-03-10 21:37:32 ----A---- C:\windows\system32\qdvd.dll
2015-03-10 21:37:31 ----A---- C:\windows\system32\cryptsvc.dll
2015-03-10 21:37:27 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2015-03-10 21:37:27 ----A---- C:\windows\system32\pcadm.dll
2015-03-10 21:37:27 ----A---- C:\windows\system32\AudioEng.dll
2015-03-10 21:37:26 ----A---- C:\windows\system32\rrinstaller.exe
2015-03-10 21:37:24 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2015-03-10 21:37:24 ----A---- C:\windows\system32\appidpolicyconverter.exe
2015-03-10 21:37:23 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2015-03-10 21:37:23 ----A---- C:\windows\system32\smss.exe
2015-03-10 21:37:22 ----A---- C:\windows\SYSWOW64\mfps.dll
2015-03-10 21:37:22 ----A---- C:\windows\SYSWOW64\appidapi.dll
2015-03-10 21:37:22 ----A---- C:\windows\system32\msmmsp.dll
2015-03-10 21:37:22 ----A---- C:\windows\system32\mfps.dll
2015-03-10 21:37:21 ----A---- C:\windows\system32\pcawrk.exe
2015-03-10 21:37:21 ----A---- C:\windows\system32\appidapi.dll
2015-03-10 21:37:20 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2015-03-10 21:37:20 ----A---- C:\windows\system32\pcalua.exe
2015-03-10 21:37:20 ----A---- C:\windows\system32\mfpmp.exe
2015-03-10 21:37:19 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-03-10 21:37:19 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2015-03-10 21:37:19 ----A---- C:\windows\system32\srclient.dll
2015-03-10 21:37:19 ----A---- C:\windows\system32\setbcdlocale.dll
2015-03-10 21:37:19 ----A---- C:\windows\system32\EncDump.dll
2015-03-10 21:37:19 ----A---- C:\windows\system32\csrsrv.dll
2015-03-10 21:37:17 ----A---- C:\windows\system32\appidcertstorecheck.exe
2015-03-10 21:37:14 ----A---- C:\windows\SYSWOW64\spwmp.dll
2015-03-10 21:37:14 ----A---- C:\windows\system32\spwmp.dll
2015-03-10 21:37:14 ----A---- C:\windows\system32\dxmasf.dll
2015-03-10 21:37:13 ----A---- C:\windows\SYSWOW64\dxmasf.dll
2015-03-10 21:37:12 ----A---- C:\windows\system32\pcaevts.dll
2015-03-10 21:37:11 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-03-10 21:37:11 ----A---- C:\windows\system32\apisetschema.dll
2015-03-10 21:37:09 ----A---- C:\windows\SYSWOW64\wmploc.DLL
2015-03-10 21:37:09 ----A---- C:\windows\system32\wmploc.DLL
2015-03-10 21:37:07 ----A---- C:\windows\SYSWOW64\mferror.dll
2015-03-10 21:37:07 ----A---- C:\windows\system32\mferror.dll
2015-03-10 21:36:19 ----A---- C:\windows\system32\ubpm.dll
2015-03-10 21:36:18 ----A---- C:\windows\SYSWOW64\ubpm.dll
2015-03-10 21:36:17 ----A---- C:\windows\system32\shell32.dll
2015-03-10 21:36:16 ----A---- C:\windows\SYSWOW64\shell32.dll
2015-03-10 21:36:10 ----A---- C:\windows\system32\schannel.dll
2015-03-10 21:36:10 ----A---- C:\windows\system32\lsasrv.dll
2015-03-10 21:36:10 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-03-10 21:36:10 ----A---- C:\windows\system32\drivers\cng.sys
2015-03-10 21:36:09 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-03-10 21:36:09 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-03-10 21:36:09 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-03-10 21:36:08 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-03-10 21:36:08 ----A---- C:\windows\system32\wdigest.dll
2015-03-10 21:36:08 ----A---- C:\windows\system32\ncrypt.dll
2015-03-10 21:36:08 ----A---- C:\windows\system32\msv1_0.dll
2015-03-10 21:36:08 ----A---- C:\windows\system32\kerberos.dll
2015-03-10 21:36:07 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-03-10 21:36:07 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-03-10 21:36:07 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-03-10 21:36:07 ----A---- C:\windows\system32\TSpkg.dll
2015-03-10 21:36:07 ----A---- C:\windows\system32\sspicli.dll
2015-03-10 21:36:07 ----A---- C:\windows\system32\lsass.exe
2015-03-10 21:36:07 ----A---- C:\windows\system32\auditpol.exe
2015-03-10 21:36:06 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-03-10 21:36:06 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-03-10 21:36:06 ----A---- C:\windows\system32\sspisrv.dll
2015-03-10 21:36:06 ----A---- C:\windows\system32\secur32.dll
2015-03-10 21:36:06 ----A---- C:\windows\system32\credssp.dll
2015-03-10 21:36:05 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-03-10 21:36:05 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-03-10 21:36:04 ----A---- C:\windows\system32\adtschema.dll
2015-03-10 21:36:03 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-03-10 21:36:03 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-03-10 21:36:03 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-03-10 21:36:03 ----A---- C:\windows\system32\msobjs.dll
2015-03-10 21:36:03 ----A---- C:\windows\system32\msaudite.dll
2015-03-10 21:35:29 ----A---- C:\windows\SYSWOW64\msctf.dll
2015-03-10 21:35:29 ----A---- C:\windows\system32\msctf.dll
2015-03-10 21:35:27 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2015-03-10 21:35:27 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-03-10 21:35:23 ----A---- C:\windows\system32\win32k.sys
2015-03-10 21:35:20 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-03-10 21:35:19 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-03-10 21:35:19 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-03-10 21:35:19 ----A---- C:\windows\system32\ieetwcollector.exe
2015-03-10 21:35:18 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-03-10 21:35:18 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-03-10 21:35:17 ----A---- C:\windows\system32\iernonce.dll
2015-03-10 21:35:17 ----A---- C:\windows\system32\ie4uinit.exe
2015-03-10 21:35:16 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-03-10 21:35:16 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-10 21:35:16 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-03-10 21:35:15 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-03-10 21:35:15 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-03-10 21:35:15 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-10 21:35:14 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-03-10 21:35:13 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-03-10 21:35:12 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-03-10 21:35:12 ----A---- C:\windows\system32\iedkcs32.dll
2015-03-10 21:35:11 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-03-10 21:35:11 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-03-10 21:35:11 ----A---- C:\windows\system32\urlmon.dll
2015-03-10 21:35:11 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-03-10 21:35:10 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-03-10 21:35:10 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-03-10 21:35:09 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-03-10 21:35:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-03-10 21:35:08 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-03-10 21:35:08 ----A---- C:\windows\system32\msfeeds.dll
2015-03-10 21:35:08 ----A---- C:\windows\system32\dxtrans.dll
2015-03-10 21:35:07 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-03-10 21:35:07 ----A---- C:\windows\system32\iesetup.dll
2015-03-10 21:35:07 ----A---- C:\windows\system32\ieapfltr.dll
2015-03-10 21:35:05 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-03-10 21:35:05 ----A---- C:\windows\system32\iertutil.dll
2015-03-10 21:35:04 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-03-10 21:35:04 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-03-10 21:35:03 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-03-10 21:35:03 ----A---- C:\windows\system32\jsproxy.dll
2015-03-10 21:35:03 ----A---- C:\windows\system32\ieUnatt.exe
2015-03-10 21:35:01 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-03-10 21:34:59 ----A---- C:\windows\system32\ieui.dll
2015-03-10 21:34:59 ----A---- C:\windows\system32\ieframe.dll
2015-03-10 21:34:59 ----A---- C:\windows\system32\dxtmsft.dll
2015-03-10 21:34:58 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-03-10 21:34:58 ----A---- C:\windows\system32\mshtmled.dll
2015-03-10 21:34:58 ----A---- C:\windows\system32\jscript9diag.dll
2015-03-10 21:34:57 ----A---- C:\windows\system32\wininet.dll
2015-03-10 21:34:57 ----A---- C:\windows\system32\vbscript.dll
2015-03-10 21:34:57 ----A---- C:\windows\system32\jscript9.dll
2015-03-10 21:34:55 ----A---- C:\windows\system32\MshtmlDac.dll
2015-03-10 21:34:54 ----A---- C:\windows\system32\msrating.dll
2015-03-10 21:34:53 ----A---- C:\windows\system32\mshtml.dll
2015-03-10 21:33:39 ----A---- C:\windows\system32\WMPhoto.dll
2015-03-10 21:33:38 ----A---- C:\windows\SYSWOW64\WMPhoto.dll
2015-03-03 23:00:56 ----A---- C:\windows\SYSWOW64\wdi.dll
2015-03-03 23:00:56 ----A---- C:\windows\system32\wdi.dll
2015-03-03 23:00:56 ----A---- C:\windows\system32\powertracker.dll
2015-03-03 23:00:56 ----A---- C:\windows\system32\perftrack.dll

======List of files/folders modified in the last 1 month======

2015-03-23 08:54:36 ----D---- C:\Program Files
2015-03-23 08:52:20 ----D---- C:\windows\Temp
2015-03-23 08:48:42 ----D---- C:\Users\MAS\AppData\Roaming\Skype
2015-03-23 08:48:18 ----D---- C:\Users\MAS\AppData\Roaming\Dropbox
2015-03-23 08:48:17 ----D---- C:\Users\MAS\AppData\Roaming\DropboxMaster
2015-03-23 08:46:50 ----A---- C:\windows\SYSWOW64\log.txt
2015-03-23 08:44:37 ----D---- C:\ProgramData\PDFC
2015-03-23 08:43:50 ----D---- C:\windows\system32\config
2015-03-23 08:34:09 ----D---- C:\windows\Prefetch
2015-03-22 15:40:01 ----D---- C:\Users\MAS\AppData\Roaming\vlc
2015-03-20 21:22:34 ----D---- C:\windows\system32\drivers
2015-03-20 21:22:34 ----D---- C:\windows\diagnostics
2015-03-20 16:24:10 ----D---- C:\windows\SysWOW64
2015-03-20 16:08:24 ----D---- C:\ProgramData\fpkffeccnggojmpnacjdbjibimkoegab
2015-03-20 11:42:28 ----RD---- C:\Program Files (x86)
2015-03-20 11:36:48 ----A---- C:\windows\wininit.ini
2015-03-20 10:55:18 ----D---- C:\ProgramData\ICQ
2015-03-20 10:55:10 ----D---- C:\windows\system32\Tasks
2015-03-20 10:05:09 ----D---- C:\windows\system32\drivers\etc
2015-03-20 09:50:18 ----D---- C:\windows\inf
2015-03-20 09:42:06 ----D---- C:\Users\MAS\AppData\Roaming\Malwarebytes
2015-03-20 09:41:47 ----D---- C:\ProgramData\Malwarebytes
2015-03-20 09:41:45 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2015-03-20 09:39:14 ----SHD---- C:\System Volume Information
2015-03-20 09:28:46 ----D---- C:\Program Files\CCleaner
2015-03-20 09:27:21 ----D---- C:\windows\system32\DriverStore
2015-03-20 09:23:45 ----D---- C:\windows\System32
2015-03-20 09:23:44 ----D---- C:\Windows
2015-03-18 18:36:48 ----HD---- C:\ProgramData
2015-03-18 15:49:06 ----D---- C:\Program Files (x86)\Opera
2015-03-13 09:33:20 ----D---- C:\windows\winsxs
2015-03-12 22:40:08 ----SHD---- C:\windows\Installer
2015-03-12 22:40:07 ----SHD---- C:\Config.Msi
2015-03-12 22:40:07 ----D---- C:\Program Files (x86)\Common Files
2015-03-12 01:08:27 ----D---- C:\windows\rescache
2015-03-11 09:17:21 ----D---- C:\windows\SYSWOW64\Dism
2015-03-11 09:17:21 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-03-11 09:17:21 ----D---- C:\Program Files\Windows Media Player
2015-03-11 09:17:21 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-11 09:17:16 ----D---- C:\windows\system32\Dism
2015-03-11 09:17:15 ----D---- C:\windows\system32\cs-CZ
2015-03-11 09:17:14 ----D---- C:\windows\system32\en-US
2015-03-11 09:17:08 ----D---- C:\windows\system32\CodeIntegrity
2015-03-11 09:17:08 ----D---- C:\windows\system32\Boot
2015-03-11 09:16:52 ----D---- C:\Program Files\Internet Explorer
2015-03-11 09:16:50 ----D---- C:\windows\SYSWOW64\en-US
2015-03-11 09:16:43 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 08:58:29 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 08:58:07 ----A---- C:\windows\win.ini
2015-03-11 08:46:03 ----D---- C:\windows\system32\MRT
2015-03-11 08:31:40 ----A---- C:\windows\system32\MRT.exe
2015-03-10 21:33:27 ----D---- C:\windows\system32\catroot2
2015-03-10 08:10:45 ----D---- C:\windows\system32\catroot
2015-03-10 06:59:50 ----D---- C:\Program Files\Microsoft Security Client
2015-03-10 06:59:18 ----D---- C:\Program Files (x86)\Microsoft Security Client
2015-03-09 23:04:20 ----D---- C:\ProgramData\Oracle
2015-03-04 03:04:19 ----D---- C:\windows\tracing
2015-03-03 18:12:42 ----D---- C:\windows\system32\wbem
2015-03-03 18:11:49 ----D---- C:\windows\Tasks
2015-03-03 18:11:48 ----D---- C:\windows\system32\NDF
2015-03-03 18:11:42 ----D---- C:\ProgramData\Atheros
2015-03-03 18:10:54 ----D---- C:\windows\registration
2015-03-03 14:17:35 ----N---- C:\windows\system32\MpSigStub.exe
2015-02-28 16:16:41 ----A---- C:\windows\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\windows\system32\DRIVERS\amdkmpfd.sys [2012-03-20 32896]
R0 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys [2015-03-20 449896]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-03-20 65736]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-03-20 268640]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2012-03-16 30488]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\drivers\iaStor.sys [2012-02-02 568600]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\windows\system32\DRIVERS\iusb3hcs.sys [2012-03-27 19224]
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2014-11-15 274696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2015-03-20 28144]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-03-20 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-03-20 1047320]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-03-20 441728]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-03-20 29168]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-03-20 88408]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-03-20 136752]
R2 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 124560]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2012-03-16 43800]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2012-03-29 10859008]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2012-03-29 328704]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2012-02-03 42816]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-01-19 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2012-03-21 2808832]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-01-19 339616]
R3 btath_avdt;Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-01-19 110752]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2012-01-19 30368]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2012-01-19 167584]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-01-19 68256]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2012-01-19 280992]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-01-19 550560]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2012-04-17 80384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2011-07-18 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2012-03-26 14748416]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\iusb3hub.sys [2012-03-27 356632]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\windows\system32\DRIVERS\iusb3xhc.sys [2012-03-27 789272]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2012-02-28 173656]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\HECIx64.sys [2011-11-09 60184]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-11-24 648808]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2012-03-30 1863680]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2012-03-05 536064]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-03-09 425232]
R3 tap0901;TAP-Windows Adapter V9; C:\windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-03-26 14748416]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys [2013-08-06 23040]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RimUsb;zařízení BlackBerry Smartphone; C:\windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast_\ng\vbox\VBoxAswDrv.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2012-03-29 235520]
R2 APNMCP;Ask Update Service; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [2015-01-31 177560]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-01-19 106144]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast_\AvastSvc.exe [2015-03-20 343336]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast_\afwServ.exe [2015-03-20 107448]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 eISISTomcat;eISIS Tomcat; c:\eISIS\servers\tomcat\bin\tomcat5.exe [2012-12-20 57344]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbguard.exe [2007-12-12 65536]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2012-03-14 152992]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-10 86072]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2012-03-14 365440]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2012-03-16 33560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-03-01 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-03-07 629984]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-03-28 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-28 165144]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-28 277784]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 23784]
R2 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2013-08-22 37176]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2012-03-07 1134584]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 ssinstall;SInstalátor; C:\windows\SysWOW64\ssins.exe [2013-10-07 2324216]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-03-05 314880]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2013-02-19 2417504]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2012-02-03 498352]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-28 363800]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2012-03-20 2694224]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbserver.exe [2007-12-12 1531989]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-03-14 994176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 eISISPostgreSQL;eISIS PostgreSQL Database Server; c:\eISIS\servers\postgresql\bin\pg_ctl.exe [2012-12-20 79948]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast_\ng\vbox\AvastVBoxSVC.exe []
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-03-26 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-17 116648]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2012-03-15 1420160]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-26 641352]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 366512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2012-03-09 117552]

-----------------EOF-----------------

#2 Příspěvek od **JaRon** » 23 bře 2015 09:14

odinstaluj SpyBot a vycisti PC s ADWCleanerom

mika666 · #3 Příspěvek od **mika666** » 23 bře 2015 09:36

# AdwCleaner v4.113 - Logfile created 23/03/2015 at 09:31:04
# Updated 22/03/2015 by Xplode
# Database : 2015-03-23.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : MAS - MAS-HP
# Running from : C:\Users\MAS\Downloads\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\ProgramData\saveNshaaraee
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkypEmoticons
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\saveNshaaraee
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Users\MAS\AppData\Local\Temp\apn
Folder Deleted : C:\Users\MAS\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\MAS\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\MAS\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\MAS\AppData\Roaming\SkypEmoticons
Folder Deleted : C:\Users\MAS1\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\MAS1\AppData\LocalLow\Conduit
Folder Deleted : C:\ProgramData\fpkffeccnggojmpnacjdbjibimkoegab
Folder Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcgehgmoaacallmcabfjiijalplgdndp
Folder Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\phnnmbblgalfconimkenjcgadaojpale
File Deleted : C:\Users\MAS\AppData\Roaming\LiveSupport.exe_log.txt
File Deleted : C:\Users\MAS\AppData\Roaming\regsvr32.exe_log.txt
File Deleted : C:\Users\MAS\Desktop\LiveSupport.lnk
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage-journal
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bgjpfhpjcgdppjbgnpnjllokbmcdllig_0.localstorage-journal
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage-journal
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_blmojkbhnkkphngknkmgccmlenfaelkd_0.localstorage-journal
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage
File Deleted : C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage-journal
File Deleted : C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_olfeabkoenfaoljndfecamgilllcpiak_0.localstorage-journal

***** [ Scheduled tasks ] *****

Task Deleted : BackgroundContainer Startup Task

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{AC329328-7EC4-4C34-B672-0A2B90CB9B00}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEA63863-87BC-4DCA-A5B5-EB97E3B04806}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{39F695C4-8C4E-43B5-A4CF-C7112DC034A3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\LiveSupport
Key Deleted : HKCU\Software\usyndication.com
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\ICQ\ICQToolbar
Key Deleted : HKLM\SOFTWARE\SP Global
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SkypEmoticons_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5354-2D53-5045-A758B70C1801}
Key Deleted : [x64] HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v39.0.2171.71

[C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fpkffeccnggojmpnacjdbjibimkoegab
[C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : lcgehgmoaacallmcabfjiijalplgdndp
[C:\Users\MAS\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : phnnmbblgalfconimkenjcgadaojpale
[C:\Users\MAS1\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : fpkffeccnggojmpnacjdbjibimkoegab
[C:\Users\MAS\AppData\Roaming\Opera Software\Opera Stable\Web Data] - Deleted [Search Provider] : hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd&icid=opera

-\\ Opera v28.0.1750.48

[C:\Users\MAS\AppData\Roaming\Opera Software\Opera Stable\Web Data] - Deleted [Search Provider] : hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd&icid=opera

*************************

AdwCleaner[R0].txt - [10656 bytes] - [23/03/2015 09:25:57]
AdwCleaner[S0].txt - [8988 bytes] - [23/03/2015 09:31:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9047 bytes] ##########

#4 Příspěvek od **JaRon** » 23 bře 2015 09:57

ak nie su problemy, hotovo

mika666 · #5 Příspěvek od **mika666** » 23 bře 2015 10:00

otestuju
Diky moc

#6 Příspěvek od **JaRon** » 23 bře 2015 11:01

zamalicko

VIRY.CZ

Prosim o kontrolu

Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu