kamarádka mi přinesla dceřin notebook, jestli bych ho mohl projet cleanrem, že je pomalý a hučí....jenomže IE je zahlcený ukrajinštinou a vyskakovacími okny, takže jsem byl rádm že jsem do něj dostal aspoň mozzilu, bo opera ani chrome nešel nainstalovat. Prosím o kontrolu logu a pomoc
Logfile of random's system information tool 1.10 (written by random/random)
Run by Marie at 2015-04-24 13:47:10
Microsoft Windows 8.1
System drive C: has 412 GB (89%) free of 463 GB
Total RAM: 3911 MB (7% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:47:19, on 24. 4. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\ProgramData\{601f9202-2ba8-a356-601f-f92022ba4808}\Avenged Sevenfold - Warmness On The Soul [Lyrics].exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Marie.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXW0V10LH0
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXW0V10LH0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&t ... XXW0V10LH0
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&t ... XXW0V10LH0
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: unnisaLeSS - {5d5774af-c82a-4ad7-ae9a-47a19df0bbf6} - C:\Program Files (x86)\unnisaLeSS\5J8dlG42zPkwpO.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: youtubeadblocker - {bcab8fc0-6021-470b-a2d5-62ec09253ef5} - C:\Program Files (x86)\youtubeadblocker\PLUZtthTRAEcx4.dll
O2 - BHO: ?????????? ???????? - {D5FEC983-01DB-414A-9456-AF95AC9ED7B5} - C:\Program Files (x86)\Yandex\FastDial\fastdialhost.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: ???????? ??????? - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\Elements\bartabhost.dll
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
O4 - HKCU\..\Run: [LiveSupport] "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
O4 - HKCU\..\Run: [WeatherBug] C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe
O4 - HKCU\..\Run: [YandexElements] "C:\Users\Marie\AppData\Local\Yandex\Elements\elements.exe\8.4.0.9140\elements64.exe" /auto
O4 - Startup: Avenged Sevenfold - Warmness On The Soul [Lyrics].lnk = C:\ProgramData\{601f9202-2ba8-a356-601f-f92022ba4808}\Avenged Sevenfold - Warmness On The Soul [Lyrics].exe
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\mcafee\msc\McAWFwk.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Acer Theft Shield Service (USecuAppSvc) - Acer Incorporated - c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
--
End of file - 12674 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
dashost.exe {a5062645-3512-48ac-abf7cde0c46a3a4d}
"C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe"
"C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\windows\system32\mfevtps.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe"
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\WINDOWS\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\WINDOWS\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\wbem\WmiApSrv.exe
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\ProgramData\{601f9202-2ba8-a356-601f-f92022ba4808}\Avenged Sevenfold - Warmness On The Soul [Lyrics].exe" --startup=1
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe"
"C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe"
"C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe"
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /shRequest
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe {CF10C3DD-7FC1-476f-8546-A12D7DA24BBF}|{1689f734-519b-43c6-83f5-6b85dbc36a8c}
C:\WINDOWS\splwow64.exe 8192
taskhost.exe
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5040 CREDAT:267521 /prefetch:2
"c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding
"C:\WINDOWS\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5040 CREDAT:4134148 /prefetch:2
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Users\Marie\AppData\Local\Yandex\Elements\elements.exe\8.4.0.9140\elements64.exe" /auto
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe19_ Global\UsGthrCtrlFltPipeMssGthrPipe19 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\Marie\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/?clid=6826"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL
C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\
2@y.co.uk
vb@yandex.ru
VqOEa@i.com
yasearch@yandex.ru
C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\
firmy.cz-120116.xml
mapy.cz-120116.xml
seznam.cz-120116.xml
videa.seznam.cz-120116.xml
yandex.xml
yqs-barff-yandex.xml
zbozi.cz-120116.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5d5774af-c82a-4ad7-ae9a-47a19df0bbf6}]
unnisaLeSS - C:\Program Files (x86)\unnisaLeSS\5J8dlG42zPkwpO.x64.dll [2015-02-07 708096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-11 64640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-04-24 290792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bcab8fc0-6021-470b-a2d5-62ec09253ef5}]
youtubeadblocker - C:\Program Files (x86)\youtubeadblocker\PLUZtthTRAEcx4.x64.dll [2015-02-07 708096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5d5774af-c82a-4ad7-ae9a-47a19df0bbf6}]
unnisaLeSS - C:\Program Files (x86)\unnisaLeSS\5J8dlG42zPkwpO.dll [2015-02-07 564736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-04-24 239280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bcab8fc0-6021-470b-a2d5-62ec09253ef5}]
youtubeadblocker - C:\Program Files (x86)\youtubeadblocker\PLUZtthTRAEcx4.dll [2015-02-07 564736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}]
Визуальные закладки - C:\Program Files (x86)\Yandex\FastDial\fastdialhost.dll [2014-10-24 306976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-04-24 290792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-04-24 239280]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Элементы Яндекса - C:\Program Files (x86)\Yandex\Elements\bartabhost.dll [2014-10-24 306976]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-08-20 2864528]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-25 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-25 771544]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-25 770520]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-31 12936848]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-31 1214608]
"BtPreLoad"=C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [2012-08-11 64640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Optimizer Pro"=C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [2014-07-02 146888]
"LiveSupport"=C:\Program Files (x86)\LiveSupport\LiveSupport.exe [2014-03-18 1005056]
"WeatherBug"=C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe [2014-09-24 146736]
"YandexElements"=C:\Users\Marie\AppData\Local\Yandex\Elements\elements.exe\8.4.0.9140\elements64.exe [2014-10-24 1594656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992]
"Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2012-04-23 508256]
"LManager"= []
"mcpltui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2014-04-25 537992]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-10-15 157480]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Avenged Sevenfold - Warmness On The Soul [Lyrics].lnk - C:\ProgramData\{601f9202-2ba8-a356-601f-f92022ba4808}\Avenged Sevenfold - Warmness On The Soul [Lyrics].exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-25 624640]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"midi4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-24 13:47:11 ----D---- C:\Program Files\trend micro
2015-04-24 13:47:10 ----D---- C:\rsit
2015-04-24 13:39:10 ----D---- C:\ProgramData\Mozilla
2015-04-24 13:39:09 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-24 13:39:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-04-22 15:58:41 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-22 15:48:11 ----D---- C:\WINDOWS\system32\appraiser
2015-04-22 15:36:29 ----SD---- C:\WINDOWS\system32\CompatTel
2015-04-16 18:56:59 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-04-16 18:56:59 ----A---- C:\WINDOWS\system32\msctf.dll
2015-04-16 18:56:43 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2015-04-16 18:56:42 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2015-04-16 18:56:41 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-04-16 18:56:40 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2015-04-16 18:56:40 ----A---- C:\WINDOWS\system32\winbici.dll
2015-04-16 18:56:40 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2015-04-16 18:56:40 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2015-04-16 18:56:02 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-04-16 18:56:02 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wups2.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wups.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-04-16 18:56:02 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-04-16 18:55:54 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-04-16 18:55:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-04-16 18:55:54 ----A---- C:\WINDOWS\system32\tdh.dll
2015-04-16 18:55:54 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-04-16 18:55:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-04-16 18:55:53 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-04-16 18:55:53 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-04-16 18:55:53 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-04-16 18:55:53 ----A---- C:\WINDOWS\system32\wow64.dll
2015-04-16 18:55:53 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-04-16 18:55:53 ----A---- C:\WINDOWS\system32\sechost.dll
2015-04-16 18:55:53 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\invagent.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\devinv.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\aepic.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-04-16 18:55:51 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-04-16 18:55:50 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-04-16 18:55:50 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-04-16 18:55:50 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-04-16 18:55:50 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-04-16 18:55:49 ----A---- C:\WINDOWS\system32\lsm.dll
2015-04-16 18:55:47 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-04-16 18:55:46 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-04-16 18:55:44 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-04-16 18:55:44 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-04-16 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-04-16 18:55:43 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-04-16 18:55:43 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\wininet.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-04-16 18:55:42 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\system32\jscript.dll
2015-04-16 18:55:41 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-04-16 18:55:30 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-04-16 18:55:30 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-04-06 17:26:48 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-04-06 17:26:47 ----SD---- C:\WINDOWS\system32\GWX
2015-04-03 08:04:32 ----D---- C:\ProgramData\{601f9202-2ba8-a356-601f-f92022ba4808}
======List of files/folders modified in the last 1 month======
2015-04-24 13:47:11 ----RD---- C:\Program Files
2015-04-24 13:40:55 ----D---- C:\WINDOWS\Temp
2015-04-24 13:39:57 ----D---- C:\WINDOWS\Prefetch
2015-04-24 13:39:50 ----D---- C:\Users\Marie\AppData\Roaming\Yandex
2015-04-24 13:39:22 ----D---- C:\Users\Marie\AppData\Roaming\Mozilla
2015-04-24 13:39:19 ----D---- C:\WINDOWS\Tasks
2015-04-24 13:39:19 ----D---- C:\WINDOWS\system32\Tasks
2015-04-24 13:39:19 ----D---- C:\Program Files (x86)\Google
2015-04-24 13:39:18 ----SHD---- C:\WINDOWS\Installer
2015-04-24 13:39:10 ----HD---- C:\ProgramData
2015-04-24 13:39:09 ----RD---- C:\Program Files (x86)
2015-04-24 13:30:29 ----HD---- C:\Program Files\WindowsApps
2015-04-24 13:29:38 ----D---- C:\WINDOWS\AppReadiness
2015-04-24 13:28:58 ----D---- C:\WINDOWS\system32\DriverStore
2015-04-24 13:28:58 ----D---- C:\WINDOWS\Inf
2015-04-24 13:27:31 ----D---- C:\WINDOWS\system32\drivers
2015-04-24 13:26:08 ----D---- C:\WINDOWS\system32\sru
2015-04-24 09:31:19 ----SHD---- C:\System Volume Information
2015-04-22 21:57:05 ----A---- C:\Users\Marie\AppData\Roaming\LiveSupport.exe_log.txt
2015-04-22 21:05:35 ----D---- C:\WINDOWS\rescache
2015-04-22 20:56:44 ----D---- C:\WINDOWS\Microsoft.NET
2015-04-22 20:54:05 ----D---- C:\WINDOWS\system32\config
2015-04-22 20:53:26 ----RD---- C:\WINDOWS\assembly
2015-04-22 20:44:54 ----D---- C:\WINDOWS\AppCompat
2015-04-22 16:03:06 ----RD---- C:\WINDOWS\System32
2015-04-22 16:03:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-22 15:59:22 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-04-22 15:58:44 ----D---- C:\WINDOWS\WinSxS
2015-04-22 15:58:41 ----D---- C:\WINDOWS\SysWOW64
2015-04-22 15:58:39 ----D---- C:\Windows
2015-04-22 15:56:34 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-04-22 15:48:13 ----D---- C:\WINDOWS\system32\cs-CZ
2015-04-22 15:48:11 ----D---- C:\WINDOWS\system32\wbem
2015-04-22 15:48:10 ----SD---- C:\ProgramData\Microsoft
2015-04-22 15:48:10 ----D---- C:\WINDOWS\apppatch
2015-04-22 15:48:09 ----D---- C:\WINDOWS\MediaViewer
2015-04-22 15:48:07 ----D---- C:\WINDOWS\Camera
2015-04-22 15:48:06 ----D---- C:\WINDOWS\FileManager
2015-04-22 15:48:04 ----RD---- C:\WINDOWS\ToastData
2015-04-22 15:47:27 ----D---- C:\Program Files\Windows Mail
2015-04-22 15:47:26 ----D---- C:\Program Files\Windows Portable Devices
2015-04-22 15:47:26 ----D---- C:\Program Files\Windows Multimedia Platform
2015-04-22 15:47:26 ----D---- C:\Program Files\Internet Explorer
2015-04-22 15:47:25 ----D---- C:\Program Files\Windows Media Player
2015-04-22 15:47:24 ----D---- C:\Program Files\Windows Journal
2015-04-22 15:47:22 ----D---- C:\Program Files\Windows Photo Viewer
2015-04-22 15:47:15 ----D---- C:\Program Files\Common Files\System
2015-04-22 15:47:13 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-04-22 15:47:13 ----D---- C:\WINDOWS\servicing
2015-04-22 15:47:12 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-04-22 15:47:12 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-04-22 15:47:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-04-22 15:47:00 ----D---- C:\WINDOWS\SYSWOW64\setup
2015-04-22 15:46:59 ----D---- C:\WINDOWS\SYSWOW64\sppui
2015-04-22 15:46:59 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-04-22 15:46:56 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-04-22 15:46:52 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-04-22 15:46:52 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-04-22 15:42:48 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-04-22 15:42:48 ----D---- C:\WINDOWS\twain_32
2015-04-22 15:42:48 ----D---- C:\WINDOWS\system32\Com
2015-04-22 15:42:48 ----D---- C:\WINDOWS\IME
2015-04-22 15:42:47 ----D---- C:\WINDOWS\system32\oobe
2015-04-22 15:42:47 ----D---- C:\WINDOWS\system32\en-US
2015-04-22 15:42:44 ----D---- C:\WINDOWS\system32\Sysprep
2015-04-22 15:42:43 ----D---- C:\WINDOWS\system32\migration
2015-04-22 15:42:29 ----D---- C:\WINDOWS\system32\setup
2015-04-22 15:42:24 ----D---- C:\WINDOWS\system32\sppui
2015-04-22 15:42:20 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-04-22 15:42:16 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-04-22 15:41:53 ----D---- C:\WINDOWS\system32\migwiz
2015-04-22 15:41:52 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-04-22 15:41:51 ----SD---- C:\WINDOWS\system32\dsc
2015-04-22 15:41:50 ----D---- C:\WINDOWS\system32\Dism
2015-04-22 15:36:55 ----D---- C:\Program Files (x86)\Windows Mail
2015-04-22 15:36:54 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-04-22 15:36:54 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-04-22 15:36:54 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-22 15:36:53 ----D---- C:\Program Files (x86)\Windows Media Player
2015-04-22 15:36:51 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-04-22 15:36:44 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-04-22 15:36:36 ----D---- C:\Program Files\WindowsPowerShell
2015-04-22 15:32:42 ----D---- C:\WINDOWS\CbsTemp
2015-04-22 15:29:22 ----SH---- C:\WINDOWS\system32\desktop.ini
2015-04-22 15:23:41 ----A---- C:\WINDOWS\SYSWOW64\msclmd.dll
2015-04-22 15:23:39 ----A---- C:\WINDOWS\system32\msclmd.dll
2015-04-19 21:04:18 ----D---- C:\WINDOWS\system32\MRT
2015-04-19 20:49:31 ----A---- C:\WINDOWS\system32\MRT.exe
2015-04-16 18:43:34 ----D---- C:\WINDOWS\system32\catroot2
2015-04-06 17:27:06 ----D---- C:\WINDOWS\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 excsd;ExpressCache Storage Filter Driver; C:\WINDOWS\system32\DRIVERS\excsd.sys [2012-03-30 95024]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2014-03-17 783864]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2014-03-17 345456]
R1 excfs;ExpressCache File System Filter Driver; C:\WINDOWS\system32\DRIVERS\excfs.sys [2012-03-30 23344]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2012-09-27 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2012-09-27 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2012-09-27 62776]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R3 athr;@oem14.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athwbx.sys [2014-08-22 3905536]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2014-03-17 70592]
R3 ETD;@oem7.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-08-20 316816]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-25 4221440]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4097808]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 irstrtdv;@oem21.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\WINDOWS\System32\drivers\irstrtdv.sys [2012-07-21 43800]
R3 iwdbus;@oem25.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-12-27 27032]
R3 MEIx64;@oem19.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2014-03-17 180272]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2014-03-17 311600]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2014-03-17 522360]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2014-01-21 422712]
R3 Ps2Kb2Hid;@oem12.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2012-09-27 26736]
R3 RSUSBVSTOR;@oem16.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2014-03-17 69344]
S3 AthBTPort;@oem6.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2012-08-11 88728]
S3 BTATH_A2DP;@oem5.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2012-08-11 344216]
S3 btath_avdt;@oem5.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2012-08-11 114840]
S3 BTATH_HCRP;@oem8.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2012-08-11 178840]
S3 BTATH_LWFLT;@oem16.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2012-08-11 76952]
S3 BTATH_RCP;@oem11.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2012-08-11 135832]
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
S3 dg_ssudbus;@oem27.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2013-09-23 197704]
S3 intaud_WaveExtensible;@oem24.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2014-01-21 96592]
S3 NTIDrvr;NTIDrvr; \??\C:\windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 ssudmdm;@oem28.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 UBHelper;UBHelper; \??\C:\windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S3 USBAAPL64;@oem30.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\System32\drivers\usbscan.sys [2014-10-29 44544]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-10-07 60744]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-08-11 211584]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-08-24 2435728]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-08-22 348784]
R2 ExpressCache;ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2012-03-30 79664]
R2 FFSOpzSvc;Sleep memory optimizer; C:\Program Files\Acer\Acer Instant Service\Sleep Memory Optimizer\FFSService.exe [2012-03-12 161384]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-05-11 200728]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-04-25 178528]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-01-21 1025712]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-03-17 219752]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2014-03-17 185792]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 328928]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-08-23 259136]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2012-09-27 93296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-08-23 658576]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-10-15 643880]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-25 279000]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-08-23 468624]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2012-07-12 174160]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-06-06 136120]
S3 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2012-07-20 193576]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\mcafee\msc\McAWFwk.exe [2012-01-26 332080]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2013-08-02 602944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-16 148080]
S3 USecuAppSvc;Acer Theft Shield Service; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [2012-08-23 344720]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-05-11 200728]
-----------------EOF-----------------
Přispějete na provoz fóra?