Zdravím, prosím o radu ohledně problému s internetem, zhruba od začátku týdne mám problémy s prohlížením některých stránek na internetu (prvně jsem to zaregistroval na FB, ale problémy jsou i s jinými stránkami). Stránky se vůbec nenačtou, nebo se zobrazí jen část obsahu jen jako text a html odkazy. Většina ostatních stránek jde bez problémů.
Používám firefox, ale stejný problém je i v jiných prohlížečích a na druhém počítači připojeném přes stejný router (Tenda W311R+ Wireless-N Router). Router jsem zkoušel restartoval, ale nepomohlo to. Jinak s funkčností počítače nejsou žádné očividné problémy a antivir nehlásí infekce.
Ještě poznámka, u FB to extrémně dlouho zamrzne na vyhledávání fbstatic-a.akamaihd.net
Předem díky za jakoukoli radu.
Tady je log z RSIT (kvůli rozsahu zprávy jsem musel vymazat ze seznamu vytvořených složek a souborů věci starší než 11. březen)
Logfile of random's system information tool 1.10 (written by random/random)
Run by Johnny at 2015-03-25 17:56:35
Microsoft Windows 8.1
System drive C: has 464 GB (50%) free of 936 GB
Total RAM: 8083 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:56:45, on 25. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Avast\AvastUI.exe
C:\Games\Steam\Steam.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Windows\syswow64\wwahost.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Windows\SysWOW64\WerFault.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: McAfee Application Installer Cleanup (0053851417525678) (0053851417525678mcinstcleanup) - McAfee, Inc. - C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10071 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
dashost.exe {28b3b6e6-cb78-4f21-a75a113529573170}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
taskhostex.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\Explorer.EXE
\??\C:\Windows\system32\conhost.exe 0x4
igfxHK.exe
C:\Windows\System32\skydrive.exe -Embedding
igfxTray.exe
"C:\Windows\system32\igfxEM.exe" -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Users\Johnny\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Users\Johnny\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Games\Steam\Steam.exe" "-silent"
"C:\Games\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan Gajdoš\AppData\Local\Steam\htmlcache" -steampid 1844 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\\ccd.exe" "C:\Users\Johnny\AppData\Local\AOP SDK\acer infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 428 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
taskhost.exe
C:\Windows\splwow64.exe 8192
"C:\Program Files\Total Commander\TOTALCMD64.EXE"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Games\Steam\bin\steamwebhelper.exe" --type=renderer --disable-accelerated-video-decode --disable-delegated-renderer --disable-gpu-compositing --disable-threaded-compositing --enable-pinch --enable-software-compositing --no-sandbox --enable-direct-write --lang=en-US --lang=en-US --product-version="Valve Steam Client" --enable-pinch --disable-accelerated-compositing --disable-gpu-compositing --channel="4212.0.1684119064\1378644952" /prefetch:673131151
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
C:\Windows\SysWOW64\WerFault.exe -u -p 4036 -s 2192
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
taskeng.exe {C3EA5E7E-285C-4C6A-83A1-A8915CEF4030}
"C:\Program Files (x86)\Acer\Live Updater\updater.exe" -auto
"C:\Users\Johnny\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Johnny\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [2015-03-19 10821448]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-25 16:49:03 ----D---- C:\rsit
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-25 11:46:11 ----SHD---- C:\Config.Msi
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Johnny\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
======List of files/folders modified in the last 1 month======
2015-03-25 17:56:36 ----D---- C:\Windows\Temp
2015-03-25 17:54:16 ----D---- C:\Windows\Prefetch
2015-03-25 17:04:34 ----D---- C:\Windows\Inf
2015-03-25 17:00:00 ----D---- C:\Windows\system32\sru
2015-03-25 16:49:03 ----RD---- C:\Program Files
2015-03-25 14:30:34 ----D---- C:\Users\Johnny\AppData\Roaming\vlc
2015-03-25 12:41:53 ----D---- C:\Windows\Microsoft.NET
2015-03-25 12:39:42 ----RSD---- C:\Windows\assembly
2015-03-25 11:51:42 ----D---- C:\Windows\system32\Tasks
2015-03-25 11:51:34 ----SHD---- C:\Windows\Installer
2015-03-25 11:51:34 ----D---- C:\Program Files (x86)\Acer
2015-03-25 11:31:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-25 07:32:18 ----D---- C:\Windows\system32\config
2015-03-24 14:27:46 ----RD---- C:\Windows\System32
2015-03-24 14:22:29 ----RD---- C:\Program Files (x86)
2015-03-24 14:20:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:19:15 ----SHD---- C:\System Volume Information
2015-03-24 14:17:42 ----D---- C:\Windows\WinSxS
2015-03-24 14:17:11 ----D---- C:\Windows
2015-03-24 14:14:35 ----D---- C:\Windows\system32\drivers
2015-03-24 14:14:35 ----D---- C:\Program Files\Avast
2015-03-24 14:06:46 ----D---- C:\Windows\MediaViewer
2015-03-24 14:06:45 ----D---- C:\Windows\SysWOW64
2015-03-24 14:06:45 ----D---- C:\Windows\Camera
2015-03-24 14:06:44 ----D---- C:\Windows\FileManager
2015-03-24 14:06:43 ----RD---- C:\Windows\ToastData
2015-03-24 14:06:21 ----D---- C:\Program Files\Windows Mail
2015-03-24 14:06:18 ----D---- C:\Program Files\Windows Multimedia Platform
2015-03-24 14:06:18 ----D---- C:\Program Files\Internet Explorer
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Portable Devices
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Media Player
2015-03-24 14:06:16 ----D---- C:\Program Files\Windows Journal
2015-03-24 14:06:15 ----D---- C:\Program Files\Windows Photo Viewer
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\oobe
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\migration
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\Com
2015-03-24 14:06:13 ----D---- C:\Windows\servicing
2015-03-24 14:06:13 ----D---- C:\Program Files\Common Files\System
2015-03-24 14:06:10 ----D---- C:\Windows\SYSWOW64\setup
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\sppui
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\migwiz
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-24 14:04:45 ----RD---- C:\Windows\ImmersiveControlPanel
2015-03-24 14:04:45 ----D---- C:\Windows\twain_32
2015-03-24 14:04:45 ----D---- C:\Windows\system32\en-US
2015-03-24 14:04:45 ----D---- C:\Windows\system32\Com
2015-03-24 14:04:45 ----D---- C:\Windows\IME
2015-03-24 14:04:44 ----D---- C:\Windows\system32\Sysprep
2015-03-24 14:04:44 ----D---- C:\Windows\system32\oobe
2015-03-24 14:04:44 ----D---- C:\Windows\system32\migration
2015-03-24 14:04:39 ----D---- C:\Windows\system32\setup
2015-03-24 14:04:38 ----D---- C:\Windows\system32\cs-CZ
2015-03-24 14:04:37 ----D---- C:\Windows\system32\sppui
2015-03-24 14:04:35 ----D---- C:\Windows\system32\WinBioPlugIns
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\en-US
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-03-24 14:04:33 ----D---- C:\Windows\system32\wbem
2015-03-24 14:04:26 ----SD---- C:\Windows\system32\dsc
2015-03-24 14:04:26 ----D---- C:\Windows\system32\SystemResetPlatform
2015-03-24 14:04:26 ----D---- C:\Windows\system32\migwiz
2015-03-24 14:04:26 ----D---- C:\Windows\system32\Dism
2015-03-24 14:02:27 ----D---- C:\Windows\apppatch
2015-03-24 14:02:26 ----D---- C:\Program Files (x86)\Windows Mail
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-24 14:02:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-03-24 14:02:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-24 14:01:57 ----D---- C:\Program Files\WindowsPowerShell
2015-03-24 14:01:46 ----D---- C:\Windows\system32\DriverStore
2015-03-24 14:01:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-03-21 14:01:21 ----D---- C:\ProgramData\Oracle
2015-03-21 13:40:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-21 13:40:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 13:40:10 ----D---- C:\Program Files (x86)\Java
2015-03-21 13:07:05 ----D---- C:\Games
2015-03-20 13:12:40 ----D---- C:\Windows\LiveKernelReports
2015-03-18 11:19:36 ----HD---- C:\ProgramData
2015-03-18 11:19:29 ----D---- C:\Windows\Help
2015-03-18 11:19:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-18 11:19:13 ----D---- C:\ProgramData\NVIDIA Corporation
2015-03-14 11:59:42 ----D---- C:\Windows\AppReadiness
2015-03-14 11:59:41 ----HD---- C:\Program Files\WindowsApps
2015-03-13 18:22:59 ----D---- C:\Windows\rescache
2015-03-12 12:58:04 ----D---- C:\Windows\CbsTemp
2015-03-12 12:56:52 ----SH---- C:\Windows\system32\desktop.ini
2015-03-12 12:55:25 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2015-03-12 12:55:24 ----A---- C:\Windows\system32\msclmd.dll
2015-03-11 20:33:58 ----D---- C:\Windows\system32\catroot2
2015-03-11 11:21:30 ----D---- C:\Program Files\Windows Defender
2015-03-11 11:21:30 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 11:21:29 ----D---- C:\Windows\WinStore
2015-03-11 08:54:50 ----D---- C:\Windows\system32\MRT
2015-03-11 08:46:50 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-24 271200]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-24 442264]
R1 dtsoftbus01;@oem33.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-12-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-24 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-24 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-24 273824]
R3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
R3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
R3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
R3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
R3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-03-13 10262160]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;@oem31.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem14.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-04-02 476888]
R3 SynRMIHID;@oem13.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast\AvastSvc.exe [2015-03-24 343336]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-12 2840832]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-21 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-24 4030800]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-06 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-03-22 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-03-22 449768]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-03-24 836288]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
S2 0053851417525678mcinstcleanup;McAfee Application Installer Cleanup (0053851417525678); C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE [2014-03-13 836168]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-25 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-21 279024]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-21 148080]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problém s některými stránkami na netu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Odkaz mi nefunguje (hlášení "server nenalezen"), můžu použít AdwCleaner z těchhle stránek http://www.bleepingcomputer.com/download/adwcleaner/ ?
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Můžete, je to totožné.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Provedl jsem, vše (při restartu se spustil naplánovaný avast test po restartu, kvůli času jsem ho stornoval, jestli to může mít vliv na výsledek).
Log je zde, internet zatím bez zlepšení
# AdwCleaner v4.113 - Logfile created 25/03/2015 at 19:50:52
# Updated 22/03/2015 by Xplode
# Database : 2015-03-22.2 [Local]
# Operating system : Windows 8.1 (x64)
# Username : Johnny - ACER-PC
# Running from : C:\Users\Johnny\Desktop\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v36.0.4 (x86 cs)
*************************
AdwCleaner[R0].txt - [994 bytes] - [25/03/2015 19:30:02]
AdwCleaner[R1].txt - [1052 bytes] - [25/03/2015 19:49:35]
AdwCleaner[S0].txt - [950 bytes] - [25/03/2015 19:50:52]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1008 bytes] ##########
Log je zde, internet zatím bez zlepšení
# AdwCleaner v4.113 - Logfile created 25/03/2015 at 19:50:52
# Updated 22/03/2015 by Xplode
# Database : 2015-03-22.2 [Local]
# Operating system : Windows 8.1 (x64)
# Username : Johnny - ACER-PC
# Running from : C:\Users\Johnny\Desktop\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v36.0.4 (x86 cs)
*************************
AdwCleaner[R0].txt - [994 bytes] - [25/03/2015 19:30:02]
AdwCleaner[R1].txt - [1052 bytes] - [25/03/2015 19:49:35]
AdwCleaner[S0].txt - [950 bytes] - [25/03/2015 19:50:52]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1008 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Opět bez záznamů z 11.3. a starších, kdyby byly relevantní, rozdělím příspěvek
Logfile of random's system information tool 1.10 (written by random/random)
Run by Johnny at 2015-03-25 20:47:36
Microsoft Windows 8.1
System drive C: has 464 GB (50%) free of 936 GB
Total RAM: 8083 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:38, on 25. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Games\Steam\Steam.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\VLC\vlc.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: McAfee Application Installer Cleanup (0053851417525678) (0053851417525678mcinstcleanup) - McAfee, Inc. - C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9905 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
C:\Windows\Explorer.EXE
taskhostex.exe
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
dashost.exe {27659233-67e2-4582-b63adce1d61d8cba}
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
ngservice.exe pipeserver
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
igfxHK.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
igfxTray.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Windows\system32\igfxEM.exe" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Games\Steam\Steam.exe" -silent
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Johnny\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 372 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Games\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan Gajdoš\AppData\Local\Steam\htmlcache" -steampid 2520 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\VLC\vlc.exe" --started-from-file "C:\Users\Johnny\Desktop\Game.Of.Thrones.S01E05.mp4"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Johnny\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\rsit
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-25 11:46:11 ----SHD---- C:\Config.Msi
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Johnny\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
======List of files/folders modified in the last 1 month======
2015-03-25 20:16:21 ----D---- C:\Users\Johnny\AppData\Roaming\vlc
2015-03-25 20:08:45 ----D---- C:\Windows\Temp
2015-03-25 20:02:03 ----D---- C:\Windows\Prefetch
2015-03-25 20:00:13 ----D---- C:\Windows\system32\sru
2015-03-25 17:04:34 ----D---- C:\Windows\Inf
2015-03-25 16:49:03 ----RD---- C:\Program Files
2015-03-25 12:41:53 ----D---- C:\Windows\Microsoft.NET
2015-03-25 12:39:42 ----RSD---- C:\Windows\assembly
2015-03-25 11:51:42 ----D---- C:\Windows\system32\Tasks
2015-03-25 11:51:34 ----SHD---- C:\Windows\Installer
2015-03-25 11:51:34 ----D---- C:\Program Files (x86)\Acer
2015-03-25 11:31:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-25 07:32:18 ----D---- C:\Windows\system32\config
2015-03-24 14:27:46 ----RD---- C:\Windows\System32
2015-03-24 14:22:29 ----RD---- C:\Program Files (x86)
2015-03-24 14:20:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:19:15 ----SHD---- C:\System Volume Information
2015-03-24 14:17:42 ----D---- C:\Windows\WinSxS
2015-03-24 14:17:11 ----D---- C:\Windows
2015-03-24 14:14:35 ----D---- C:\Windows\system32\drivers
2015-03-24 14:14:35 ----D---- C:\Program Files\Avast
2015-03-24 14:06:46 ----D---- C:\Windows\MediaViewer
2015-03-24 14:06:45 ----D---- C:\Windows\SysWOW64
2015-03-24 14:06:45 ----D---- C:\Windows\Camera
2015-03-24 14:06:44 ----D---- C:\Windows\FileManager
2015-03-24 14:06:43 ----RD---- C:\Windows\ToastData
2015-03-24 14:06:21 ----D---- C:\Program Files\Windows Mail
2015-03-24 14:06:18 ----D---- C:\Program Files\Windows Multimedia Platform
2015-03-24 14:06:18 ----D---- C:\Program Files\Internet Explorer
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Portable Devices
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Media Player
2015-03-24 14:06:16 ----D---- C:\Program Files\Windows Journal
2015-03-24 14:06:15 ----D---- C:\Program Files\Windows Photo Viewer
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\oobe
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\migration
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\Com
2015-03-24 14:06:13 ----D---- C:\Windows\servicing
2015-03-24 14:06:13 ----D---- C:\Program Files\Common Files\System
2015-03-24 14:06:10 ----D---- C:\Windows\SYSWOW64\setup
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\sppui
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\migwiz
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-24 14:04:45 ----RD---- C:\Windows\ImmersiveControlPanel
2015-03-24 14:04:45 ----D---- C:\Windows\twain_32
2015-03-24 14:04:45 ----D---- C:\Windows\system32\en-US
2015-03-24 14:04:45 ----D---- C:\Windows\system32\Com
2015-03-24 14:04:45 ----D---- C:\Windows\IME
2015-03-24 14:04:44 ----D---- C:\Windows\system32\Sysprep
2015-03-24 14:04:44 ----D---- C:\Windows\system32\oobe
2015-03-24 14:04:44 ----D---- C:\Windows\system32\migration
2015-03-24 14:04:39 ----D---- C:\Windows\system32\setup
2015-03-24 14:04:38 ----D---- C:\Windows\system32\cs-CZ
2015-03-24 14:04:37 ----D---- C:\Windows\system32\sppui
2015-03-24 14:04:35 ----D---- C:\Windows\system32\WinBioPlugIns
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\en-US
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-03-24 14:04:33 ----D---- C:\Windows\system32\wbem
2015-03-24 14:04:26 ----SD---- C:\Windows\system32\dsc
2015-03-24 14:04:26 ----D---- C:\Windows\system32\SystemResetPlatform
2015-03-24 14:04:26 ----D---- C:\Windows\system32\migwiz
2015-03-24 14:04:26 ----D---- C:\Windows\system32\Dism
2015-03-24 14:02:27 ----D---- C:\Windows\apppatch
2015-03-24 14:02:26 ----D---- C:\Program Files (x86)\Windows Mail
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-24 14:02:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-03-24 14:02:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-24 14:01:57 ----D---- C:\Program Files\WindowsPowerShell
2015-03-24 14:01:46 ----D---- C:\Windows\system32\DriverStore
2015-03-24 14:01:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-03-21 14:01:21 ----D---- C:\ProgramData\Oracle
2015-03-21 13:40:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-21 13:40:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 13:40:10 ----D---- C:\Program Files (x86)\Java
2015-03-21 13:07:05 ----D---- C:\Games
2015-03-20 13:12:40 ----D---- C:\Windows\LiveKernelReports
2015-03-18 11:19:36 ----HD---- C:\ProgramData
2015-03-18 11:19:29 ----D---- C:\Windows\Help
2015-03-18 11:19:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-18 11:19:13 ----D---- C:\ProgramData\NVIDIA Corporation
2015-03-14 11:59:42 ----D---- C:\Windows\AppReadiness
2015-03-14 11:59:41 ----HD---- C:\Program Files\WindowsApps
2015-03-13 18:22:59 ----D---- C:\Windows\rescache
2015-03-12 12:58:04 ----D---- C:\Windows\CbsTemp
2015-03-12 12:56:52 ----SH---- C:\Windows\system32\desktop.ini
2015-03-12 12:55:25 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2015-03-12 12:55:24 ----A---- C:\Windows\system32\msclmd.dll
2015-03-11 20:33:58 ----D---- C:\Windows\system32\catroot2
2015-03-11 11:21:30 ----D---- C:\Program Files\Windows Defender
2015-03-11 11:21:30 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 11:21:29 ----D---- C:\Windows\WinStore
2015-03-11 08:54:50 ----D---- C:\Windows\system32\MRT
2015-03-11 08:46:50 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-24 271200]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-24 442264]
R1 dtsoftbus01;@oem33.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-12-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-24 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-24 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-24 273824]
R3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
R3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
R3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
R3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
R3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-03-13 10262160]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;@oem31.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem14.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-04-02 476888]
R3 SynRMIHID;@oem13.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast\AvastSvc.exe [2015-03-24 343336]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-12 2840832]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-21 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-24 4030800]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-06 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-03-22 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-03-22 449768]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-03-24 836288]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
S2 0053851417525678mcinstcleanup;McAfee Application Installer Cleanup (0053851417525678); C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE [2014-03-13 836168]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-25 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-21 279024]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-21 148080]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Johnny at 2015-03-25 20:47:36
Microsoft Windows 8.1
System drive C: has 464 GB (50%) free of 936 GB
Total RAM: 8083 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:38, on 25. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Games\Steam\Steam.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\VLC\vlc.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: McAfee Application Installer Cleanup (0053851417525678) (0053851417525678mcinstcleanup) - McAfee, Inc. - C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9905 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
C:\Windows\Explorer.EXE
taskhostex.exe
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
dashost.exe {27659233-67e2-4582-b63adce1d61d8cba}
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
ngservice.exe pipeserver
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
igfxHK.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
igfxTray.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Windows\system32\igfxEM.exe" -Embedding
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Games\Steam\Steam.exe" -silent
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Johnny\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 372 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Games\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan Gajdoš\AppData\Local\Steam\htmlcache" -steampid 2520 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\VLC\vlc.exe" --started-from-file "C:\Users\Johnny\Desktop\Game.Of.Thrones.S01E05.mp4"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Johnny\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\rsit
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-25 11:46:11 ----SHD---- C:\Config.Msi
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Johnny\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
======List of files/folders modified in the last 1 month======
2015-03-25 20:16:21 ----D---- C:\Users\Johnny\AppData\Roaming\vlc
2015-03-25 20:08:45 ----D---- C:\Windows\Temp
2015-03-25 20:02:03 ----D---- C:\Windows\Prefetch
2015-03-25 20:00:13 ----D---- C:\Windows\system32\sru
2015-03-25 17:04:34 ----D---- C:\Windows\Inf
2015-03-25 16:49:03 ----RD---- C:\Program Files
2015-03-25 12:41:53 ----D---- C:\Windows\Microsoft.NET
2015-03-25 12:39:42 ----RSD---- C:\Windows\assembly
2015-03-25 11:51:42 ----D---- C:\Windows\system32\Tasks
2015-03-25 11:51:34 ----SHD---- C:\Windows\Installer
2015-03-25 11:51:34 ----D---- C:\Program Files (x86)\Acer
2015-03-25 11:31:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-25 07:32:18 ----D---- C:\Windows\system32\config
2015-03-24 14:27:46 ----RD---- C:\Windows\System32
2015-03-24 14:22:29 ----RD---- C:\Program Files (x86)
2015-03-24 14:20:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:19:15 ----SHD---- C:\System Volume Information
2015-03-24 14:17:42 ----D---- C:\Windows\WinSxS
2015-03-24 14:17:11 ----D---- C:\Windows
2015-03-24 14:14:35 ----D---- C:\Windows\system32\drivers
2015-03-24 14:14:35 ----D---- C:\Program Files\Avast
2015-03-24 14:06:46 ----D---- C:\Windows\MediaViewer
2015-03-24 14:06:45 ----D---- C:\Windows\SysWOW64
2015-03-24 14:06:45 ----D---- C:\Windows\Camera
2015-03-24 14:06:44 ----D---- C:\Windows\FileManager
2015-03-24 14:06:43 ----RD---- C:\Windows\ToastData
2015-03-24 14:06:21 ----D---- C:\Program Files\Windows Mail
2015-03-24 14:06:18 ----D---- C:\Program Files\Windows Multimedia Platform
2015-03-24 14:06:18 ----D---- C:\Program Files\Internet Explorer
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Portable Devices
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Media Player
2015-03-24 14:06:16 ----D---- C:\Program Files\Windows Journal
2015-03-24 14:06:15 ----D---- C:\Program Files\Windows Photo Viewer
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\oobe
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\migration
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\Com
2015-03-24 14:06:13 ----D---- C:\Windows\servicing
2015-03-24 14:06:13 ----D---- C:\Program Files\Common Files\System
2015-03-24 14:06:10 ----D---- C:\Windows\SYSWOW64\setup
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\sppui
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\migwiz
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-24 14:04:45 ----RD---- C:\Windows\ImmersiveControlPanel
2015-03-24 14:04:45 ----D---- C:\Windows\twain_32
2015-03-24 14:04:45 ----D---- C:\Windows\system32\en-US
2015-03-24 14:04:45 ----D---- C:\Windows\system32\Com
2015-03-24 14:04:45 ----D---- C:\Windows\IME
2015-03-24 14:04:44 ----D---- C:\Windows\system32\Sysprep
2015-03-24 14:04:44 ----D---- C:\Windows\system32\oobe
2015-03-24 14:04:44 ----D---- C:\Windows\system32\migration
2015-03-24 14:04:39 ----D---- C:\Windows\system32\setup
2015-03-24 14:04:38 ----D---- C:\Windows\system32\cs-CZ
2015-03-24 14:04:37 ----D---- C:\Windows\system32\sppui
2015-03-24 14:04:35 ----D---- C:\Windows\system32\WinBioPlugIns
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\en-US
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-03-24 14:04:33 ----D---- C:\Windows\system32\wbem
2015-03-24 14:04:26 ----SD---- C:\Windows\system32\dsc
2015-03-24 14:04:26 ----D---- C:\Windows\system32\SystemResetPlatform
2015-03-24 14:04:26 ----D---- C:\Windows\system32\migwiz
2015-03-24 14:04:26 ----D---- C:\Windows\system32\Dism
2015-03-24 14:02:27 ----D---- C:\Windows\apppatch
2015-03-24 14:02:26 ----D---- C:\Program Files (x86)\Windows Mail
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-24 14:02:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-03-24 14:02:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-24 14:01:57 ----D---- C:\Program Files\WindowsPowerShell
2015-03-24 14:01:46 ----D---- C:\Windows\system32\DriverStore
2015-03-24 14:01:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-03-21 14:01:21 ----D---- C:\ProgramData\Oracle
2015-03-21 13:40:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-21 13:40:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 13:40:10 ----D---- C:\Program Files (x86)\Java
2015-03-21 13:07:05 ----D---- C:\Games
2015-03-20 13:12:40 ----D---- C:\Windows\LiveKernelReports
2015-03-18 11:19:36 ----HD---- C:\ProgramData
2015-03-18 11:19:29 ----D---- C:\Windows\Help
2015-03-18 11:19:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-18 11:19:13 ----D---- C:\ProgramData\NVIDIA Corporation
2015-03-14 11:59:42 ----D---- C:\Windows\AppReadiness
2015-03-14 11:59:41 ----HD---- C:\Program Files\WindowsApps
2015-03-13 18:22:59 ----D---- C:\Windows\rescache
2015-03-12 12:58:04 ----D---- C:\Windows\CbsTemp
2015-03-12 12:56:52 ----SH---- C:\Windows\system32\desktop.ini
2015-03-12 12:55:25 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2015-03-12 12:55:24 ----A---- C:\Windows\system32\msclmd.dll
2015-03-11 20:33:58 ----D---- C:\Windows\system32\catroot2
2015-03-11 11:21:30 ----D---- C:\Program Files\Windows Defender
2015-03-11 11:21:30 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 11:21:29 ----D---- C:\Windows\WinStore
2015-03-11 08:54:50 ----D---- C:\Windows\system32\MRT
2015-03-11 08:46:50 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-24 271200]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-24 442264]
R1 dtsoftbus01;@oem33.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-12-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-24 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-24 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-24 273824]
R3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
R3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
R3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
R3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
R3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-03-13 10262160]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;@oem31.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem14.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-04-02 476888]
R3 SynRMIHID;@oem13.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast\AvastSvc.exe [2015-03-24 343336]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-12 2840832]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-21 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-24 4030800]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-06 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-03-22 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-03-22 449768]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-03-24 836288]
R3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
S2 0053851417525678mcinstcleanup;McAfee Application Installer Cleanup (0053851417525678); C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE [2014-03-13 836168]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-25 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-21 279024]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-21 148080]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Users\JANGAJ~1\AppData\Local\Temp\005385~1.EXE
:services
0053851417525678mcinstcleanup
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Přidávám log z RSIT i OTM (jen pro případ)
All processes killed
========== FILES ==========
C:\Users\JANGAJ~1\AppData\Local\Temp\0053851417525678mcinst.exe moved successfully.
========== SERVICES/DRIVERS ==========
Service 0053851417525678mcinstcleanup stopped successfully!
Service 0053851417525678mcinstcleanup deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Johnny
->Temp folder emptied: 5084667254 bytes
->Temporary Internet Files folder emptied: 61904630 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 185588970 bytes
->Flash cache emptied: 799 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 275976955 bytes
RecycleBin emptied: 5592812686 bytes
Total Files Cleaned = 10 682,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Johnny
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 03252015_211100
Files moved on Reboot...
C:\Users\Johnny\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Logfile of random's system information tool 1.10 (written by random/random)
Run by Johnny at 2015-03-25 21:17:54
Microsoft Windows 8.1
System drive C: has 474 GB (51%) free of 936 GB
Total RAM: 8083 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:59, on 25. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9709 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
dashost.exe {a614e546-b619-4900-b104497881d6b4c9}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
taskhostex.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\Explorer.EXE
ngservice.exe pipeserver
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
igfxHK.exe
igfxTray.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\igfxEM.exe" -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\system32\igfxext.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Johnny\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 452 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Users\Johnny\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" task
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-25 21:11:00 ----D---- C:\_OTM
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\rsit
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-25 11:46:11 ----SHD---- C:\Config.Msi
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Johnny\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
======List of files/folders modified in the last 1 month======
2015-03-25 21:17:05 ----D---- C:\Windows\Prefetch
2015-03-25 21:16:08 ----D---- C:\Windows\Temp
2015-03-25 21:12:09 ----D---- C:\Windows
2015-03-25 21:02:00 ----D---- C:\Windows\system32\sru
2015-03-25 20:16:21 ----D---- C:\Users\Johnny\AppData\Roaming\vlc
2015-03-25 17:04:34 ----D---- C:\Windows\Inf
2015-03-25 16:49:03 ----RD---- C:\Program Files
2015-03-25 12:41:53 ----D---- C:\Windows\Microsoft.NET
2015-03-25 12:39:42 ----RSD---- C:\Windows\assembly
2015-03-25 11:51:42 ----D---- C:\Windows\system32\Tasks
2015-03-25 11:51:34 ----SHD---- C:\Windows\Installer
2015-03-25 11:51:34 ----D---- C:\Program Files (x86)\Acer
2015-03-25 11:31:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-25 07:32:18 ----D---- C:\Windows\system32\config
2015-03-24 14:27:46 ----RD---- C:\Windows\System32
2015-03-24 14:22:29 ----RD---- C:\Program Files (x86)
2015-03-24 14:20:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:19:15 ----SHD---- C:\System Volume Information
2015-03-24 14:17:42 ----D---- C:\Windows\WinSxS
2015-03-24 14:14:35 ----D---- C:\Windows\system32\drivers
2015-03-24 14:14:35 ----D---- C:\Program Files\Avast
2015-03-24 14:06:46 ----D---- C:\Windows\MediaViewer
2015-03-24 14:06:45 ----D---- C:\Windows\SysWOW64
2015-03-24 14:06:45 ----D---- C:\Windows\Camera
2015-03-24 14:06:44 ----D---- C:\Windows\FileManager
2015-03-24 14:06:43 ----RD---- C:\Windows\ToastData
2015-03-24 14:06:21 ----D---- C:\Program Files\Windows Mail
2015-03-24 14:06:18 ----D---- C:\Program Files\Windows Multimedia Platform
2015-03-24 14:06:18 ----D---- C:\Program Files\Internet Explorer
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Portable Devices
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Media Player
2015-03-24 14:06:16 ----D---- C:\Program Files\Windows Journal
2015-03-24 14:06:15 ----D---- C:\Program Files\Windows Photo Viewer
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\oobe
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\migration
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\Com
2015-03-24 14:06:13 ----D---- C:\Windows\servicing
2015-03-24 14:06:13 ----D---- C:\Program Files\Common Files\System
2015-03-24 14:06:10 ----D---- C:\Windows\SYSWOW64\setup
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\sppui
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\migwiz
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-24 14:04:45 ----RD---- C:\Windows\ImmersiveControlPanel
2015-03-24 14:04:45 ----D---- C:\Windows\twain_32
2015-03-24 14:04:45 ----D---- C:\Windows\system32\en-US
2015-03-24 14:04:45 ----D---- C:\Windows\system32\Com
2015-03-24 14:04:45 ----D---- C:\Windows\IME
2015-03-24 14:04:44 ----D---- C:\Windows\system32\Sysprep
2015-03-24 14:04:44 ----D---- C:\Windows\system32\oobe
2015-03-24 14:04:44 ----D---- C:\Windows\system32\migration
2015-03-24 14:04:39 ----D---- C:\Windows\system32\setup
2015-03-24 14:04:38 ----D---- C:\Windows\system32\cs-CZ
2015-03-24 14:04:37 ----D---- C:\Windows\system32\sppui
2015-03-24 14:04:35 ----D---- C:\Windows\system32\WinBioPlugIns
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\en-US
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-03-24 14:04:33 ----D---- C:\Windows\system32\wbem
2015-03-24 14:04:26 ----SD---- C:\Windows\system32\dsc
2015-03-24 14:04:26 ----D---- C:\Windows\system32\SystemResetPlatform
2015-03-24 14:04:26 ----D---- C:\Windows\system32\migwiz
2015-03-24 14:04:26 ----D---- C:\Windows\system32\Dism
2015-03-24 14:02:27 ----D---- C:\Windows\apppatch
2015-03-24 14:02:26 ----D---- C:\Program Files (x86)\Windows Mail
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-24 14:02:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-03-24 14:02:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-24 14:01:57 ----D---- C:\Program Files\WindowsPowerShell
2015-03-24 14:01:46 ----D---- C:\Windows\system32\DriverStore
2015-03-24 14:01:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-03-21 14:01:21 ----D---- C:\ProgramData\Oracle
2015-03-21 13:40:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-21 13:40:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 13:40:10 ----D---- C:\Program Files (x86)\Java
2015-03-21 13:07:05 ----D---- C:\Games
2015-03-20 13:12:40 ----D---- C:\Windows\LiveKernelReports
2015-03-18 11:19:36 ----HD---- C:\ProgramData
2015-03-18 11:19:29 ----D---- C:\Windows\Help
2015-03-18 11:19:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-18 11:19:13 ----D---- C:\ProgramData\NVIDIA Corporation
2015-03-14 11:59:42 ----D---- C:\Windows\AppReadiness
2015-03-14 11:59:41 ----HD---- C:\Program Files\WindowsApps
2015-03-13 18:22:59 ----D---- C:\Windows\rescache
2015-03-12 12:58:04 ----D---- C:\Windows\CbsTemp
2015-03-12 12:56:52 ----SH---- C:\Windows\system32\desktop.ini
2015-03-12 12:55:25 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2015-03-12 12:55:24 ----A---- C:\Windows\system32\msclmd.dll
2015-03-11 20:33:58 ----D---- C:\Windows\system32\catroot2
2015-03-11 11:21:30 ----D---- C:\Program Files\Windows Defender
2015-03-11 11:21:30 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 11:21:29 ----D---- C:\Windows\WinStore
2015-03-11 08:54:50 ----D---- C:\Windows\system32\MRT
2015-03-11 08:46:50 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-24 271200]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-24 442264]
R1 dtsoftbus01;@oem33.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-12-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-24 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-24 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-24 273824]
R3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
R3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
R3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
R3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
R3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-03-13 10262160]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;@oem31.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem14.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-04-02 476888]
R3 SynRMIHID;@oem13.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast\AvastSvc.exe [2015-03-24 343336]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-12 2840832]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-21 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-24 4030800]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-06 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-03-22 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-03-22 449768]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-25 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-21 279024]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-21 148080]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-03-24 836288]
S3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
-----------------EOF-----------------
All processes killed
========== FILES ==========
C:\Users\JANGAJ~1\AppData\Local\Temp\0053851417525678mcinst.exe moved successfully.
========== SERVICES/DRIVERS ==========
Service 0053851417525678mcinstcleanup stopped successfully!
Service 0053851417525678mcinstcleanup deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Johnny
->Temp folder emptied: 5084667254 bytes
->Temporary Internet Files folder emptied: 61904630 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 185588970 bytes
->Flash cache emptied: 799 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 275976955 bytes
RecycleBin emptied: 5592812686 bytes
Total Files Cleaned = 10 682,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Johnny
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 03252015_211100
Files moved on Reboot...
C:\Users\Johnny\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Logfile of random's system information tool 1.10 (written by random/random)
Run by Johnny at 2015-03-25 21:17:54
Microsoft Windows 8.1
System drive C: has 474 GB (51%) free of 936 GB
Total RAM: 8083 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:17:59, on 25. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
C:\Program Files\trend micro\Johnny.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9709 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
dashost.exe {a614e546-b619-4900-b104497881d6b4c9}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
taskhostex.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\Explorer.EXE
ngservice.exe pipeserver
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
igfxHK.exe
igfxTray.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\igfxEM.exe" -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Windows\system32\igfxext.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 560 564 572 65536 568
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Johnny\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 452 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Users\Johnny\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe" task
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Johnny\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-25 21:11:00 ----D---- C:\_OTM
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\rsit
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-25 11:46:11 ----SHD---- C:\Config.Msi
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Johnny\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
======List of files/folders modified in the last 1 month======
2015-03-25 21:17:05 ----D---- C:\Windows\Prefetch
2015-03-25 21:16:08 ----D---- C:\Windows\Temp
2015-03-25 21:12:09 ----D---- C:\Windows
2015-03-25 21:02:00 ----D---- C:\Windows\system32\sru
2015-03-25 20:16:21 ----D---- C:\Users\Johnny\AppData\Roaming\vlc
2015-03-25 17:04:34 ----D---- C:\Windows\Inf
2015-03-25 16:49:03 ----RD---- C:\Program Files
2015-03-25 12:41:53 ----D---- C:\Windows\Microsoft.NET
2015-03-25 12:39:42 ----RSD---- C:\Windows\assembly
2015-03-25 11:51:42 ----D---- C:\Windows\system32\Tasks
2015-03-25 11:51:34 ----SHD---- C:\Windows\Installer
2015-03-25 11:51:34 ----D---- C:\Program Files (x86)\Acer
2015-03-25 11:31:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-25 07:32:18 ----D---- C:\Windows\system32\config
2015-03-24 14:27:46 ----RD---- C:\Windows\System32
2015-03-24 14:22:29 ----RD---- C:\Program Files (x86)
2015-03-24 14:20:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:19:15 ----SHD---- C:\System Volume Information
2015-03-24 14:17:42 ----D---- C:\Windows\WinSxS
2015-03-24 14:14:35 ----D---- C:\Windows\system32\drivers
2015-03-24 14:14:35 ----D---- C:\Program Files\Avast
2015-03-24 14:06:46 ----D---- C:\Windows\MediaViewer
2015-03-24 14:06:45 ----D---- C:\Windows\SysWOW64
2015-03-24 14:06:45 ----D---- C:\Windows\Camera
2015-03-24 14:06:44 ----D---- C:\Windows\FileManager
2015-03-24 14:06:43 ----RD---- C:\Windows\ToastData
2015-03-24 14:06:21 ----D---- C:\Program Files\Windows Mail
2015-03-24 14:06:18 ----D---- C:\Program Files\Windows Multimedia Platform
2015-03-24 14:06:18 ----D---- C:\Program Files\Internet Explorer
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Portable Devices
2015-03-24 14:06:17 ----D---- C:\Program Files\Windows Media Player
2015-03-24 14:06:16 ----D---- C:\Program Files\Windows Journal
2015-03-24 14:06:15 ----D---- C:\Program Files\Windows Photo Viewer
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\oobe
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\migration
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-24 14:06:13 ----D---- C:\Windows\SYSWOW64\Com
2015-03-24 14:06:13 ----D---- C:\Windows\servicing
2015-03-24 14:06:13 ----D---- C:\Program Files\Common Files\System
2015-03-24 14:06:10 ----D---- C:\Windows\SYSWOW64\setup
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\wbem
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\sppui
2015-03-24 14:06:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\migwiz
2015-03-24 14:06:07 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-24 14:04:45 ----RD---- C:\Windows\ImmersiveControlPanel
2015-03-24 14:04:45 ----D---- C:\Windows\twain_32
2015-03-24 14:04:45 ----D---- C:\Windows\system32\en-US
2015-03-24 14:04:45 ----D---- C:\Windows\system32\Com
2015-03-24 14:04:45 ----D---- C:\Windows\IME
2015-03-24 14:04:44 ----D---- C:\Windows\system32\Sysprep
2015-03-24 14:04:44 ----D---- C:\Windows\system32\oobe
2015-03-24 14:04:44 ----D---- C:\Windows\system32\migration
2015-03-24 14:04:39 ----D---- C:\Windows\system32\setup
2015-03-24 14:04:38 ----D---- C:\Windows\system32\cs-CZ
2015-03-24 14:04:37 ----D---- C:\Windows\system32\sppui
2015-03-24 14:04:35 ----D---- C:\Windows\system32\WinBioPlugIns
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\en-US
2015-03-24 14:04:34 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-03-24 14:04:33 ----D---- C:\Windows\system32\wbem
2015-03-24 14:04:26 ----SD---- C:\Windows\system32\dsc
2015-03-24 14:04:26 ----D---- C:\Windows\system32\SystemResetPlatform
2015-03-24 14:04:26 ----D---- C:\Windows\system32\migwiz
2015-03-24 14:04:26 ----D---- C:\Windows\system32\Dism
2015-03-24 14:02:27 ----D---- C:\Windows\apppatch
2015-03-24 14:02:26 ----D---- C:\Program Files (x86)\Windows Mail
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-24 14:02:22 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-24 14:02:21 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-03-24 14:02:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-03-24 14:01:57 ----D---- C:\Program Files\WindowsPowerShell
2015-03-24 14:01:46 ----D---- C:\Windows\system32\DriverStore
2015-03-24 14:01:35 ----D---- C:\Windows\system32\drivers\UMDF
2015-03-21 14:01:21 ----D---- C:\ProgramData\Oracle
2015-03-21 13:40:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-21 13:40:21 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-21 13:40:10 ----D---- C:\Program Files (x86)\Java
2015-03-21 13:07:05 ----D---- C:\Games
2015-03-20 13:12:40 ----D---- C:\Windows\LiveKernelReports
2015-03-18 11:19:36 ----HD---- C:\ProgramData
2015-03-18 11:19:29 ----D---- C:\Windows\Help
2015-03-18 11:19:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-03-18 11:19:13 ----D---- C:\ProgramData\NVIDIA Corporation
2015-03-14 11:59:42 ----D---- C:\Windows\AppReadiness
2015-03-14 11:59:41 ----HD---- C:\Program Files\WindowsApps
2015-03-13 18:22:59 ----D---- C:\Windows\rescache
2015-03-12 12:58:04 ----D---- C:\Windows\CbsTemp
2015-03-12 12:56:52 ----SH---- C:\Windows\system32\desktop.ini
2015-03-12 12:55:25 ----A---- C:\Windows\SYSWOW64\msclmd.dll
2015-03-12 12:55:24 ----A---- C:\Windows\system32\msclmd.dll
2015-03-11 20:33:58 ----D---- C:\Windows\system32\catroot2
2015-03-11 11:21:30 ----D---- C:\Program Files\Windows Defender
2015-03-11 11:21:30 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 11:21:29 ----D---- C:\Windows\WinStore
2015-03-11 08:54:50 ----D---- C:\Windows\system32\MRT
2015-03-11 08:46:50 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-03-24 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-03-24 271200]
R0 BTATH_BUS;@oem16.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\Windows\System32\drivers\btath_bus.sys [2014-02-26 35016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-03-24 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-03-24 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-03-24 442264]
R1 dtsoftbus01;@oem33.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2014-12-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-03-24 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-03-24 88408]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-03-24 136752]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\Avast\ng\vbox\VBoxAswDrv.sys [2015-03-24 273824]
R3 AthBTPort;@oem19.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2014-02-26 89800]
R3 athr;@oem15.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athwbx.sys [2014-02-14 3888640]
R3 BTATH_A2DP;@oem18.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2014-02-26 355528]
R3 btath_avdt;@oem18.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2014-02-26 118984]
R3 BTATH_HCRP;@oem21.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\Windows\System32\drivers\btath_hcrp.sys [2014-02-26 179432]
R3 BTATH_LWFLT;@oem23.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2014-02-26 77464]
R3 BTATH_RCP;@oem25.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\Windows\System32\drivers\btath_rcp.sys [2014-02-26 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2014-02-26 598216]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-03-07 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-04-28 3949656]
R3 iwdbus;@oem8.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 LMDriver;@oem20.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\Windows\System32\drivers\LMDriver.sys [2013-07-17 21360]
R3 MEIx64;@oem12.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-03-13 10262160]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-01-16 19784]
R3 nvvad_WaveExtensible;@oem31.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RadioShim;@oem20.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\Windows\System32\drivers\RadioShim.sys [2013-07-17 14680]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RTL8168;@oem10.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2014-03-28 854744]
R3 RTSPER;@oem14.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-04-02 476888]
R3 SynRMIHID;@oem13.inf,%SynRMIHID.SVCDESC%;Synaptics HID Service; C:\Windows\system32\DRIVERS\SynRMIHID.sys [2014-02-19 42224]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 intaud_WaveExtensible;@oem7.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [2014-02-26 319104]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast\AvastSvc.exe [2015-03-24 343336]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-12 2840832]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-11-20 227904]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-01-16 1148744]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-03-21 282096]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-03-17 459496]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-07-14 769432]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-01-16 1706312]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-01-16 21833544]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2012-04-24 254512]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe [2015-03-24 4030800]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2014-03-06 2573544]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-03-22 457960]
R3 RMSvc;Quick Access RadioMgr Service; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [2014-03-22 449768]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-25 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-03-21 279024]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-11-15 259664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-21 148080]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-03-24 836288]
S3 UEIPSvc;User Experience Improvement Program; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [2014-01-25 222952]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Beze změny, stále to nefunguje, jak by mělo.
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Log MBAM
Ještě poznámka pozorovatele, hlášení "server nenalezen" vyskakuje asi u čtyř různých stránek s doménou .net (a problémy s facebookem a jinými stránkami se mi taky zdá, že jsou hlavně ve fázi vyhledávání prvků z .net stránek). Ale nemusí to mít relevanci, jsem přeci jen amatér a nevyznám se.
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 25. 3. 2015
Čas skenování: 22:41:03
Protokol: ii.txt
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.03.25.07
Databáze rootkitů: v2015.02.25.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Jan GajdoA!
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 360233
Uplynulý čas: 17 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 2
PUP.Optional.OpenCandy, C:\Users\Jan GajdoA!\Downloads\DTLite4491-0356(1).exe, , [16a5af9accbe40f6ffeaa776ae58dd23],
PUP.Optional.OpenCandy, C:\Users\Jan GajdoA!\Downloads\DTLite4491-0356.exe, , [34876ddc3357fe38d811d34a62a4817f],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Ještě poznámka pozorovatele, hlášení "server nenalezen" vyskakuje asi u čtyř různých stránek s doménou .net (a problémy s facebookem a jinými stránkami se mi taky zdá, že jsou hlavně ve fázi vyhledávání prvků z .net stránek). Ale nemusí to mít relevanci, jsem přeci jen amatér a nevyznám se.
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 25. 3. 2015
Čas skenování: 22:41:03
Protokol: ii.txt
Správce: Ano
Verze: 2.01.4.1018
Databáze malwaru: v2015.03.25.07
Databáze rootkitů: v2015.02.25.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Jan GajdoA!
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 360233
Uplynulý čas: 17 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 2
PUP.Optional.OpenCandy, C:\Users\Jan GajdoA!\Downloads\DTLite4491-0356(1).exe, , [16a5af9accbe40f6ffeaa776ae58dd23],
PUP.Optional.OpenCandy, C:\Users\Jan GajdoA!\Downloads\DTLite4491-0356.exe, , [34876ddc3357fe38d811d34a62a4817f],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119677
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s některými stránkami na netu
Nalezené položky smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s některými stránkami na netu
Smazáno, na zmiňované stránky se ale stále nemůžu korektně dostat. Log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan Gajdoš at 2015-03-26 18:39:06
Microsoft Windows 8.1
System drive C: has 469 GB (50%) free of 936 GB
Total RAM: 8083 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:39:09, on 26. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Games\Steam\Steam.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jan Gajdoš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Utility\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10071 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
taskeng.exe {1FBD199F-BCF8-4FF4-8A84-D153A451C5D2}
taskhostex.exe
C:\Windows\Explorer.EXE
dashost.exe {341d4620-142d-42e0-9c273de89ea85c8d}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
ngservice.exe pipeserver
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
igfxHK.exe
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
igfxTray.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Windows\system32\igfxEM.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Jan Gajdoš\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 456 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Games\Steam\Steam.exe" -silent
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Games\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan Gajdoš\AppData\Local\Steam\htmlcache" -steampid 2700 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jan Gajdoš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan Gajdoš\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-26 10:45:12 ----D---- C:\Program Files (x86)\Google
2015-03-26 09:04:33 ----D---- C:\rsit
2015-03-25 22:39:34 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-03-25 22:38:52 ----D---- C:\ProgramData\Malwarebytes
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Jan Gajdoš\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-03-11 21:19:37 ----A---- C:\Windows\system32\msihnd.dll
2015-03-11 21:19:32 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-03-11 21:19:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-03-11 21:19:25 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-03-11 21:19:21 ----A---- C:\Windows\system32\packager.dll
2015-03-11 21:19:21 ----A---- C:\Windows\system32\msxml3.dll
2015-03-11 21:19:20 ----A---- C:\Windows\system32\wuaueng.dll
2015-03-11 21:19:19 ----A---- C:\Windows\system32\consent.exe
2015-03-11 21:19:18 ----A---- C:\Windows\system32\msi.dll
2015-03-11 21:19:17 ----A---- C:\Windows\system32\dpapisrv.dll
2015-03-11 21:19:14 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-03-11 21:19:11 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 21:19:02 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 21:18:54 ----A---- C:\Windows\system32\twinui.dll
2015-03-11 21:18:53 ----A---- C:\Windows\system32\WSService.dll
2015-03-11 21:18:53 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2015-03-11 21:18:52 ----A---- C:\Windows\SYSWOW64\twinui.dll
2015-03-11 21:18:50 ----A---- C:\Windows\system32\mstscax.dll
2015-03-11 21:18:49 ----A---- C:\Windows\system32\glcndFilter.dll
2015-03-11 21:18:48 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-03-11 21:18:47 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2015-03-11 21:18:46 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-03-11 21:18:45 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-03-11 21:18:43 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2015-03-11 21:18:40 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-03-11 21:18:40 ----A---- C:\Windows\system32\rdpclip.exe
2015-03-11 21:18:39 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-03-11 21:18:39 ----A---- C:\Windows\system32\rdpinput.exe
2015-03-11 21:18:39 ----A---- C:\Windows\system32\rdpcore.dll
2015-03-11 21:18:38 ----A---- C:\Windows\system32\UIRibbon.dll
2015-03-11 21:18:38 ----A---- C:\Windows\system32\d2d1.dll
2015-03-11 21:18:37 ----A---- C:\Windows\system32\mfcore.dll
2015-03-11 21:18:36 ----A---- C:\Windows\system32\tquery.dll
2015-03-11 21:18:34 ----A---- C:\Windows\system32\xpsrchvw.exe
2015-03-11 21:18:34 ----A---- C:\Windows\system32\XpsFilt.dll
2015-03-11 21:18:34 ----A---- C:\Windows\system32\msxml6.dll
2015-03-11 21:18:33 ----A---- C:\Windows\system32\mssrch.dll
2015-03-11 21:18:32 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-03-11 21:18:32 ----A---- C:\Windows\system32\WMVCORE.DLL
2015-03-11 21:18:31 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-03-11 21:18:31 ----A---- C:\Windows\system32\dbgeng.dll
2015-03-11 21:18:29 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2015-03-11 21:18:29 ----A---- C:\Windows\system32\MSVidCtl.dll
2015-03-11 21:18:28 ----A---- C:\Windows\system32\esent.dll
2015-03-11 21:18:27 ----A---- C:\Windows\system32\xpsservices.dll
2015-03-11 21:18:27 ----A---- C:\Windows\system32\XpsPrint.dll
2015-03-11 21:18:26 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-03-11 21:18:25 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-03-11 21:18:25 ----A---- C:\Windows\system32\SettingsHandlers.dll
2015-03-11 21:18:24 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-03-11 21:18:24 ----A---- C:\Windows\system32\user32.dll
2015-03-11 21:18:24 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-03-11 21:18:22 ----A---- C:\Windows\system32\WsmSvc.dll
2015-03-11 21:18:21 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2015-03-11 21:18:21 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-03-11 21:18:21 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2015-03-11 21:18:20 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-03-11 21:18:20 ----A---- C:\Windows\system32\d3d10warp.dll
2015-03-11 21:18:19 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-03-11 21:18:18 ----A---- C:\Windows\system32\WpcMon.exe
2015-03-11 21:18:18 ----A---- C:\Windows\system32\combase.dll
2015-03-11 21:18:17 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-03-11 21:18:17 ----A---- C:\Windows\system32\Wpc.dll
2015-03-11 21:18:16 ----A---- C:\Windows\system32\d3d11.dll
2015-03-11 21:18:15 ----A---- C:\Windows\system32\d3d9.dll
2015-03-11 21:18:13 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2015-03-11 21:18:12 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-03-11 21:18:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-03-11 21:18:11 ----A---- C:\Windows\system32\WpcWebSync.dll
2015-03-11 21:18:11 ----A---- C:\Windows\system32\mmcndmgr.dll
2015-03-11 21:18:09 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-03-11 21:18:08 ----A---- C:\Windows\system32\DWrite.dll
2015-03-11 21:18:08 ----A---- C:\Windows\system32\drivers\storport.sys
2015-03-11 21:18:07 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2015-03-11 21:18:06 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-03-11 21:18:06 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-03-11 21:18:05 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-03-11 21:18:05 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2015-03-11 21:18:05 ----A---- C:\Windows\system32\wuapp.exe
2015-03-11 21:18:05 ----A---- C:\Windows\system32\ole32.dll
2015-03-11 21:18:04 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-03-11 21:18:04 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wudriver.dll
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wuauclt.exe
2015-03-11 21:18:03 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wucltux.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wuapi.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wuaext.dll
2015-03-11 21:18:02 ----A---- C:\Windows\system32\SearchFolder.dll
2015-03-11 21:18:01 ----A---- C:\Windows\SYSWOW64\combase.dll
2015-03-11 21:18:01 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-03-11 21:17:59 ----A---- C:\Windows\system32\wmpmde.dll
2015-03-11 21:17:59 ----A---- C:\Windows\system32\winmde.dll
2015-03-11 21:17:58 ----A---- C:\Windows\system32\storagewmi.dll
2015-03-11 21:17:58 ----A---- C:\Windows\system32\rpcrt4.dll
2015-03-11 21:17:57 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2015-03-11 21:17:57 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\OpcServices.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\dui70.dll
2015-03-11 21:17:54 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-03-11 21:17:54 ----A---- C:\Windows\system32\gpsvc.dll
2015-03-11 21:17:53 ----A---- C:\Windows\system32\CertEnroll.dll
2015-03-11 21:17:52 ----A---- C:\Windows\system32\wlidsvc.dll
2015-03-11 21:17:52 ----A---- C:\Windows\system32\mfnetsrc.dll
2015-03-11 21:17:51 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2015-03-11 21:17:50 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2015-03-11 21:17:50 ----A---- C:\Windows\system32\SRH.dll
2015-03-11 21:17:49 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 21:17:47 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-03-11 21:17:46 ----A---- C:\Windows\system32\twinui.appcore.dll
2015-03-11 21:17:46 ----A---- C:\Windows\system32\taskschd.dll
2015-03-11 21:17:45 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2015-03-11 21:17:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-03-11 21:17:45 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2015-03-11 21:17:44 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2015-03-11 21:17:44 ----A---- C:\Windows\SYSWOW64\dui70.dll
2015-03-11 21:17:43 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-03-11 21:17:43 ----A---- C:\Windows\system32\WMVENCOD.DLL
2015-03-11 21:17:41 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2015-03-11 21:17:41 ----A---- C:\Windows\system32\webservices.dll
2015-03-11 21:17:41 ----A---- C:\Windows\system32\GdiPlus.dll
2015-03-11 21:17:40 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 21:17:39 ----A---- C:\Windows\SYSWOW64\winmde.dll
2015-03-11 21:17:39 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2015-03-11 21:17:37 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2015-03-11 21:17:37 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-03-11 21:17:36 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2015-03-11 21:17:34 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2015-03-11 21:17:34 ----A---- C:\Windows\system32\mmc.exe
2015-03-11 21:17:33 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-03-11 21:17:33 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 21:17:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-03-11 21:17:32 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-03-11 21:17:31 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2015-03-11 21:17:31 ----A---- C:\Windows\system32\wpccpl.dll
2015-03-11 21:17:31 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2015-03-11 21:17:30 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-03-11 21:17:30 ----A---- C:\Windows\system32\diagperf.dll
2015-03-11 21:17:29 ----A---- C:\Windows\system32\Windows.Media.dll
2015-03-11 21:17:29 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 21:17:28 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2015-03-11 21:17:28 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2015-03-11 21:17:27 ----A---- C:\Windows\system32\xpssvcs.dll
2015-03-11 21:17:27 ----A---- C:\Windows\system32\comsvcs.dll
2015-03-11 21:17:26 ----A---- C:\Windows\system32\mfsrcsnk.dll
2015-03-11 21:17:25 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2015-03-11 21:17:25 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2015-03-11 21:17:25 ----A---- C:\Windows\system32\sbe.dll
2015-03-11 21:17:24 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 21:17:23 ----A---- C:\Windows\SYSWOW64\webservices.dll
2015-03-11 21:17:23 ----A---- C:\Windows\system32\rpcss.dll
2015-03-11 21:17:22 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-03-11 21:17:22 ----A---- C:\Windows\system32\FntCache.dll
2015-03-11 21:17:21 ----A---- C:\Windows\system32\WMNetMgr.dll
2015-03-11 21:17:21 ----A---- C:\Windows\system32\pla.dll
2015-03-11 21:17:20 ----A---- C:\Windows\system32\WinSAT.exe
2015-03-11 21:17:19 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-03-11 21:17:19 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2015-03-11 21:17:18 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2015-03-11 21:17:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2015-03-11 21:17:18 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2015-03-11 21:17:17 ----A---- C:\Windows\system32\WMPDMC.exe
2015-03-11 21:17:17 ----A---- C:\Windows\system32\StructuredQuery.dll
2015-03-11 21:17:17 ----A---- C:\Windows\system32\gdi32.dll
2015-03-11 21:17:16 ----A---- C:\Windows\system32\sqlceqp40.dll
2015-03-11 21:17:16 ----A---- C:\Windows\system32\propsys.dll
2015-03-11 21:17:15 ----A---- C:\Windows\system32\termsrv.dll
2015-03-11 21:17:15 ----A---- C:\Windows\system32\mfnetcore.dll
2015-03-11 21:17:14 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2015-03-11 21:17:13 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 21:17:11 ----A---- C:\Windows\system32\wevtsvc.dll
2015-03-11 21:17:11 ----A---- C:\Windows\system32\uxtheme.dll
2015-03-11 21:17:10 ----A---- C:\Windows\SYSWOW64\pla.dll
2015-03-11 21:17:09 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 21:17:08 ----A---- C:\Windows\SYSWOW64\psapi.dll
2015-03-11 21:17:08 ----A---- C:\Windows\SYSWOW64\mmc.exe
2015-03-11 21:17:07 ----A---- C:\Windows\system32\wlansvc.dll
2015-03-11 21:17:07 ----A---- C:\Windows\system32\qmgr.dll
2015-03-11 21:17:07 ----A---- C:\Windows\system32\KernelBase.dll
2015-03-11 21:17:06 ----A---- C:\Windows\system32\VSSVC.exe
2015-03-11 21:17:06 ----A---- C:\Windows\system32\msdtctm.dll
2015-03-11 21:17:06 ----A---- C:\Windows\system32\mispace.dll
2015-03-11 21:17:05 ----A---- C:\Windows\system32\WebcamUi.dll
2015-03-11 21:17:04 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-03-11 21:17:04 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-03-11 21:17:04 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2015-03-11 21:17:03 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2015-03-11 21:17:03 ----A---- C:\Windows\system32\dbghelp.dll
2015-03-11 21:17:02 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2015-03-11 21:17:02 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-03-11 21:17:01 ----A---- C:\Windows\system32\devinv.dll
2015-03-11 21:17:00 ----A---- C:\Windows\system32\aepdu.dll
2015-03-11 21:16:59 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-03-11 21:16:58 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-03-11 21:16:57 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2015-03-11 21:16:57 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2015-03-11 21:16:56 ----A---- C:\Windows\system32\mf.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\uDWM.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\RacEngn.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\aeinv.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\winhttp.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\schedsvc.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\lsm.dll
2015-03-11 21:16:53 ----A---- C:\Windows\SYSWOW64\sbe.dll
2015-03-11 21:16:53 ----A---- C:\Windows\system32\sysmain.dll
2015-03-11 21:16:52 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2015-03-11 21:16:52 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 21:16:52 ----A---- C:\Windows\system32\cdosys.dll
2015-03-11 21:16:51 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2015-03-11 21:16:51 ----A---- C:\Windows\system32\WMADMOD.DLL
2015-03-11 21:16:51 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-03-11 21:16:50 ----A---- C:\Windows\SYSWOW64\mispace.dll
2015-03-11 21:16:49 ----A---- C:\Windows\system32\twinapi.dll
2015-03-11 21:16:48 ----A---- C:\Windows\SYSWOW64\sqlceqp40.dll
2015-03-11 21:16:48 ----A---- C:\Windows\system32\wmdrmdev.dll
2015-03-11 21:16:47 ----A---- C:\Windows\system32\SearchIndexer.exe
2015-03-11 21:16:47 ----A---- C:\Windows\system32\ncryptsslp.dll
2015-03-11 21:16:46 ----A---- C:\Windows\SYSWOW64\propsys.dll
2015-03-11 21:16:46 ----A---- C:\Windows\system32\ogldrv.dll
2015-03-11 21:16:46 ----A---- C:\Windows\system32\mfds.dll
2015-03-11 21:16:45 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-03-11 21:16:45 ----A---- C:\Windows\system32\SettingSyncCore.dll
2015-03-11 21:16:44 ----A---- C:\Windows\system32\WWAHost.exe
2015-03-11 21:16:44 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2015-03-11 21:16:43 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2015-03-11 21:16:43 ----A---- C:\Windows\system32\mspaint.exe
2015-03-11 21:16:42 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2015-03-11 21:16:42 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2015-03-11 21:16:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-03-11 21:16:41 ----A---- C:\Windows\system32\riched20.dll
2015-03-11 21:16:38 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2015-03-11 21:16:38 ----A---- C:\Windows\system32\MrmIndexer.dll
2015-03-11 21:16:36 ----A---- C:\Windows\system32\generaltel.dll
2015-03-11 21:16:34 ----A---- C:\Windows\system32\evr.dll
2015-03-11 21:16:34 ----A---- C:\Windows\system32\comdlg32.dll
2015-03-11 21:16:33 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2015-03-11 21:16:33 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 21:16:32 ----A---- C:\Windows\system32\spoolsv.exe
2015-03-11 21:16:32 ----A---- C:\Windows\system32\odbc32.dll
2015-03-11 21:16:31 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2015-03-11 21:16:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-03-11 21:16:31 ----A---- C:\Windows\system32\msTextPrediction.dll
2015-03-11 21:16:30 ----A---- C:\Windows\system32\duser.dll
2015-03-11 21:16:29 ----A---- C:\Windows\system32\CPFilters.dll
2015-03-11 21:16:26 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-11 21:16:26 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2015-03-11 21:16:25 ----A---- C:\Windows\system32\SettingSync.dll
2015-03-11 21:16:25 ----A---- C:\Windows\system32\dnsapi.dll
2015-03-11 21:16:24 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2015-03-11 21:16:23 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 21:16:23 ----A---- C:\Windows\system32\WinSync.dll
2015-03-11 21:16:23 ----A---- C:\Windows\system32\SettingSyncHost.exe
2015-03-11 21:16:22 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2015-03-11 21:16:22 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-03-11 21:16:21 ----A---- C:\Windows\system32\RecoveryDrive.exe
2015-03-11 21:16:20 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2015-03-11 21:16:20 ----A---- C:\Windows\system32\WSDApi.dll
2015-03-11 21:16:19 ----A---- C:\Windows\SYSWOW64\ogldrv.dll
2015-03-11 21:16:19 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2015-03-11 21:16:18 ----A---- C:\Windows\system32\wdc.dll
2015-03-11 21:16:17 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2015-03-11 21:16:17 ----A---- C:\Windows\system32\fveapi.dll
2015-03-11 21:16:16 ----A---- C:\Windows\system32\setupapi.dll
2015-03-11 21:16:15 ----A---- C:\Windows\SYSWOW64\d3d8.dll
2015-03-11 21:16:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2015-03-11 21:16:12 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2015-03-11 21:16:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-03-11 21:16:11 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2015-03-11 21:16:10 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2015-03-11 21:16:07 ----A---- C:\Windows\system32\provcore.dll
2015-03-11 21:16:06 ----A---- C:\Windows\SYSWOW64\riched20.dll
2015-03-11 21:16:05 ----A---- C:\Windows\system32\wpdshext.dll
2015-03-11 21:16:04 ----A---- C:\Windows\system32\BFE.DLL
2015-03-11 21:16:03 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2015-03-11 21:16:02 ----A---- C:\Windows\system32\WavDest.dll
2015-03-11 21:16:01 ----A---- C:\Windows\system32\qedit.dll
2015-03-11 21:16:00 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2015-03-11 21:15:59 ----A---- C:\Windows\system32\PurchaseWindowsLicense.dll
2015-03-11 21:15:57 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-03-11 21:15:57 ----A---- C:\Windows\system32\defragsvc.dll
2015-03-11 21:15:56 ----A---- C:\Windows\SYSWOW64\wdc.dll
2015-03-11 21:15:55 ----A---- C:\Windows\system32\reseteng.dll
2015-03-11 21:15:54 ----A---- C:\Windows\system32\wmdrmnet.dll
2015-03-11 21:15:54 ----A---- C:\Windows\system32\samsrv.dll
2015-03-11 21:15:53 ----A---- C:\Windows\system32\WinTypes.dll
2015-03-11 21:15:51 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2015-03-11 21:15:49 ----A---- C:\Windows\system32\msdtcprx.dll
2015-03-11 21:15:48 ----A---- C:\Windows\system32\vssapi.dll
2015-03-11 21:15:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-03-11 21:15:47 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-03-11 21:15:45 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2015-03-11 21:15:43 ----A---- C:\Windows\system32\Taskmgr.exe
2015-03-11 21:15:42 ----A---- C:\Windows\system32\wbengine.exe
2015-03-11 21:15:42 ----A---- C:\Windows\system32\clbcatq.dll
2015-03-11 21:15:42 ----A---- C:\Windows\system32\autoconv.exe
2015-03-11 21:15:40 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2015-03-11 21:15:40 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2015-03-11 21:15:39 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2015-03-11 21:15:39 ----A---- C:\Windows\system32\Windows.Networking.dll
2015-03-11 21:15:38 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2015-03-11 21:15:38 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-03-11 21:15:38 ----A---- C:\Windows\system32\d3d10level9.dll
2015-03-11 21:15:38 ----A---- C:\Windows\system32\AppReadiness.dll
2015-03-11 21:15:37 ----A---- C:\Windows\system32\perftrack.dll
2015-03-11 21:15:37 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-03-11 21:15:37 ----A---- C:\Windows\system32\comuid.dll
2015-03-11 21:15:36 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 21:15:35 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\netlogon.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\mfsvr.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-03-11 21:15:33 ----A---- C:\Windows\SYSWOW64\mfds.dll
2015-03-11 21:15:33 ----A---- C:\Windows\system32\WUDFx.dll
2015-03-11 21:15:32 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2015-03-11 21:15:32 ----A---- C:\Windows\SYSWOW64\comuid.dll
2015-03-11 21:15:32 ----A---- C:\Windows\system32\wpncore.dll
2015-03-11 21:15:31 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2015-03-11 21:15:31 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2015-03-11 21:15:29 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-03-11 21:15:19 ----A---- C:\Windows\system32\MSWB70804.dll
2015-03-11 21:15:15 ----A---- C:\Windows\system32\MSWB70404.dll
2015-03-11 21:15:11 ----A---- C:\Windows\system32\MSWB70011.dll
2015-03-11 21:15:08 ----A---- C:\Windows\system32\MSWB7001E.dll
2015-03-11 21:14:57 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2015-03-11 21:14:54 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2015-03-11 21:14:50 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2015-03-11 21:14:46 ----A---- C:\Windows\system32\MMDevAPI.dll
2015-03-11 21:14:40 ----A---- C:\Windows\system32\sqlsrv32.dll
2015-03-11 21:14:36 ----A---- C:\Windows\SYSWOW64\duser.dll
2015-03-11 21:14:29 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-03-11 21:14:27 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2015-03-11 21:14:20 ----A---- C:\Windows\SYSWOW64\xpssvcs.dll
2015-03-11 21:14:13 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-03-11 21:14:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2015-03-11 21:14:10 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-03-11 21:14:09 ----A---- C:\Windows\system32\printui.dll
2015-03-11 21:14:06 ----A---- C:\Windows\system32\sqlcese40.dll
2015-03-11 21:14:02 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2015-03-11 21:13:54 ----A---- C:\Windows\system32\es.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\EncDec.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\dxgi.dll
2015-03-11 21:13:52 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-03-11 21:13:52 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2015-03-11 21:13:52 ----A---- C:\Windows\system32\WMVSDECD.DLL
2015-03-11 21:13:52 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\WUDFx02000.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\rasapi32.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\mfreadwrite.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\imapi2fs.dll
2015-03-11 21:13:50 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2015-03-11 21:13:50 ----A---- C:\Windows\SYSWOW64\WinSync.dll
2015-03-11 21:13:50 ----A---- C:\Windows\system32\wiaservc.dll
2015-03-11 21:13:49 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 21:13:49 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\psisdecd.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\dcomp.dll
2015-03-11 21:13:48 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\Windows.Web.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\usercpl.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\untfs.dll
2015-03-11 21:13:47 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2015-03-11 21:13:47 ----A---- C:\Windows\SYSWOW64\printui.dll
2015-03-11 21:13:47 ----A---- C:\Windows\system32\dsound.dll
2015-03-11 21:13:46 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\werconcpl.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\MPSSVC.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\appinfo.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\XpsRasterService.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\vpnike.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\gameux.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\aclui.dll
2015-03-11 21:13:44 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\lpksetup.exe
2015-03-11 21:13:44 ----A---- C:\Windows\system32\FXSCOMEX.dll
2015-03-11 21:13:43 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2015-03-11 21:13:43 ----A---- C:\Windows\system32\NL7Data0011.dll
2015-03-11 21:13:43 ----A---- C:\Windows\system32\hgcpl.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\untfs.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2015-03-11 21:13:42 ----A---- C:\Windows\system32\wlidcli.dll
2015-03-11 21:13:42 ----A---- C:\Windows\system32\PrintDialogs.dll
2015-03-11 21:13:41 ----A---- C:\Windows\SYSWOW64\clbcatq.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\secproc_isv.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\secproc.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\certmgr.dll
2015-03-11 21:13:40 ----A---- C:\Windows\SYSWOW64\sqlcese40.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\wsecedit.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\tsmf.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\tdh.dll
2015-03-11 21:13:39 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2015-03-11 21:13:39 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\sxs.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\opengl32.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\kernel32.dll
2015-03-11 21:13:38 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2015-03-11 21:13:37 ----A---- C:\Windows\system32\WMADMOE.DLL
2015-03-11 21:13:36 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-03-11 21:13:36 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2015-03-11 21:13:36 ----A---- C:\Windows\system32\SyncCenter.dll
2015-03-11 21:13:35 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\netprofmsvc.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\msdrm.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\gpedit.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\mssph.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\aclui.dll
2015-03-11 21:13:34 ----A---- C:\Windows\system32\services.exe
2015-03-11 21:13:33 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2015-03-11 21:13:33 ----A---- C:\Windows\system32\wlidprov.dll
2015-03-11 21:13:33 ----A---- C:\Windows\HelpPane.exe
2015-03-11 21:13:32 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-03-11 21:13:32 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-03-11 21:13:32 ----A---- C:\Windows\system32\drivers\acpi.sys
2015-03-11 21:13:31 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2015-03-11 21:13:31 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\wiaaut.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\UIAnimation.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\tpmvsc.dll
2015-03-11 21:13:30 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2015-03-11 21:13:30 ----A---- C:\Windows\SYSWOW64\dsound.dll
2015-03-11 21:13:30 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2015-03-11 21:13:29 ----A---- C:\Windows\SYSWOW64\es.dll
2015-03-11 21:13:29 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-03-11 21:13:29 ----A---- C:\Windows\system32\vds.exe
2015-03-11 21:13:29 ----A---- C:\Windows\system32\catsrvut.dll
2015-03-11 21:13:28 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\Windows.UI.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\upnphost.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\mssph.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\FirewallAPI.dll
2015-03-11 21:13:27 ----A---- C:\Windows\SYSWOW64\ddraw.dll
2015-03-11 21:13:27 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2015-03-11 21:13:26 ----A---- C:\Windows\SYSWOW64\sxs.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\Wldap32.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\swprv.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\mswmdm.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\MDEServer.exe
2015-03-11 21:13:25 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2015-03-11 21:13:25 ----A---- C:\Windows\system32\hnetcfg.dll
2015-03-11 21:13:25 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-03-11 21:13:25 ----A---- C:\Windows\system32\advapi32.dll
2015-03-11 21:13:24 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-03-11 21:13:24 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2015-03-11 21:13:24 ----A---- C:\Windows\system32\difxapi.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\opengl32.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2015-03-11 21:13:23 ----A---- C:\Windows\system32\webio.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70804.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70404.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB7001E.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70011.dll
2015-03-11 21:13:21 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\msra.exe
2015-03-11 21:13:21 ----A---- C:\Windows\system32\Display.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\ddraw.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\certutil.exe
2015-03-11 21:13:20 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2015-03-11 21:13:20 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-03-11 21:13:20 ----A---- C:\Windows\system32\netshell.dll
2015-03-11 21:13:19 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\wwanconn.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\wevtapi.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\oleacc.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\DMRServer.exe
2015-03-11 21:13:19 ----A---- C:\Windows\system32\aepic.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData0816.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData0416.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData001d.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\NlsData0414.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\NlsData0010.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\catsrv.dll
2015-03-11 21:13:16 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\netcfgx.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\CompPkgSup.dll
2015-03-11 21:13:15 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\wvc.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\wbemcomn.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-03-11 21:13:15 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2015-03-11 21:13:14 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-03-11 21:13:14 ----A---- C:\Windows\system32\themecpl.dll
2015-03-11 21:13:14 ----A---- C:\Windows\system32\sdohlp.dll
2015-03-11 21:13:13 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-03-11 21:13:13 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-03-11 21:13:13 ----A---- C:\Windows\system32\mswsock.dll
2015-03-11 21:13:13 ----A---- C:\Windows\system32\AppxPackaging.dll
2015-03-11 21:13:12 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2015-03-11 21:13:12 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-03-11 21:13:12 ----A---- C:\Windows\system32\themeui.dll
2015-03-11 21:13:12 ----A---- C:\Windows\system32\ipnathlp.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-03-11 21:13:11 ----A---- C:\Windows\system32\tapi3.dll
2015-03-11 21:13:10 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-03-11 21:13:10 ----A---- C:\Windows\SYSWOW64\mswmdm.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\provsvc.dll
2015-03-11 21:13:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\RMActivate.exe
2015-03-11 21:13:09 ----A---- C:\Windows\system32\rdvvmtransport.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\ninput.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\ipsmsnap.dll
2015-03-11 21:13:08 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2015-03-11 21:13:08 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2015-03-11 21:13:08 ----A---- C:\Windows\system32\vmrdvcore.dll
2015-03-11 21:13:08 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-03-11 21:13:07 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-03-11 21:13:07 ----A---- C:\Windows\system32\SyncInfrastructure.dll
2015-03-11 21:13:07 ----A---- C:\Windows\system32\fvewiz.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\themeui.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\catsrv.dll
2015-03-11 21:13:06 ----A---- C:\Windows\system32\wcncsvc.dll
2015-03-11 21:13:05 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2015-03-11 21:13:05 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2015-03-11 21:13:05 ----A---- C:\Windows\system32\wmpeffects.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\upnp.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\NlsData0007.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\imapi2.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\bdesvc.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2015-03-11 21:13:03 ----A---- C:\Windows\system32\WFS.exe
2015-03-11 21:13:03 ----A---- C:\Windows\system32\mdmregistration.dll
2015-03-11 21:13:03 ----A---- C:\Windows\system32\MDMAgent.exe
2015-03-11 21:13:02 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2015-03-11 21:13:02 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2015-03-11 21:13:02 ----A---- C:\Windows\system32\dhcpcore.dll
2015-03-11 21:13:01 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2015-03-11 21:13:01 ----A---- C:\Windows\system32\NlsData000d.dll
2015-03-11 21:13:01 ----A---- C:\Windows\system32\NlsData0009.dll
2015-03-11 21:13:01 ----A---- C:\Windows\system32\BCP47Langs.dll
2015-03-11 21:13:00 ----A---- C:\Windows\SYSWOW64\netshell.dll
2015-03-11 21:13:00 ----A---- C:\Windows\system32\StikyNot.exe
2015-03-11 21:13:00 ----A---- C:\Windows\system32\ntshrui.dll
2015-03-11 21:12:59 ----A---- C:\Windows\SYSWOW64\tapi3.dll
2015-03-11 21:12:59 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2015-03-11 21:12:59 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-03-11 21:12:58 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2015-03-11 21:12:58 ----A---- C:\Windows\SYSWOW64\mscms.dll
2015-03-11 21:12:58 ----A---- C:\Windows\system32\SensorsApi.dll
2015-03-11 21:12:58 ----A---- C:\Windows\system32\azroles.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\provcore.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-03-11 21:12:57 ----A---- C:\Windows\system32\mssvp.dll
2015-03-11 21:12:57 ----A---- C:\Windows\system32\livessp.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\wisp.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\msls31.dll
2015-03-11 21:12:55 ----A---- C:\Windows\SYSWOW64\Display.dll
2015-03-11 21:12:55 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\usbmon.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\shsvcs.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\DscCore.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-03-11 21:12:54 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2015-03-11 21:12:53 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 21:12:53 ----A---- C:\Windows\system32\wlangpui.dll
2015-03-11 21:12:52 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2015-03-11 21:12:52 ----A---- C:\Windows\system32\NlsData000c.dll
2015-03-11 21:12:52 ----A---- C:\Windows\system32\NlsData000a.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\AppxApplicabilityEngine.dll
2015-03-11 21:12:51 ----A---- C:\Windows\system32\mstsc.exe
2015-03-11 21:12:50 ----A---- C:\Windows\SYSWOW64\ninput.dll
2015-03-11 21:12:50 ----A---- C:\Windows\system32\w32time.dll
2015-03-11 21:12:50 ----A---- C:\Windows\system32\d3d10.dll
2015-03-11 21:12:49 ----A---- C:\Windows\SYSWOW64\upnp.dll
2015-03-11 21:12:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-03-11 21:12:49 ----A---- C:\Windows\system32\SessEnv.dll
2015-03-11 21:12:49 ----A---- C:\Windows\system32\offfilt.dll
2015-03-11 21:12:48 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-03-11 21:12:48 ----A---- C:\Windows\system32\objsel.dll
2015-03-11 21:12:48 ----A---- C:\Windows\system32\NL7Data0404.dll
2015-03-11 21:12:47 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2015-03-11 21:12:47 ----A---- C:\Windows\system32\Windows.Networking.Proximity.dll
2015-03-11 21:12:46 ----A---- C:\Windows\SYSWOW64\NL7Data0011.dll
2015-03-11 21:12:46 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2015-03-11 21:12:46 ----A---- C:\Windows\system32\glmf32.dll
2015-03-11 21:12:46 ----A---- C:\Windows\system32\apphelp.dll
2015-03-11 21:12:45 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-03-11 21:12:45 ----A---- C:\Windows\system32\iassdo.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\NL7Data0804.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\framedynos.dll
2015-03-11 21:12:43 ----A---- C:\Windows\SYSWOW64\NlsData0009.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\WWanAPI.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\Windows.Graphics.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\osk.exe
2015-03-11 21:12:42 ----A---- C:\Windows\SYSWOW64\wevtapi.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\wbiosrvc.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\srvsvc.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\rasmans.dll
2015-03-11 21:12:41 ----A---- C:\Windows\SYSWOW64\winsku.dll
2015-03-11 21:12:41 ----A---- C:\Windows\SYSWOW64\azroles.dll
2015-03-11 21:12:41 ----A---- C:\Windows\system32\qasf.dll
2015-03-11 21:12:41 ----A---- C:\Windows\system32\mscms.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\msdt.exe
2015-03-11 21:12:40 ----A---- C:\Windows\system32\rdpencom.dll
2015-03-11 21:12:39 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2015-03-11 21:12:39 ----A---- C:\Windows\SYSWOW64\d3dim700.dll
2015-03-11 21:12:39 ----A---- C:\Windows\system32\VAN.dll
2015-03-11 21:12:39 ----A---- C:\Windows\system32\sechost.dll
2015-03-11 21:12:38 ----A---- C:\Windows\SYSWOW64\rasdlg.dll
2015-03-11 21:12:38 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2015-03-11 21:12:38 ----A---- C:\Windows\system32\netprofm.dll
2015-03-11 21:12:38 ----A---- C:\Windows\system32\azroleui.dll
2015-03-11 21:12:37 ----A---- C:\Windows\SYSWOW64\wvc.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WPDSp.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WMASF.DLL
2015-03-11 21:12:37 ----A---- C:\Windows\system32\wcmsvc.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\DaOtpCredentialProvider.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\winsta.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\msdri.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\MFPlay.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\LocationApi.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2015-03-11 21:12:35 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-03-11 21:12:35 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2015-03-11 21:12:35 ----A---- C:\Windows\system32\taskeng.exe
2015-03-11 21:12:35 ----A---- C:\Windows\system32\FXSCOMPOSE.dll
2015-03-11 21:12:34 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2015-03-11 21:12:34 ----A---- C:\Windows\system32\WUDFHost.exe
2015-03-11 21:12:34 ----A---- C:\Windows\system32\WLanConn.dll
2015-03-11 21:12:33 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\WmpDui.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\TetheringMgr.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\filemgmt.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\efscore.dll
2015-03-11 21:12:32 ----A---- C:\Windows\SYSWOW64\wisp.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\wmicmiplugin.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\wlansec.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\msdelta.dll
2015-03-11 21:12:31 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2015-03-11 21:12:31 ----A---- C:\Windows\system32\rasgcw.dll
2015-03-11 21:12:31 ----A---- C:\Windows\system32\DfpCommon.dll
2015-03-11 21:12:30 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2015-03-11 21:12:30 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-03-11 21:12:30 ----A---- C:\Windows\system32\NlsData0002.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0027.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0026.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0024.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData001b.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0018.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData000f.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0003.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData0c1a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData081a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData001a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\ncryptprov.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\ws2_32.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\winsku.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\taskcomp.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData004a.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0047.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0046.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0039.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0020.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004e.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004c.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004b.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData0045.dll
2015-03-11 21:12:24 ----A---- C:\Windows\SYSWOW64\SyncInfrastructure.dll
2015-03-11 21:12:24 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\xwizards.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\NlsData0049.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\msvcrt.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\conhost.exe
2015-03-11 21:12:23 ----A---- C:\Windows\SYSWOW64\sdohlp.dll
2015-03-11 21:12:23 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\ProximityService.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\pnidui.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\mftranscode.dll
2015-03-11 21:12:22 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\pcsvDevice.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData003e.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData002a.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData0022.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData0021.dll
2015-03-11 21:12:21 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2015-03-11 21:12:21 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2015-03-11 21:12:21 ----A---- C:\Windows\system32\Windows.System.Profile.HardwareId.dll
2015-03-11 21:12:21 ----A---- C:\Windows\system32\ActionCenter.dll
2015-03-11 21:12:20 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-03-11 21:12:20 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\qdv.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\mfdvdec.dll
2015-03-11 21:12:19 ----A---- C:\Windows\system32\xmllite.dll
2015-03-11 21:12:19 ----A---- C:\Windows\system32\diskraid.exe
2015-03-11 21:12:18 ----A---- C:\Windows\SYSWOW64\WMASF.DLL
2015-03-11 21:12:18 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2015-03-11 21:12:18 ----A---- C:\Windows\system32\stobject.dll
2015-03-11 21:12:18 ----A---- C:\Windows\system32\msdt.exe
2015-03-11 21:12:18 ----A---- C:\Windows\system32\dnsrslvr.dll
2015-03-11 21:12:17 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2015-03-11 21:12:17 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2015-03-11 21:12:17 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-03-11 21:12:17 ----A---- C:\Windows\system32\netdiagfx.dll
2015-03-11 21:12:16 ----A---- C:\Windows\SYSWOW64\NlsData0007.dll
2015-03-11 21:12:16 ----A---- C:\Windows\system32\winlogon.exe
2015-03-11 21:12:16 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 21:12:15 ----A---- C:\Windows\SYSWOW64\Windows.Devices.PointOfService.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\sti.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\pnrpsvc.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\msvcp60.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\DxpTaskSync.dll
2015-03-11 21:12:14 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2015-03-11 21:12:14 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2015-03-11 21:12:14 ----A---- C:\Windows\system32\PCPTpm12.dll
2015-03-11 21:12:14 ----A---- C:\Windows\system32\fhcfg.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-03-11 21:12:13 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-03-11 21:12:12 ----A---- C:\Windows\SYSWOW64\offfilt.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\ReInfo.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\ReAgent.dll
2015-03-11 21:12:11 ----A---- C:\Windows\SYSWOW64\ipsecsnp.dll
2015-03-11 21:12:11 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2015-03-11 21:12:11 ----A---- C:\Windows\system32\drivers\spaceport.sys
2015-03-11 21:12:10 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2015-03-11 21:12:10 ----A---- C:\Windows\system32\wlanpref.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\termmgr.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\IasMigPlugin.dll
2015-03-11 21:12:09 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2015-03-11 21:12:09 ----A---- C:\Windows\SYSWOW64\mftranscode.dll
2015-03-11 21:12:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2015-03-11 21:12:09 ----A---- C:\Windows\system32\sharemediacpl.dll
2015-03-11 21:12:09 ----A---- C:\Windows\system32\dlnashext.dll
2015-03-11 21:12:08 ----A---- C:\Windows\SYSWOW64\glmf32.dll
2015-03-11 21:12:08 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2015-03-11 21:12:08 ----A---- C:\Windows\system32\ssdpsrv.dll
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\sensrsvc.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\qdv.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\mfdvdec.dll
2015-03-11 21:12:06 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2015-03-11 21:12:06 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2015-03-11 21:12:06 ----A---- C:\Windows\system32\mscandui.dll
2015-03-11 21:12:05 ----A---- C:\Windows\SYSWOW64\ncryptprov.dll
2015-03-11 21:12:05 ----A---- C:\Windows\SYSWOW64\dmime.dll
2015-03-11 21:12:05 ----A---- C:\Windows\system32\wpnapps.dll
2015-03-11 21:12:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-03-11 21:12:05 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2015-03-11 21:12:04 ----A---- C:\Windows\SYSWOW64\VAN.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\wincorlib.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\d3d10core.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-03-11 21:12:03 ----A---- C:\Windows\SYSWOW64\Windows.System.Profile.HardwareId.dll
2015-03-11 21:12:03 ----A---- C:\Windows\SYSWOW64\NlsData000a.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\wlanmsm.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-03-11 21:12:02 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2015-03-11 21:12:02 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\Windows.ApplicationModel.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\rsaenh.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\DXP.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Proximity.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-03-11 21:12:01 ----A---- C:\Windows\system32\P2PGraph.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2015-03-11 21:12:00 ----A---- C:\Windows\system32\rasppp.dll
2015-03-11 21:12:00 ----A---- C:\Windows\system32\icsvc.dll
2015-03-11 21:11:59 ----A---- C:\Windows\SYSWOW64\NlsData0416.dll
2015-03-11 21:11:59 ----A---- C:\Windows\SYSWOW64\NlsData001d.dll
2015-03-11 21:11:59 ----A---- C:\Windows\system32\wwanmm.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0816.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0414.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0010.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\msdelta.dll
2015-03-11 21:11:57 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-03-11 21:11:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2015-03-11 21:11:57 ----A---- C:\Windows\system32\nettrace.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\qasf.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\mscandui.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\d3dim.dll
2015-03-11 21:11:56 ----A---- C:\Windows\system32\WMVXENCD.DLL
2015-03-11 21:11:56 ----A---- C:\Windows\system32\DisplaySwitch.exe
2015-03-11 21:11:55 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\Windows.Devices.Geolocation.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\PlayToDevice.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\energy.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\bisrv.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\P2PGraph.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\NlsData000d.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2015-03-11 21:11:54 ----A---- C:\Windows\system32\fhengine.dll
2015-03-11 21:11:53 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2015-03-11 21:11:53 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-03-11 21:11:52 ----A---- C:\Windows\system32\WinSATAPI.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\spwizeng.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\comsnap.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\cmd.exe
2015-03-11 21:11:52 ----A---- C:\Windows\system32\clusapi.dll
2015-03-11 21:11:51 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2015-03-11 21:11:51 ----A---- C:\Windows\system32\SensorsClassExtension.dll
2015-03-11 21:11:51 ----A---- C:\Windows\system32\msvproc.dll
2015-03-11 21:11:50 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-03-11 21:11:50 ----A---- C:\Windows\system32\shlwapi.dll
2015-03-11 21:11:50 ----A---- C:\Windows\system32\ipsecsnp.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\Windows.Media.MediaControl.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2015-03-11 21:11:49 ----A---- C:\Windows\system32\rpchttp.dll
2015-03-11 21:11:49 ----A---- C:\Windows\system32\iasnap.dll
2015-03-11 21:11:48 ----A---- C:\Windows\SYSWOW64\iassdo.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\wmvdspa.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\WlanMM.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\resutils.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\rdpendp.dll
2015-03-11 21:11:47 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-03-11 21:11:47 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2015-03-11 21:11:47 ----A---- C:\Windows\system32\MSVideoDSP.dll
2015-03-11 21:11:46 ----A---- C:\Windows\SYSWOW64\stobject.dll
2015-03-11 21:11:46 ----A---- C:\Windows\SYSWOW64\sti.dll
2015-03-11 21:11:46 ----A---- C:\Windows\system32\sqlceoledb40.dll
2015-03-11 21:11:45 ----A---- C:\Windows\system32\SystemSettingsRemoveDevice.exe
2015-03-11 21:11:45 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-03-11 21:11:45 ----A---- C:\Windows\system32\mbsmsapi.dll
2015-03-11 21:11:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2015-03-11 21:11:45 ----A---- C:\Windows\system32\CameraSettingsUIHost.exe
2015-03-11 21:11:44 ----A---- C:\Windows\SYSWOW64\NlsData000c.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\bdeunlock.exe
2015-03-11 21:11:43 ----A---- C:\Windows\SYSWOW64\DaOtpCredentialProvider.dll
2015-03-11 21:11:43 ----A---- C:\Windows\system32\mprapi.dll
2015-03-11 21:11:43 ----A---- C:\Windows\system32\authfwcfg.dll
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\resutils.dll
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2015-03-11 21:11:42 ----A---- C:\Windows\system32\mfh264enc.dll
2015-03-11 21:11:41 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2015-03-11 21:11:41 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-03-11 21:11:41 ----A---- C:\Windows\system32\scecli.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\dwmredir.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\activeds.dll
2015-03-11 21:11:40 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-03-11 21:11:40 ----A---- C:\Windows\system32\msutb.dll
2015-03-11 21:11:40 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 21:11:34 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2015-03-11 21:11:25 ----A---- C:\Windows\system32\Dxpserver.exe
2015-03-11 21:11:05 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-03-11 21:11:04 ----A---- C:\Windows\system32\cfgmgr32.dll
2015-03-11 21:11:03 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2015-03-11 21:11:03 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\prncache.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\netjoin.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\hgprint.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\devmgr.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2015-03-11 21:11:02 ----A---- C:\Windows\system32\lltdsvc.dll
2015-03-11 21:11:02 ----A---- C:\Windows\system32\lltdapi.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\xwizards.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\msutb.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\devmgr.dll
2015-03-11 21:11:01 ----A---- C:\Windows\system32\wdscore.dll
2015-03-11 21:11:01 ----A---- C:\Windows\system32\MP4SDECD.DLL
2015-03-11 21:11:01 ----A---- C:\Windows\system32\localsec.dll
2015-03-11 21:11:00 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\pdh.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\certreq.exe
2015-03-11 21:10:58 ----A---- C:\Windows\system32\NL7Data001E.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\wmvdspa.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\scecli.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2015-03-11 21:10:57 ----A---- C:\Windows\system32\QAGENTRT.DLL
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\NL7Data0404.dll
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2015-03-11 21:10:56 ----A---- C:\Windows\system32\CryptoWinRT.dll
2015-03-11 21:10:55 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\wlidcredprov.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\vaultsvc.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\rastls.dll
2015-03-11 21:10:54 ----A---- C:\Windows\SYSWOW64\efscore.dll
2015-03-11 21:10:54 ----A---- C:\Windows\SYSWOW64\DisplaySwitch.exe
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan Gajdoš at 2015-03-26 18:39:06
Microsoft Windows 8.1
System drive C: has 469 GB (50%) free of 936 GB
Total RAM: 8083 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:39:09, on 26. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Games\Steam\Steam.exe
C:\Program Files\Avast\AvastUI.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
C:\Games\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Jan Gajdoš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Games\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Utility\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Quick Access RadioMgr Service (RMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10071 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
taskeng.exe {1FBD199F-BCF8-4FF4-8A84-D153A451C5D2}
taskhostex.exe
C:\Windows\Explorer.EXE
dashost.exe {341d4620-142d-42e0-9c273de89ea85c8d}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
ngservice.exe pipeserver
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
igfxHK.exe
"C:\Program Files\Acer\Acer Quick Access\RMSvc.exe"
igfxTray.exe
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
"C:\Windows\system32\igfxEM.exe" -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 476d0770-2fd3-4c59-9e2c-8fee374cc625 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe" -hide
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe" "C:\Users\Jan Gajdoš\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent" S-1-5-21-797806389-755523996-813433815-1001 456 470 "C:\ProgramData\acer\CCD"
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Games\Steam\Steam.exe" -silent
"C:\Program Files\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe"
"C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Games\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan Gajdoš\AppData\Local\Steam\htmlcache" -steampid 2700 -buildid 1427176184 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jan Gajdoš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan Gajdoš\AppData\Roaming\Mozilla\Firefox\Profiles\mcubtl9g.default
prefs.js - "browser.startup.homepage" - "http://www.centrum.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE64.dll [2015-03-24 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-21 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Avast\aswWebRepIE.dll [2015-03-24 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-21 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10 13671640]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-01-16 2585928]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-01-16 1514528]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [2014-06-26 1168896]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-01-23 31090272]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Steam"=C:\Games\Steam\steam.exe [2015-03-24 2888896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Avast\AvastUI.exe [2015-03-24 5512912]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-12 65280]
"abDocsDllLoader"=C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [2015-03-04 90880]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [2014-02-26 134784]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-26 10:45:12 ----D---- C:\Program Files (x86)\Google
2015-03-26 09:04:33 ----D---- C:\rsit
2015-03-25 22:39:34 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-03-25 22:38:52 ----D---- C:\ProgramData\Malwarebytes
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-03-25 22:38:52 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-03-25 19:29:56 ----D---- C:\AdwCleaner
2015-03-25 16:49:03 ----D---- C:\Program Files\trend micro
2015-03-24 14:27:46 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-24 14:22:03 ----D---- C:\Users\Jan Gajdoš\AppData\Roaming\Identities
2015-03-24 14:05:20 ----D---- C:\0fda6aec4d0b5cd5224f18e7170aa5a6
2015-03-24 14:02:17 ----D---- C:\Windows\%LOCALAPPDATA%
2015-03-24 14:01:53 ----SD---- C:\Windows\system32\CompatTel
2015-03-24 13:49:59 ----A---- C:\Windows\system32\aswBoot.exe
2015-03-24 13:49:50 ----A---- C:\Windows\avastSS.scr
2015-03-21 09:38:11 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-18 11:19:36 ----D---- C:\ProgramData\NVIDIA
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nvshext.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshextr.dll
2015-03-18 11:19:32 ----A---- C:\Windows\system32\nv3dappshext.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvvsvc.exe
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvcr.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvsvc64.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvmctray.dll
2015-03-18 11:19:31 ----A---- C:\Windows\system32\nvcpl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvinitx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\nvapi64.dll
2015-03-18 11:17:59 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-03-11 21:19:55 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-11 21:19:51 ----A---- C:\Windows\system32\drivers\swenum.sys
2015-03-11 21:19:37 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-03-11 21:19:37 ----A---- C:\Windows\system32\msihnd.dll
2015-03-11 21:19:32 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-03-11 21:19:26 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-03-11 21:19:25 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-03-11 21:19:21 ----A---- C:\Windows\system32\packager.dll
2015-03-11 21:19:21 ----A---- C:\Windows\system32\msxml3.dll
2015-03-11 21:19:20 ----A---- C:\Windows\system32\wuaueng.dll
2015-03-11 21:19:19 ----A---- C:\Windows\system32\consent.exe
2015-03-11 21:19:18 ----A---- C:\Windows\system32\msi.dll
2015-03-11 21:19:17 ----A---- C:\Windows\system32\dpapisrv.dll
2015-03-11 21:19:14 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2015-03-11 21:19:11 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 21:19:02 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 21:18:54 ----A---- C:\Windows\system32\twinui.dll
2015-03-11 21:18:53 ----A---- C:\Windows\system32\WSService.dll
2015-03-11 21:18:53 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2015-03-11 21:18:52 ----A---- C:\Windows\SYSWOW64\twinui.dll
2015-03-11 21:18:50 ----A---- C:\Windows\system32\mstscax.dll
2015-03-11 21:18:49 ----A---- C:\Windows\system32\glcndFilter.dll
2015-03-11 21:18:48 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-03-11 21:18:47 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2015-03-11 21:18:46 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-03-11 21:18:45 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-03-11 21:18:43 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2015-03-11 21:18:40 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-03-11 21:18:40 ----A---- C:\Windows\system32\rdpclip.exe
2015-03-11 21:18:39 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-03-11 21:18:39 ----A---- C:\Windows\system32\rdpinput.exe
2015-03-11 21:18:39 ----A---- C:\Windows\system32\rdpcore.dll
2015-03-11 21:18:38 ----A---- C:\Windows\system32\UIRibbon.dll
2015-03-11 21:18:38 ----A---- C:\Windows\system32\d2d1.dll
2015-03-11 21:18:37 ----A---- C:\Windows\system32\mfcore.dll
2015-03-11 21:18:36 ----A---- C:\Windows\system32\tquery.dll
2015-03-11 21:18:34 ----A---- C:\Windows\system32\xpsrchvw.exe
2015-03-11 21:18:34 ----A---- C:\Windows\system32\XpsFilt.dll
2015-03-11 21:18:34 ----A---- C:\Windows\system32\msxml6.dll
2015-03-11 21:18:33 ----A---- C:\Windows\system32\mssrch.dll
2015-03-11 21:18:32 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2015-03-11 21:18:32 ----A---- C:\Windows\system32\WMVCORE.DLL
2015-03-11 21:18:31 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-03-11 21:18:31 ----A---- C:\Windows\system32\dbgeng.dll
2015-03-11 21:18:29 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2015-03-11 21:18:29 ----A---- C:\Windows\system32\MSVidCtl.dll
2015-03-11 21:18:28 ----A---- C:\Windows\system32\esent.dll
2015-03-11 21:18:27 ----A---- C:\Windows\system32\xpsservices.dll
2015-03-11 21:18:27 ----A---- C:\Windows\system32\XpsPrint.dll
2015-03-11 21:18:26 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-03-11 21:18:25 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-03-11 21:18:25 ----A---- C:\Windows\system32\SettingsHandlers.dll
2015-03-11 21:18:24 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-03-11 21:18:24 ----A---- C:\Windows\system32\user32.dll
2015-03-11 21:18:24 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-03-11 21:18:22 ----A---- C:\Windows\system32\WsmSvc.dll
2015-03-11 21:18:21 ----A---- C:\Windows\SYSWOW64\WMVCORE.DLL
2015-03-11 21:18:21 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-03-11 21:18:21 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2015-03-11 21:18:20 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-03-11 21:18:20 ----A---- C:\Windows\system32\d3d10warp.dll
2015-03-11 21:18:19 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-03-11 21:18:18 ----A---- C:\Windows\system32\WpcMon.exe
2015-03-11 21:18:18 ----A---- C:\Windows\system32\combase.dll
2015-03-11 21:18:17 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-03-11 21:18:17 ----A---- C:\Windows\system32\Wpc.dll
2015-03-11 21:18:16 ----A---- C:\Windows\system32\d3d11.dll
2015-03-11 21:18:15 ----A---- C:\Windows\system32\d3d9.dll
2015-03-11 21:18:13 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2015-03-11 21:18:12 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-03-11 21:18:12 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-03-11 21:18:11 ----A---- C:\Windows\system32\WpcWebSync.dll
2015-03-11 21:18:11 ----A---- C:\Windows\system32\mmcndmgr.dll
2015-03-11 21:18:09 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-03-11 21:18:08 ----A---- C:\Windows\system32\DWrite.dll
2015-03-11 21:18:08 ----A---- C:\Windows\system32\drivers\storport.sys
2015-03-11 21:18:07 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2015-03-11 21:18:06 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-03-11 21:18:06 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-03-11 21:18:05 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-03-11 21:18:05 ----A---- C:\Windows\SYSWOW64\d3d9.dll
2015-03-11 21:18:05 ----A---- C:\Windows\system32\wuapp.exe
2015-03-11 21:18:05 ----A---- C:\Windows\system32\ole32.dll
2015-03-11 21:18:04 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-03-11 21:18:04 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wuwebv.dll
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wudriver.dll
2015-03-11 21:18:04 ----A---- C:\Windows\system32\wuauclt.exe
2015-03-11 21:18:03 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wucltux.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wuapi.dll
2015-03-11 21:18:03 ----A---- C:\Windows\system32\wuaext.dll
2015-03-11 21:18:02 ----A---- C:\Windows\system32\SearchFolder.dll
2015-03-11 21:18:01 ----A---- C:\Windows\SYSWOW64\combase.dll
2015-03-11 21:18:01 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-03-11 21:17:59 ----A---- C:\Windows\system32\wmpmde.dll
2015-03-11 21:17:59 ----A---- C:\Windows\system32\winmde.dll
2015-03-11 21:17:58 ----A---- C:\Windows\system32\storagewmi.dll
2015-03-11 21:17:58 ----A---- C:\Windows\system32\rpcrt4.dll
2015-03-11 21:17:57 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2015-03-11 21:17:57 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\workfolderssvc.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\OpcServices.dll
2015-03-11 21:17:56 ----A---- C:\Windows\system32\dui70.dll
2015-03-11 21:17:54 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-03-11 21:17:54 ----A---- C:\Windows\system32\gpsvc.dll
2015-03-11 21:17:53 ----A---- C:\Windows\system32\CertEnroll.dll
2015-03-11 21:17:52 ----A---- C:\Windows\system32\wlidsvc.dll
2015-03-11 21:17:52 ----A---- C:\Windows\system32\mfnetsrc.dll
2015-03-11 21:17:51 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2015-03-11 21:17:50 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2015-03-11 21:17:50 ----A---- C:\Windows\system32\SRH.dll
2015-03-11 21:17:49 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 21:17:47 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2015-03-11 21:17:46 ----A---- C:\Windows\system32\twinui.appcore.dll
2015-03-11 21:17:46 ----A---- C:\Windows\system32\taskschd.dll
2015-03-11 21:17:45 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2015-03-11 21:17:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-03-11 21:17:45 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2015-03-11 21:17:44 ----A---- C:\Windows\SYSWOW64\mmcndmgr.dll
2015-03-11 21:17:44 ----A---- C:\Windows\SYSWOW64\dui70.dll
2015-03-11 21:17:43 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-03-11 21:17:43 ----A---- C:\Windows\system32\WMVENCOD.DLL
2015-03-11 21:17:41 ----A---- C:\Windows\SYSWOW64\WMVENCOD.DLL
2015-03-11 21:17:41 ----A---- C:\Windows\system32\webservices.dll
2015-03-11 21:17:41 ----A---- C:\Windows\system32\GdiPlus.dll
2015-03-11 21:17:40 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 21:17:39 ----A---- C:\Windows\SYSWOW64\winmde.dll
2015-03-11 21:17:39 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2015-03-11 21:17:37 ----A---- C:\Windows\SYSWOW64\SearchFolder.dll
2015-03-11 21:17:37 ----A---- C:\Windows\system32\UIAutomationCore.dll
2015-03-11 21:17:36 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2015-03-11 21:17:34 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2015-03-11 21:17:34 ----A---- C:\Windows\system32\mmc.exe
2015-03-11 21:17:33 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-03-11 21:17:33 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 21:17:33 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-03-11 21:17:32 ----A---- C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-03-11 21:17:31 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2015-03-11 21:17:31 ----A---- C:\Windows\system32\wpccpl.dll
2015-03-11 21:17:31 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2015-03-11 21:17:30 ----A---- C:\Windows\system32\MFMediaEngine.dll
2015-03-11 21:17:30 ----A---- C:\Windows\system32\diagperf.dll
2015-03-11 21:17:29 ----A---- C:\Windows\system32\Windows.Media.dll
2015-03-11 21:17:29 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 21:17:28 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2015-03-11 21:17:28 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2015-03-11 21:17:27 ----A---- C:\Windows\system32\xpssvcs.dll
2015-03-11 21:17:27 ----A---- C:\Windows\system32\comsvcs.dll
2015-03-11 21:17:26 ----A---- C:\Windows\system32\mfsrcsnk.dll
2015-03-11 21:17:25 ----A---- C:\Windows\SYSWOW64\xpsservices.dll
2015-03-11 21:17:25 ----A---- C:\Windows\SYSWOW64\twinui.appcore.dll
2015-03-11 21:17:25 ----A---- C:\Windows\system32\sbe.dll
2015-03-11 21:17:24 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 21:17:23 ----A---- C:\Windows\SYSWOW64\webservices.dll
2015-03-11 21:17:23 ----A---- C:\Windows\system32\rpcss.dll
2015-03-11 21:17:22 ----A---- C:\Windows\SYSWOW64\SRH.dll
2015-03-11 21:17:22 ----A---- C:\Windows\system32\FntCache.dll
2015-03-11 21:17:21 ----A---- C:\Windows\system32\WMNetMgr.dll
2015-03-11 21:17:21 ----A---- C:\Windows\system32\pla.dll
2015-03-11 21:17:20 ----A---- C:\Windows\system32\WinSAT.exe
2015-03-11 21:17:19 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2015-03-11 21:17:19 ----A---- C:\Windows\SYSWOW64\OpcServices.dll
2015-03-11 21:17:18 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2015-03-11 21:17:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2015-03-11 21:17:18 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2015-03-11 21:17:17 ----A---- C:\Windows\system32\WMPDMC.exe
2015-03-11 21:17:17 ----A---- C:\Windows\system32\StructuredQuery.dll
2015-03-11 21:17:17 ----A---- C:\Windows\system32\gdi32.dll
2015-03-11 21:17:16 ----A---- C:\Windows\system32\sqlceqp40.dll
2015-03-11 21:17:16 ----A---- C:\Windows\system32\propsys.dll
2015-03-11 21:17:15 ----A---- C:\Windows\system32\termsrv.dll
2015-03-11 21:17:15 ----A---- C:\Windows\system32\mfnetcore.dll
2015-03-11 21:17:14 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2015-03-11 21:17:13 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 21:17:11 ----A---- C:\Windows\system32\wevtsvc.dll
2015-03-11 21:17:11 ----A---- C:\Windows\system32\uxtheme.dll
2015-03-11 21:17:10 ----A---- C:\Windows\SYSWOW64\pla.dll
2015-03-11 21:17:09 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 21:17:08 ----A---- C:\Windows\SYSWOW64\psapi.dll
2015-03-11 21:17:08 ----A---- C:\Windows\SYSWOW64\mmc.exe
2015-03-11 21:17:07 ----A---- C:\Windows\system32\wlansvc.dll
2015-03-11 21:17:07 ----A---- C:\Windows\system32\qmgr.dll
2015-03-11 21:17:07 ----A---- C:\Windows\system32\KernelBase.dll
2015-03-11 21:17:06 ----A---- C:\Windows\system32\VSSVC.exe
2015-03-11 21:17:06 ----A---- C:\Windows\system32\msdtctm.dll
2015-03-11 21:17:06 ----A---- C:\Windows\system32\mispace.dll
2015-03-11 21:17:05 ----A---- C:\Windows\system32\WebcamUi.dll
2015-03-11 21:17:04 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-03-11 21:17:04 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2015-03-11 21:17:04 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2015-03-11 21:17:03 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2015-03-11 21:17:03 ----A---- C:\Windows\system32\dbghelp.dll
2015-03-11 21:17:02 ----A---- C:\Windows\system32\Windows.Web.Http.dll
2015-03-11 21:17:02 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-03-11 21:17:01 ----A---- C:\Windows\system32\devinv.dll
2015-03-11 21:17:00 ----A---- C:\Windows\system32\aepdu.dll
2015-03-11 21:16:59 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2015-03-11 21:16:58 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-03-11 21:16:57 ----A---- C:\Windows\SYSWOW64\WMPDMC.exe
2015-03-11 21:16:57 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2015-03-11 21:16:56 ----A---- C:\Windows\system32\mf.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\uDWM.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\RacEngn.dll
2015-03-11 21:16:55 ----A---- C:\Windows\system32\aeinv.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\winhttp.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\schedsvc.dll
2015-03-11 21:16:54 ----A---- C:\Windows\system32\lsm.dll
2015-03-11 21:16:53 ----A---- C:\Windows\SYSWOW64\sbe.dll
2015-03-11 21:16:53 ----A---- C:\Windows\system32\sysmain.dll
2015-03-11 21:16:52 ----A---- C:\Windows\SYSWOW64\WMNetMgr.dll
2015-03-11 21:16:52 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 21:16:52 ----A---- C:\Windows\system32\cdosys.dll
2015-03-11 21:16:51 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2015-03-11 21:16:51 ----A---- C:\Windows\system32\WMADMOD.DLL
2015-03-11 21:16:51 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-03-11 21:16:50 ----A---- C:\Windows\SYSWOW64\mispace.dll
2015-03-11 21:16:49 ----A---- C:\Windows\system32\twinapi.dll
2015-03-11 21:16:48 ----A---- C:\Windows\SYSWOW64\sqlceqp40.dll
2015-03-11 21:16:48 ----A---- C:\Windows\system32\wmdrmdev.dll
2015-03-11 21:16:47 ----A---- C:\Windows\system32\SearchIndexer.exe
2015-03-11 21:16:47 ----A---- C:\Windows\system32\ncryptsslp.dll
2015-03-11 21:16:46 ----A---- C:\Windows\SYSWOW64\propsys.dll
2015-03-11 21:16:46 ----A---- C:\Windows\system32\ogldrv.dll
2015-03-11 21:16:46 ----A---- C:\Windows\system32\mfds.dll
2015-03-11 21:16:45 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-03-11 21:16:45 ----A---- C:\Windows\system32\SettingSyncCore.dll
2015-03-11 21:16:44 ----A---- C:\Windows\system32\WWAHost.exe
2015-03-11 21:16:44 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2015-03-11 21:16:43 ----A---- C:\Windows\SYSWOW64\WMADMOD.DLL
2015-03-11 21:16:43 ----A---- C:\Windows\system32\mspaint.exe
2015-03-11 21:16:42 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2015-03-11 21:16:42 ----A---- C:\Windows\SYSWOW64\dbghelp.dll
2015-03-11 21:16:41 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-03-11 21:16:41 ----A---- C:\Windows\system32\riched20.dll
2015-03-11 21:16:38 ----A---- C:\Windows\SYSWOW64\NaturalLanguage6.dll
2015-03-11 21:16:38 ----A---- C:\Windows\system32\MrmIndexer.dll
2015-03-11 21:16:36 ----A---- C:\Windows\system32\generaltel.dll
2015-03-11 21:16:34 ----A---- C:\Windows\system32\evr.dll
2015-03-11 21:16:34 ----A---- C:\Windows\system32\comdlg32.dll
2015-03-11 21:16:33 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2015-03-11 21:16:33 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 21:16:32 ----A---- C:\Windows\system32\spoolsv.exe
2015-03-11 21:16:32 ----A---- C:\Windows\system32\odbc32.dll
2015-03-11 21:16:31 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2015-03-11 21:16:31 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-03-11 21:16:31 ----A---- C:\Windows\system32\msTextPrediction.dll
2015-03-11 21:16:30 ----A---- C:\Windows\system32\duser.dll
2015-03-11 21:16:29 ----A---- C:\Windows\system32\CPFilters.dll
2015-03-11 21:16:26 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-11 21:16:26 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2015-03-11 21:16:25 ----A---- C:\Windows\system32\SettingSync.dll
2015-03-11 21:16:25 ----A---- C:\Windows\system32\dnsapi.dll
2015-03-11 21:16:24 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2015-03-11 21:16:23 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 21:16:23 ----A---- C:\Windows\system32\WinSync.dll
2015-03-11 21:16:23 ----A---- C:\Windows\system32\SettingSyncHost.exe
2015-03-11 21:16:22 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2015-03-11 21:16:22 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-03-11 21:16:21 ----A---- C:\Windows\system32\RecoveryDrive.exe
2015-03-11 21:16:20 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2015-03-11 21:16:20 ----A---- C:\Windows\system32\WSDApi.dll
2015-03-11 21:16:19 ----A---- C:\Windows\SYSWOW64\ogldrv.dll
2015-03-11 21:16:19 ----A---- C:\Windows\SYSWOW64\comdlg32.dll
2015-03-11 21:16:18 ----A---- C:\Windows\system32\wdc.dll
2015-03-11 21:16:17 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2015-03-11 21:16:17 ----A---- C:\Windows\system32\fveapi.dll
2015-03-11 21:16:16 ----A---- C:\Windows\system32\setupapi.dll
2015-03-11 21:16:15 ----A---- C:\Windows\SYSWOW64\d3d8.dll
2015-03-11 21:16:14 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2015-03-11 21:16:12 ----A---- C:\Windows\SYSWOW64\wmdrmdev.dll
2015-03-11 21:16:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-03-11 21:16:11 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2015-03-11 21:16:10 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2015-03-11 21:16:07 ----A---- C:\Windows\system32\provcore.dll
2015-03-11 21:16:06 ----A---- C:\Windows\SYSWOW64\riched20.dll
2015-03-11 21:16:05 ----A---- C:\Windows\system32\wpdshext.dll
2015-03-11 21:16:04 ----A---- C:\Windows\system32\BFE.DLL
2015-03-11 21:16:03 ----A---- C:\Windows\SYSWOW64\SettingSyncCore.dll
2015-03-11 21:16:02 ----A---- C:\Windows\system32\WavDest.dll
2015-03-11 21:16:01 ----A---- C:\Windows\system32\qedit.dll
2015-03-11 21:16:00 ----A---- C:\Windows\SYSWOW64\mspaint.exe
2015-03-11 21:15:59 ----A---- C:\Windows\system32\PurchaseWindowsLicense.dll
2015-03-11 21:15:57 ----A---- C:\Windows\system32\twinapi.appcore.dll
2015-03-11 21:15:57 ----A---- C:\Windows\system32\defragsvc.dll
2015-03-11 21:15:56 ----A---- C:\Windows\SYSWOW64\wdc.dll
2015-03-11 21:15:55 ----A---- C:\Windows\system32\reseteng.dll
2015-03-11 21:15:54 ----A---- C:\Windows\system32\wmdrmnet.dll
2015-03-11 21:15:54 ----A---- C:\Windows\system32\samsrv.dll
2015-03-11 21:15:53 ----A---- C:\Windows\system32\WinTypes.dll
2015-03-11 21:15:51 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2015-03-11 21:15:49 ----A---- C:\Windows\system32\msdtcprx.dll
2015-03-11 21:15:48 ----A---- C:\Windows\system32\vssapi.dll
2015-03-11 21:15:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-03-11 21:15:47 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-03-11 21:15:45 ----A---- C:\Windows\SYSWOW64\MSMPEG2ENC.DLL
2015-03-11 21:15:43 ----A---- C:\Windows\system32\Taskmgr.exe
2015-03-11 21:15:42 ----A---- C:\Windows\system32\wbengine.exe
2015-03-11 21:15:42 ----A---- C:\Windows\system32\clbcatq.dll
2015-03-11 21:15:42 ----A---- C:\Windows\system32\autoconv.exe
2015-03-11 21:15:40 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2015-03-11 21:15:40 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2015-03-11 21:15:39 ----A---- C:\Windows\SYSWOW64\MrmIndexer.dll
2015-03-11 21:15:39 ----A---- C:\Windows\system32\Windows.Networking.dll
2015-03-11 21:15:38 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2015-03-11 21:15:38 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-03-11 21:15:38 ----A---- C:\Windows\system32\d3d10level9.dll
2015-03-11 21:15:38 ----A---- C:\Windows\system32\AppReadiness.dll
2015-03-11 21:15:37 ----A---- C:\Windows\system32\perftrack.dll
2015-03-11 21:15:37 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-03-11 21:15:37 ----A---- C:\Windows\system32\comuid.dll
2015-03-11 21:15:36 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 21:15:35 ----A---- C:\Windows\SYSWOW64\Windows.Web.Http.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\netlogon.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\mfsvr.dll
2015-03-11 21:15:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-03-11 21:15:33 ----A---- C:\Windows\SYSWOW64\mfds.dll
2015-03-11 21:15:33 ----A---- C:\Windows\system32\WUDFx.dll
2015-03-11 21:15:32 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2015-03-11 21:15:32 ----A---- C:\Windows\SYSWOW64\comuid.dll
2015-03-11 21:15:32 ----A---- C:\Windows\system32\wpncore.dll
2015-03-11 21:15:31 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2015-03-11 21:15:31 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2015-03-11 21:15:29 ----A---- C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-03-11 21:15:19 ----A---- C:\Windows\system32\MSWB70804.dll
2015-03-11 21:15:15 ----A---- C:\Windows\system32\MSWB70404.dll
2015-03-11 21:15:11 ----A---- C:\Windows\system32\MSWB70011.dll
2015-03-11 21:15:08 ----A---- C:\Windows\system32\MSWB7001E.dll
2015-03-11 21:14:57 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2015-03-11 21:14:54 ----A---- C:\Windows\SYSWOW64\WSDApi.dll
2015-03-11 21:14:50 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2015-03-11 21:14:46 ----A---- C:\Windows\system32\MMDevAPI.dll
2015-03-11 21:14:40 ----A---- C:\Windows\system32\sqlsrv32.dll
2015-03-11 21:14:36 ----A---- C:\Windows\SYSWOW64\duser.dll
2015-03-11 21:14:29 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-03-11 21:14:27 ----A---- C:\Windows\SYSWOW64\WMADMOE.DLL
2015-03-11 21:14:20 ----A---- C:\Windows\SYSWOW64\xpssvcs.dll
2015-03-11 21:14:13 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-03-11 21:14:10 ----A---- C:\Windows\SYSWOW64\WMSPDMOD.DLL
2015-03-11 21:14:10 ----A---- C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-03-11 21:14:09 ----A---- C:\Windows\system32\printui.dll
2015-03-11 21:14:06 ----A---- C:\Windows\system32\sqlcese40.dll
2015-03-11 21:14:02 ----A---- C:\Windows\SYSWOW64\autoconv.exe
2015-03-11 21:13:54 ----A---- C:\Windows\system32\es.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\sqlsrv32.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\msdtcprx.dll
2015-03-11 21:13:53 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\Windows.Graphics.Printing.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\EncDec.dll
2015-03-11 21:13:53 ----A---- C:\Windows\system32\dxgi.dll
2015-03-11 21:13:52 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-03-11 21:13:52 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2015-03-11 21:13:52 ----A---- C:\Windows\system32\WMVSDECD.DLL
2015-03-11 21:13:52 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\WUDFx02000.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\rasapi32.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\mfreadwrite.dll
2015-03-11 21:13:51 ----A---- C:\Windows\system32\imapi2fs.dll
2015-03-11 21:13:50 ----A---- C:\Windows\SYSWOW64\wmdrmnet.dll
2015-03-11 21:13:50 ----A---- C:\Windows\SYSWOW64\WinSync.dll
2015-03-11 21:13:50 ----A---- C:\Windows\system32\wiaservc.dll
2015-03-11 21:13:49 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 21:13:49 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\psisdecd.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-03-11 21:13:49 ----A---- C:\Windows\system32\dcomp.dll
2015-03-11 21:13:48 ----A---- C:\Windows\SYSWOW64\PortableDeviceApi.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\Windows.Web.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\usercpl.dll
2015-03-11 21:13:48 ----A---- C:\Windows\system32\untfs.dll
2015-03-11 21:13:47 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2015-03-11 21:13:47 ----A---- C:\Windows\SYSWOW64\printui.dll
2015-03-11 21:13:47 ----A---- C:\Windows\system32\dsound.dll
2015-03-11 21:13:46 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\werconcpl.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\MPSSVC.dll
2015-03-11 21:13:46 ----A---- C:\Windows\system32\appinfo.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\XpsRasterService.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\vpnike.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\gameux.dll
2015-03-11 21:13:45 ----A---- C:\Windows\system32\aclui.dll
2015-03-11 21:13:44 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 21:13:44 ----A---- C:\Windows\system32\lpksetup.exe
2015-03-11 21:13:44 ----A---- C:\Windows\system32\FXSCOMEX.dll
2015-03-11 21:13:43 ----A---- C:\Windows\SYSWOW64\netlogon.dll
2015-03-11 21:13:43 ----A---- C:\Windows\system32\NL7Data0011.dll
2015-03-11 21:13:43 ----A---- C:\Windows\system32\hgcpl.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\untfs.dll
2015-03-11 21:13:42 ----A---- C:\Windows\SYSWOW64\rasapi32.dll
2015-03-11 21:13:42 ----A---- C:\Windows\system32\wlidcli.dll
2015-03-11 21:13:42 ----A---- C:\Windows\system32\PrintDialogs.dll
2015-03-11 21:13:41 ----A---- C:\Windows\SYSWOW64\clbcatq.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\secproc_isv.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\secproc.dll
2015-03-11 21:13:41 ----A---- C:\Windows\system32\certmgr.dll
2015-03-11 21:13:40 ----A---- C:\Windows\SYSWOW64\sqlcese40.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\wsecedit.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\tsmf.dll
2015-03-11 21:13:40 ----A---- C:\Windows\system32\tdh.dll
2015-03-11 21:13:39 ----A---- C:\Windows\SYSWOW64\WMVSDECD.DLL
2015-03-11 21:13:39 ----A---- C:\Windows\SYSWOW64\imapi2fs.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\sxs.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\opengl32.dll
2015-03-11 21:13:39 ----A---- C:\Windows\system32\kernel32.dll
2015-03-11 21:13:38 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2015-03-11 21:13:37 ----A---- C:\Windows\system32\WMADMOE.DLL
2015-03-11 21:13:36 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-03-11 21:13:36 ----A---- C:\Windows\system32\WorkfoldersControl.dll
2015-03-11 21:13:36 ----A---- C:\Windows\system32\SyncCenter.dll
2015-03-11 21:13:35 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\netprofmsvc.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\msdrm.dll
2015-03-11 21:13:35 ----A---- C:\Windows\system32\gpedit.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\wmpeffects.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\mssph.dll
2015-03-11 21:13:34 ----A---- C:\Windows\SYSWOW64\aclui.dll
2015-03-11 21:13:34 ----A---- C:\Windows\system32\services.exe
2015-03-11 21:13:33 ----A---- C:\Windows\SYSWOW64\wsecedit.dll
2015-03-11 21:13:33 ----A---- C:\Windows\system32\wlidprov.dll
2015-03-11 21:13:33 ----A---- C:\Windows\HelpPane.exe
2015-03-11 21:13:32 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-03-11 21:13:32 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-03-11 21:13:32 ----A---- C:\Windows\system32\drivers\acpi.sys
2015-03-11 21:13:31 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2015-03-11 21:13:31 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\wiaaut.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\UIAnimation.dll
2015-03-11 21:13:31 ----A---- C:\Windows\system32\tpmvsc.dll
2015-03-11 21:13:30 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2015-03-11 21:13:30 ----A---- C:\Windows\SYSWOW64\dsound.dll
2015-03-11 21:13:30 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2015-03-11 21:13:29 ----A---- C:\Windows\SYSWOW64\es.dll
2015-03-11 21:13:29 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-03-11 21:13:29 ----A---- C:\Windows\system32\vds.exe
2015-03-11 21:13:29 ----A---- C:\Windows\system32\catsrvut.dll
2015-03-11 21:13:28 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\Windows.UI.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\upnphost.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\mssph.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 21:13:28 ----A---- C:\Windows\system32\FirewallAPI.dll
2015-03-11 21:13:27 ----A---- C:\Windows\SYSWOW64\ddraw.dll
2015-03-11 21:13:27 ----A---- C:\Windows\system32\SmartCardSimulator.dll
2015-03-11 21:13:26 ----A---- C:\Windows\SYSWOW64\sxs.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\Wldap32.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\swprv.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\mswmdm.dll
2015-03-11 21:13:26 ----A---- C:\Windows\system32\MDEServer.exe
2015-03-11 21:13:25 ----A---- C:\Windows\SYSWOW64\hgcpl.dll
2015-03-11 21:13:25 ----A---- C:\Windows\system32\hnetcfg.dll
2015-03-11 21:13:25 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-03-11 21:13:25 ----A---- C:\Windows\system32\advapi32.dll
2015-03-11 21:13:24 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-03-11 21:13:24 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2015-03-11 21:13:24 ----A---- C:\Windows\system32\difxapi.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\Windows.Web.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\opengl32.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2015-03-11 21:13:23 ----A---- C:\Windows\SYSWOW64\certmgr.dll
2015-03-11 21:13:23 ----A---- C:\Windows\system32\webio.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70804.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70404.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB7001E.dll
2015-03-11 21:13:22 ----A---- C:\Windows\SYSWOW64\MSWB70011.dll
2015-03-11 21:13:21 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\msra.exe
2015-03-11 21:13:21 ----A---- C:\Windows\system32\Display.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\ddraw.dll
2015-03-11 21:13:21 ----A---- C:\Windows\system32\certutil.exe
2015-03-11 21:13:20 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.Printing.dll
2015-03-11 21:13:20 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-03-11 21:13:20 ----A---- C:\Windows\system32\netshell.dll
2015-03-11 21:13:19 ----A---- C:\Windows\SYSWOW64\SyncCenter.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\wwanconn.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\wevtapi.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\oleacc.dll
2015-03-11 21:13:19 ----A---- C:\Windows\system32\DMRServer.exe
2015-03-11 21:13:19 ----A---- C:\Windows\system32\aepic.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData0816.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData0416.dll
2015-03-11 21:13:18 ----A---- C:\Windows\system32\NlsData001d.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\NlsData0414.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\NlsData0010.dll
2015-03-11 21:13:17 ----A---- C:\Windows\system32\catsrv.dll
2015-03-11 21:13:16 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\Windows.Devices.Usb.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\netcfgx.dll
2015-03-11 21:13:16 ----A---- C:\Windows\system32\CompPkgSup.dll
2015-03-11 21:13:15 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\wvc.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\wbemcomn.dll
2015-03-11 21:13:15 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-03-11 21:13:15 ----A---- C:\Windows\system32\AppxApplicabilityEngine.dll
2015-03-11 21:13:14 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-03-11 21:13:14 ----A---- C:\Windows\system32\themecpl.dll
2015-03-11 21:13:14 ----A---- C:\Windows\system32\sdohlp.dll
2015-03-11 21:13:13 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-03-11 21:13:13 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-03-11 21:13:13 ----A---- C:\Windows\system32\mswsock.dll
2015-03-11 21:13:13 ----A---- C:\Windows\system32\AppxPackaging.dll
2015-03-11 21:13:12 ----A---- C:\Windows\SYSWOW64\tsmf.dll
2015-03-11 21:13:12 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-03-11 21:13:12 ----A---- C:\Windows\system32\themeui.dll
2015-03-11 21:13:12 ----A---- C:\Windows\system32\ipnathlp.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\Wldap32.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\MSAC3ENC.DLL
2015-03-11 21:13:11 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-03-11 21:13:11 ----A---- C:\Windows\system32\tapi3.dll
2015-03-11 21:13:10 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-03-11 21:13:10 ----A---- C:\Windows\SYSWOW64\mswmdm.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\Windows.Devices.PointOfService.dll
2015-03-11 21:13:10 ----A---- C:\Windows\system32\provsvc.dll
2015-03-11 21:13:09 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\RMActivate.exe
2015-03-11 21:13:09 ----A---- C:\Windows\system32\rdvvmtransport.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\ninput.dll
2015-03-11 21:13:09 ----A---- C:\Windows\system32\ipsmsnap.dll
2015-03-11 21:13:08 ----A---- C:\Windows\SYSWOW64\provsvc.dll
2015-03-11 21:13:08 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2015-03-11 21:13:08 ----A---- C:\Windows\system32\vmrdvcore.dll
2015-03-11 21:13:08 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-03-11 21:13:07 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-03-11 21:13:07 ----A---- C:\Windows\system32\SyncInfrastructure.dll
2015-03-11 21:13:07 ----A---- C:\Windows\system32\fvewiz.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\themeui.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\hnetcfg.dll
2015-03-11 21:13:06 ----A---- C:\Windows\SYSWOW64\catsrv.dll
2015-03-11 21:13:06 ----A---- C:\Windows\system32\wcncsvc.dll
2015-03-11 21:13:05 ----A---- C:\Windows\SYSWOW64\Windows.Devices.SmartCards.dll
2015-03-11 21:13:05 ----A---- C:\Windows\SYSWOW64\PrintDialogs.dll
2015-03-11 21:13:05 ----A---- C:\Windows\system32\wmpeffects.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\upnp.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\NlsData0007.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\imapi2.dll
2015-03-11 21:13:04 ----A---- C:\Windows\system32\bdesvc.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\ReInfo.dll
2015-03-11 21:13:03 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2015-03-11 21:13:03 ----A---- C:\Windows\system32\WFS.exe
2015-03-11 21:13:03 ----A---- C:\Windows\system32\mdmregistration.dll
2015-03-11 21:13:03 ----A---- C:\Windows\system32\MDMAgent.exe
2015-03-11 21:13:02 ----A---- C:\Windows\SYSWOW64\Windows.UI.dll
2015-03-11 21:13:02 ----A---- C:\Windows\system32\PhotoScreensaver.scr
2015-03-11 21:13:02 ----A---- C:\Windows\system32\dhcpcore.dll
2015-03-11 21:13:01 ----A---- C:\Windows\SYSWOW64\WMSPDMOE.DLL
2015-03-11 21:13:01 ----A---- C:\Windows\system32\NlsData000d.dll
2015-03-11 21:13:01 ----A---- C:\Windows\system32\NlsData0009.dll
2015-03-11 21:13:01 ----A---- C:\Windows\system32\BCP47Langs.dll
2015-03-11 21:13:00 ----A---- C:\Windows\SYSWOW64\netshell.dll
2015-03-11 21:13:00 ----A---- C:\Windows\system32\StikyNot.exe
2015-03-11 21:13:00 ----A---- C:\Windows\system32\ntshrui.dll
2015-03-11 21:12:59 ----A---- C:\Windows\SYSWOW64\tapi3.dll
2015-03-11 21:12:59 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2015-03-11 21:12:59 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-03-11 21:12:58 ----A---- C:\Windows\SYSWOW64\themecpl.dll
2015-03-11 21:12:58 ----A---- C:\Windows\SYSWOW64\mscms.dll
2015-03-11 21:12:58 ----A---- C:\Windows\system32\SensorsApi.dll
2015-03-11 21:12:58 ----A---- C:\Windows\system32\azroles.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\wlidprov.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\provcore.dll
2015-03-11 21:12:57 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-03-11 21:12:57 ----A---- C:\Windows\system32\mssvp.dll
2015-03-11 21:12:57 ----A---- C:\Windows\system32\livessp.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\wisp.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-03-11 21:12:56 ----A---- C:\Windows\system32\msls31.dll
2015-03-11 21:12:55 ----A---- C:\Windows\SYSWOW64\Display.dll
2015-03-11 21:12:55 ----A---- C:\Windows\SYSWOW64\dcomp.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\usbmon.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\shsvcs.dll
2015-03-11 21:12:55 ----A---- C:\Windows\system32\DscCore.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\wiaaut.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-03-11 21:12:54 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-03-11 21:12:54 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2015-03-11 21:12:53 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 21:12:53 ----A---- C:\Windows\system32\wlangpui.dll
2015-03-11 21:12:52 ----A---- C:\Windows\SYSWOW64\wbemcomn.dll
2015-03-11 21:12:52 ----A---- C:\Windows\system32\NlsData000c.dll
2015-03-11 21:12:52 ----A---- C:\Windows\system32\NlsData000a.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\upnphost.dll
2015-03-11 21:12:51 ----A---- C:\Windows\SYSWOW64\AppxApplicabilityEngine.dll
2015-03-11 21:12:51 ----A---- C:\Windows\system32\mstsc.exe
2015-03-11 21:12:50 ----A---- C:\Windows\SYSWOW64\ninput.dll
2015-03-11 21:12:50 ----A---- C:\Windows\system32\w32time.dll
2015-03-11 21:12:50 ----A---- C:\Windows\system32\d3d10.dll
2015-03-11 21:12:49 ----A---- C:\Windows\SYSWOW64\upnp.dll
2015-03-11 21:12:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-03-11 21:12:49 ----A---- C:\Windows\system32\SessEnv.dll
2015-03-11 21:12:49 ----A---- C:\Windows\system32\offfilt.dll
2015-03-11 21:12:48 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-03-11 21:12:48 ----A---- C:\Windows\system32\objsel.dll
2015-03-11 21:12:48 ----A---- C:\Windows\system32\NL7Data0404.dll
2015-03-11 21:12:47 ----A---- C:\Windows\SYSWOW64\AppxPackaging.dll
2015-03-11 21:12:47 ----A---- C:\Windows\system32\Windows.Networking.Proximity.dll
2015-03-11 21:12:46 ----A---- C:\Windows\SYSWOW64\NL7Data0011.dll
2015-03-11 21:12:46 ----A---- C:\Windows\SYSWOW64\ipsmsnap.dll
2015-03-11 21:12:46 ----A---- C:\Windows\system32\glmf32.dll
2015-03-11 21:12:46 ----A---- C:\Windows\system32\apphelp.dll
2015-03-11 21:12:45 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-03-11 21:12:45 ----A---- C:\Windows\system32\iassdo.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\NL7Data0804.dll
2015-03-11 21:12:44 ----A---- C:\Windows\system32\framedynos.dll
2015-03-11 21:12:43 ----A---- C:\Windows\SYSWOW64\NlsData0009.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\WWanAPI.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\Windows.Graphics.dll
2015-03-11 21:12:43 ----A---- C:\Windows\system32\osk.exe
2015-03-11 21:12:42 ----A---- C:\Windows\SYSWOW64\wevtapi.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\wbiosrvc.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\srvsvc.dll
2015-03-11 21:12:42 ----A---- C:\Windows\system32\rasmans.dll
2015-03-11 21:12:41 ----A---- C:\Windows\SYSWOW64\winsku.dll
2015-03-11 21:12:41 ----A---- C:\Windows\SYSWOW64\azroles.dll
2015-03-11 21:12:41 ----A---- C:\Windows\system32\qasf.dll
2015-03-11 21:12:41 ----A---- C:\Windows\system32\mscms.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\wlangpui.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 21:12:40 ----A---- C:\Windows\SYSWOW64\msdt.exe
2015-03-11 21:12:40 ----A---- C:\Windows\system32\rdpencom.dll
2015-03-11 21:12:39 ----A---- C:\Windows\SYSWOW64\SessEnv.dll
2015-03-11 21:12:39 ----A---- C:\Windows\SYSWOW64\d3dim700.dll
2015-03-11 21:12:39 ----A---- C:\Windows\system32\VAN.dll
2015-03-11 21:12:39 ----A---- C:\Windows\system32\sechost.dll
2015-03-11 21:12:38 ----A---- C:\Windows\SYSWOW64\rasdlg.dll
2015-03-11 21:12:38 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2015-03-11 21:12:38 ----A---- C:\Windows\system32\netprofm.dll
2015-03-11 21:12:38 ----A---- C:\Windows\system32\azroleui.dll
2015-03-11 21:12:37 ----A---- C:\Windows\SYSWOW64\wvc.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WPDSp.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\WMASF.DLL
2015-03-11 21:12:37 ----A---- C:\Windows\system32\wcmsvc.dll
2015-03-11 21:12:37 ----A---- C:\Windows\system32\DaOtpCredentialProvider.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\winsta.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\Windows.Media.MediaControl.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\msdri.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\MFPlay.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\LocationApi.dll
2015-03-11 21:12:36 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2015-03-11 21:12:35 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-03-11 21:12:35 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2015-03-11 21:12:35 ----A---- C:\Windows\system32\taskeng.exe
2015-03-11 21:12:35 ----A---- C:\Windows\system32\FXSCOMPOSE.dll
2015-03-11 21:12:34 ----A---- C:\Windows\SYSWOW64\PhotoScreensaver.scr
2015-03-11 21:12:34 ----A---- C:\Windows\system32\WUDFHost.exe
2015-03-11 21:12:34 ----A---- C:\Windows\system32\WLanConn.dll
2015-03-11 21:12:33 ----A---- C:\Windows\SYSWOW64\XpsFilt.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\WmpDui.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\TetheringMgr.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\filemgmt.dll
2015-03-11 21:12:33 ----A---- C:\Windows\system32\efscore.dll
2015-03-11 21:12:32 ----A---- C:\Windows\SYSWOW64\wisp.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\wmicmiplugin.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\wlansec.dll
2015-03-11 21:12:32 ----A---- C:\Windows\system32\msdelta.dll
2015-03-11 21:12:31 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2015-03-11 21:12:31 ----A---- C:\Windows\system32\rasgcw.dll
2015-03-11 21:12:31 ----A---- C:\Windows\system32\DfpCommon.dll
2015-03-11 21:12:30 ----A---- C:\Windows\SYSWOW64\wimgapi.dll
2015-03-11 21:12:30 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-03-11 21:12:30 ----A---- C:\Windows\system32\NlsData0002.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0027.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0026.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0024.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData001b.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0018.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData000f.dll
2015-03-11 21:12:29 ----A---- C:\Windows\system32\NlsData0003.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData0c1a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData081a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\NlsData001a.dll
2015-03-11 21:12:28 ----A---- C:\Windows\system32\ncryptprov.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\ws2_32.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\winsku.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\taskcomp.dll
2015-03-11 21:12:27 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData004a.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0047.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0046.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0039.dll
2015-03-11 21:12:26 ----A---- C:\Windows\system32\NlsData0020.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004e.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004c.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData004b.dll
2015-03-11 21:12:25 ----A---- C:\Windows\system32\NlsData0045.dll
2015-03-11 21:12:24 ----A---- C:\Windows\SYSWOW64\SyncInfrastructure.dll
2015-03-11 21:12:24 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\xwizards.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\NlsData0049.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\msvcrt.dll
2015-03-11 21:12:24 ----A---- C:\Windows\system32\conhost.exe
2015-03-11 21:12:23 ----A---- C:\Windows\SYSWOW64\sdohlp.dll
2015-03-11 21:12:23 ----A---- C:\Windows\SYSWOW64\ncryptsslp.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\ProximityService.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\pnidui.dll
2015-03-11 21:12:23 ----A---- C:\Windows\system32\mftranscode.dll
2015-03-11 21:12:22 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\pcsvDevice.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData003e.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData002a.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData0022.dll
2015-03-11 21:12:22 ----A---- C:\Windows\system32\NlsData0021.dll
2015-03-11 21:12:21 ----A---- C:\Windows\SYSWOW64\shsvcs.dll
2015-03-11 21:12:21 ----A---- C:\Windows\SYSWOW64\framedynos.dll
2015-03-11 21:12:21 ----A---- C:\Windows\system32\Windows.System.Profile.HardwareId.dll
2015-03-11 21:12:21 ----A---- C:\Windows\system32\ActionCenter.dll
2015-03-11 21:12:20 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-03-11 21:12:20 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\qdv.dll
2015-03-11 21:12:19 ----A---- C:\Windows\SYSWOW64\mfdvdec.dll
2015-03-11 21:12:19 ----A---- C:\Windows\system32\xmllite.dll
2015-03-11 21:12:19 ----A---- C:\Windows\system32\diskraid.exe
2015-03-11 21:12:18 ----A---- C:\Windows\SYSWOW64\WMASF.DLL
2015-03-11 21:12:18 ----A---- C:\Windows\SYSWOW64\SensorsApi.dll
2015-03-11 21:12:18 ----A---- C:\Windows\system32\stobject.dll
2015-03-11 21:12:18 ----A---- C:\Windows\system32\msdt.exe
2015-03-11 21:12:18 ----A---- C:\Windows\system32\dnsrslvr.dll
2015-03-11 21:12:17 ----A---- C:\Windows\SYSWOW64\ws2_32.dll
2015-03-11 21:12:17 ----A---- C:\Windows\SYSWOW64\rasgcw.dll
2015-03-11 21:12:17 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-03-11 21:12:17 ----A---- C:\Windows\system32\netdiagfx.dll
2015-03-11 21:12:16 ----A---- C:\Windows\SYSWOW64\NlsData0007.dll
2015-03-11 21:12:16 ----A---- C:\Windows\system32\winlogon.exe
2015-03-11 21:12:16 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 21:12:15 ----A---- C:\Windows\SYSWOW64\Windows.Devices.PointOfService.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\sti.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\pnrpsvc.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\msvcp60.dll
2015-03-11 21:12:15 ----A---- C:\Windows\system32\DxpTaskSync.dll
2015-03-11 21:12:14 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2015-03-11 21:12:14 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2015-03-11 21:12:14 ----A---- C:\Windows\system32\PCPTpm12.dll
2015-03-11 21:12:14 ----A---- C:\Windows\system32\fhcfg.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Usb.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\prnfldr.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2015-03-11 21:12:13 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-03-11 21:12:13 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-03-11 21:12:12 ----A---- C:\Windows\SYSWOW64\offfilt.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\ReInfo.dll
2015-03-11 21:12:12 ----A---- C:\Windows\system32\ReAgent.dll
2015-03-11 21:12:11 ----A---- C:\Windows\SYSWOW64\ipsecsnp.dll
2015-03-11 21:12:11 ----A---- C:\Windows\SYSWOW64\filemgmt.dll
2015-03-11 21:12:11 ----A---- C:\Windows\system32\drivers\spaceport.sys
2015-03-11 21:12:10 ----A---- C:\Windows\SYSWOW64\mprapi.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2015-03-11 21:12:10 ----A---- C:\Windows\system32\wlanpref.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\termmgr.dll
2015-03-11 21:12:10 ----A---- C:\Windows\system32\IasMigPlugin.dll
2015-03-11 21:12:09 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2015-03-11 21:12:09 ----A---- C:\Windows\SYSWOW64\mftranscode.dll
2015-03-11 21:12:09 ----A---- C:\Windows\system32\WMVSENCD.DLL
2015-03-11 21:12:09 ----A---- C:\Windows\system32\sharemediacpl.dll
2015-03-11 21:12:09 ----A---- C:\Windows\system32\dlnashext.dll
2015-03-11 21:12:08 ----A---- C:\Windows\SYSWOW64\glmf32.dll
2015-03-11 21:12:08 ----A---- C:\Windows\system32\Windows.Networking.Vpn.dll
2015-03-11 21:12:08 ----A---- C:\Windows\system32\ssdpsrv.dll
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\MFWMAAEC.DLL
2015-03-11 21:12:07 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\sensrsvc.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\qdv.dll
2015-03-11 21:12:07 ----A---- C:\Windows\system32\mfdvdec.dll
2015-03-11 21:12:06 ----A---- C:\Windows\SYSWOW64\WLanConn.dll
2015-03-11 21:12:06 ----A---- C:\Windows\SYSWOW64\azroleui.dll
2015-03-11 21:12:06 ----A---- C:\Windows\system32\mscandui.dll
2015-03-11 21:12:05 ----A---- C:\Windows\SYSWOW64\ncryptprov.dll
2015-03-11 21:12:05 ----A---- C:\Windows\SYSWOW64\dmime.dll
2015-03-11 21:12:05 ----A---- C:\Windows\system32\wpnapps.dll
2015-03-11 21:12:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-03-11 21:12:05 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2015-03-11 21:12:04 ----A---- C:\Windows\SYSWOW64\VAN.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\wincorlib.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\d3d10core.dll
2015-03-11 21:12:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-03-11 21:12:03 ----A---- C:\Windows\SYSWOW64\Windows.System.Profile.HardwareId.dll
2015-03-11 21:12:03 ----A---- C:\Windows\SYSWOW64\NlsData000a.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\wlanmsm.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 21:12:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-03-11 21:12:02 ----A---- C:\Windows\SYSWOW64\WMVXENCD.DLL
2015-03-11 21:12:02 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\Windows.ApplicationModel.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\rsaenh.dll
2015-03-11 21:12:02 ----A---- C:\Windows\system32\DXP.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Proximity.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2015-03-11 21:12:01 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-03-11 21:12:01 ----A---- C:\Windows\system32\P2PGraph.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2015-03-11 21:12:00 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2015-03-11 21:12:00 ----A---- C:\Windows\system32\rasppp.dll
2015-03-11 21:12:00 ----A---- C:\Windows\system32\icsvc.dll
2015-03-11 21:11:59 ----A---- C:\Windows\SYSWOW64\NlsData0416.dll
2015-03-11 21:11:59 ----A---- C:\Windows\SYSWOW64\NlsData001d.dll
2015-03-11 21:11:59 ----A---- C:\Windows\system32\wwanmm.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0816.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0414.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\NlsData0010.dll
2015-03-11 21:11:58 ----A---- C:\Windows\SYSWOW64\msdelta.dll
2015-03-11 21:11:57 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-03-11 21:11:57 ----A---- C:\Windows\SYSWOW64\ActionCenter.dll
2015-03-11 21:11:57 ----A---- C:\Windows\system32\nettrace.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\rdpencom.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\qasf.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\mscandui.dll
2015-03-11 21:11:56 ----A---- C:\Windows\SYSWOW64\d3dim.dll
2015-03-11 21:11:56 ----A---- C:\Windows\system32\WMVXENCD.DLL
2015-03-11 21:11:56 ----A---- C:\Windows\system32\DisplaySwitch.exe
2015-03-11 21:11:55 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\Windows.Devices.Geolocation.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\PlayToDevice.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\energy.dll
2015-03-11 21:11:55 ----A---- C:\Windows\system32\bisrv.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\WMVSENCD.DLL
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\Windows.Graphics.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\P2PGraph.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\NlsData000d.dll
2015-03-11 21:11:54 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2015-03-11 21:11:54 ----A---- C:\Windows\system32\fhengine.dll
2015-03-11 21:11:53 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2015-03-11 21:11:53 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-03-11 21:11:52 ----A---- C:\Windows\system32\WinSATAPI.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\spwizeng.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\comsnap.dll
2015-03-11 21:11:52 ----A---- C:\Windows\system32\cmd.exe
2015-03-11 21:11:52 ----A---- C:\Windows\system32\clusapi.dll
2015-03-11 21:11:51 ----A---- C:\Windows\SYSWOW64\LocationApi.dll
2015-03-11 21:11:51 ----A---- C:\Windows\system32\SensorsClassExtension.dll
2015-03-11 21:11:51 ----A---- C:\Windows\system32\msvproc.dll
2015-03-11 21:11:50 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-03-11 21:11:50 ----A---- C:\Windows\system32\shlwapi.dll
2015-03-11 21:11:50 ----A---- C:\Windows\system32\ipsecsnp.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\Windows.Media.MediaControl.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-03-11 21:11:49 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2015-03-11 21:11:49 ----A---- C:\Windows\system32\rpchttp.dll
2015-03-11 21:11:49 ----A---- C:\Windows\system32\iasnap.dll
2015-03-11 21:11:48 ----A---- C:\Windows\SYSWOW64\iassdo.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\wmvdspa.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\WlanMM.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\resutils.dll
2015-03-11 21:11:48 ----A---- C:\Windows\system32\rdpendp.dll
2015-03-11 21:11:47 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-03-11 21:11:47 ----A---- C:\Windows\SYSWOW64\ksuser.dll
2015-03-11 21:11:47 ----A---- C:\Windows\system32\MSVideoDSP.dll
2015-03-11 21:11:46 ----A---- C:\Windows\SYSWOW64\stobject.dll
2015-03-11 21:11:46 ----A---- C:\Windows\SYSWOW64\sti.dll
2015-03-11 21:11:46 ----A---- C:\Windows\system32\sqlceoledb40.dll
2015-03-11 21:11:45 ----A---- C:\Windows\system32\SystemSettingsRemoveDevice.exe
2015-03-11 21:11:45 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-03-11 21:11:45 ----A---- C:\Windows\system32\mbsmsapi.dll
2015-03-11 21:11:45 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2015-03-11 21:11:45 ----A---- C:\Windows\system32\CameraSettingsUIHost.exe
2015-03-11 21:11:44 ----A---- C:\Windows\SYSWOW64\NlsData000c.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\MbaeApiPublic.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2015-03-11 21:11:44 ----A---- C:\Windows\system32\bdeunlock.exe
2015-03-11 21:11:43 ----A---- C:\Windows\SYSWOW64\DaOtpCredentialProvider.dll
2015-03-11 21:11:43 ----A---- C:\Windows\system32\mprapi.dll
2015-03-11 21:11:43 ----A---- C:\Windows\system32\authfwcfg.dll
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\resutils.dll
2015-03-11 21:11:42 ----A---- C:\Windows\SYSWOW64\dlnashext.dll
2015-03-11 21:11:42 ----A---- C:\Windows\system32\mfh264enc.dll
2015-03-11 21:11:41 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2015-03-11 21:11:41 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-03-11 21:11:41 ----A---- C:\Windows\system32\scecli.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\dwmredir.dll
2015-03-11 21:11:41 ----A---- C:\Windows\system32\activeds.dll
2015-03-11 21:11:40 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-03-11 21:11:40 ----A---- C:\Windows\system32\msutb.dll
2015-03-11 21:11:40 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 21:11:34 ----A---- C:\Windows\SYSWOW64\termmgr.dll
2015-03-11 21:11:25 ----A---- C:\Windows\system32\Dxpserver.exe
2015-03-11 21:11:05 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-03-11 21:11:04 ----A---- C:\Windows\system32\cfgmgr32.dll
2015-03-11 21:11:03 ----A---- C:\Windows\SYSWOW64\spwizeng.dll
2015-03-11 21:11:03 ----A---- C:\Windows\SYSWOW64\FirewallControlPanel.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\prncache.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\netjoin.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\hgprint.dll
2015-03-11 21:11:03 ----A---- C:\Windows\system32\devmgr.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\netjoin.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2015-03-11 21:11:02 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2015-03-11 21:11:02 ----A---- C:\Windows\system32\lltdsvc.dll
2015-03-11 21:11:02 ----A---- C:\Windows\system32\lltdapi.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\xwizards.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\msutb.dll
2015-03-11 21:11:01 ----A---- C:\Windows\SYSWOW64\devmgr.dll
2015-03-11 21:11:01 ----A---- C:\Windows\system32\wdscore.dll
2015-03-11 21:11:01 ----A---- C:\Windows\system32\MP4SDECD.DLL
2015-03-11 21:11:01 ----A---- C:\Windows\system32\localsec.dll
2015-03-11 21:11:00 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\shlwapi.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\pdh.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 21:10:58 ----A---- C:\Windows\SYSWOW64\certreq.exe
2015-03-11 21:10:58 ----A---- C:\Windows\system32\NL7Data001E.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\WPDSp.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\wmvdspa.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\scecli.dll
2015-03-11 21:10:57 ----A---- C:\Windows\SYSWOW64\DxpTaskSync.dll
2015-03-11 21:10:57 ----A---- C:\Windows\system32\QAGENTRT.DLL
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\WmpDui.dll
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\NL7Data0404.dll
2015-03-11 21:10:56 ----A---- C:\Windows\SYSWOW64\adsldp.dll
2015-03-11 21:10:56 ----A---- C:\Windows\system32\CryptoWinRT.dll
2015-03-11 21:10:55 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\wlidcredprov.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\vaultsvc.dll
2015-03-11 21:10:55 ----A---- C:\Windows\system32\rastls.dll
2015-03-11 21:10:54 ----A---- C:\Windows\SYSWOW64\efscore.dll
2015-03-11 21:10:54 ----A---- C:\Windows\SYSWOW64\DisplaySwitch.exe
Přispějete na provoz fóra?